eden-emu/eden
24
8
Fork 31
Code Issues 108 Pull requests 107 Projects 2 Releases 12 Wiki Activity Actions

[crypto] Atomize all traces of MbedTLS, and require OpenSSL 3+ #3606

Merged
crueter merged 21 commits from lizzie/mbedtls-nuke1 into master 2026-02-23 02:50:14 +01:00
Conversation 8 Commits 21 Files changed 24 +376 -397
Lizzie commented 2026-02-22 20:40:35 +01:00
Member
Copy link

Closes #3137
Closes #3465

  • Replace all mbedtls usage with OpenSSL
  • require OpenSSL
  • Up OpenSSL version to 3, cuz that's what we actually need...

CAVEATS:

  • httplib also now required
  • other ssl backends for svc are unused, maybe remove later
    • To be fair, our CI never used them anyways. And we never tested those

TESTERS PLEASE TEST:

  • All games and applets boot
  • Boot, load, exit, etc. times

Co-authored-by: crueter crueter@eden-emu.dev
Signed-off-by: lizzie lizzie@eden-emu.dev

Closes #3137 Closes #3465 - Replace all mbedtls usage with OpenSSL - require OpenSSL - Up OpenSSL version to 3, cuz that's what we actually need... CAVEATS: - httplib also now required - other ssl backends for svc are unused, maybe remove later * To be fair, our CI never used them anyways. And we never tested those TESTERS PLEASE TEST: - All games and applets boot - Boot, load, exit, etc. times Co-authored-by: crueter <crueter@eden-emu.dev> Signed-off-by: lizzie <lizzie@eden-emu.dev>
crueter changed title from WIP: [crypto] Replace mbedtls3 usage with OpenSSL to [crypto] Atomize all traces of MbedTLS, and require OpenSSL 3+ 2026-02-22 23:37:46 +01:00
DraVee reviewed 2026-02-22 23:45:49 +01:00
docs/Deps.md Outdated
@ -121,7 +120,7 @@ sudo emerge -a \
dev-util/vulkan-utility-libraries dev-util/glslang \
media-gfx/renderdoc media-libs/libva media-libs/opus media-video/ffmpeg \
media-libs/VulkanMemoryAllocator media-libs/libsdl2 media-libs/cubeb \
net-libs/enet net-libs/mbedtls \
DraVee commented 2026-02-22 23:45:49 +01:00
Member
Copy link

Need to remove mention on every other system too

Need to remove mention on every other system too
crueter marked this conversation as resolved
crueter reviewed 2026-02-23 00:53:06 +01:00
crueter left a comment
Owner
Copy link

System MbedTLS with AVX-512 is marginally better than a bundled OpenSSL, but on the AppImage they are identical, if not OpenSSL being a bit faster.

Everything works on my end but idk what xts_archive is used for so can't test

There are multiple things to clean up perf-wise still, this was mostly ad-hoc

System MbedTLS with AVX-512 is *marginally* better than a bundled OpenSSL, but on the AppImage they are identical, if not OpenSSL being a bit faster. Everything works on my end but idk what xts_archive is used for so can't test There are multiple things to clean up perf-wise still, this was mostly ad-hoc
crueter force-pushed lizzie/mbedtls-nuke1 from b21e7929f0
All checks were successful
eden-license / license-header (pull_request) Successful in 19s
Details
GitHub Actions [CI] Build succeeded
Details
GitHub Releases [CD] Release published
Details
to 77ba33d5fc
All checks were successful
eden-license / license-header (pull_request) Successful in 19s
Details
GitHub Actions [CI] Build succeeded
Details
GitHub Releases [CD] Release published
Details
2026-02-23 01:38:41 +01:00 Compare
crueter commented 2026-02-23 02:17:22 +01:00
Owner
Copy link

Integrity verification is dramatically faster, upwards of 4-5x
Firmware installation is also noticeably faster

Integrity verification is *dramatically* faster, upwards of 4-5x Firmware installation is also noticeably faster
crueter approved these changes 2026-02-23 02:37:49 +01:00
crueter left a comment
Owner
Copy link

No regressions, and OpenSSL is generally faster + responds significantly better to mtune and march options.

No regressions, and OpenSSL is generally faster + responds significantly better to mtune and march options.
MaranBr approved these changes 2026-02-23 02:39:48 +01:00
DraVee reviewed 2026-02-23 02:41:02 +01:00
DraVee left a comment
Member
Copy link

Not much difference on Android side (probably another thing is making it slow)
Tested on Gentoo, everything working fine, gonna check on Windows

Not much difference on Android side (probably another thing is making it slow) Tested on Gentoo, everything working fine, gonna check on Windows
crueter commented 2026-02-23 02:41:20 +01:00
Owner
Copy link

probably another thing is making it slow
Android

> probably another thing is making it slow > Android
DraVee approved these changes 2026-02-23 02:50:01 +01:00
DraVee left a comment
Member
Copy link

Working fine on MSVC and MingW

Working fine on MSVC and MingW
crueter merged commit 0a687b82d4 into master 2026-02-23 02:50:14 +01:00
crueter deleted branch lizzie/mbedtls-nuke1 2026-02-23 02:50:14 +01:00
Sign in to join this conversation.
Reviewers
No reviewers
CamilleLaVey
Maufeat
MrPurple666
crueter
MaranBr
DraVee
Labels
Clear labels   
android

Specific to android platform

  
audio

   
bug

Something is not working

  
ci

For changes to the ci/building

  
cmake

   
confirmed

Used when testers confirm a bug is reported and it is reproducable.

  
core

For core changes to the emulator

  
desktop

Specific to desktop PCs, handhelds, etc.

  
duplicate

This issue or pull request already exists

  
enhancement

New feature

  
frontend

Frontend changes

  
fw

Changes related to firmware

  
git

For enhancements or changes regarding git.

  
graphics

   
loader

For changes to any of the loader implementations

  
nv gpu

For use with changes that involve the emulator GPU and any services.

  
ui

   
vulkan

Used on anything Vulkan-related

No labels
android
audio
bug
ci
cmake
confirmed
core
desktop
duplicate
enhancement
frontend
fw
git
graphics
loader
nv gpu
ui
vulkan
Milestone
Clear milestone
No items
No milestone
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
4 participants
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
eden-emu/eden!3606
No description provided.