Skip to content

MasterQ32/gurl

master
Switch branches/tags

Name already in use

A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?
1 branch 1 tag
Code

Latest commit

 

Git stats

Files

Permalink
Failed to load latest commit information.
Type
Name
Latest commit message
Commit time
lib
 
 
src
 
 
.gitignore
 
 
.gitmodules
 
 
LICENSE
 
 
README.md
 
 
build.zig
 
 
👧 gurl Project State Dependencies Build Instructions Design Considerations Certificate Trust Future Plans TOFU Notes Client Certificate Process Tools

README.md

👧 gurl

A Gemini command line interface similar to curl written in Zig.

Project State

  • Successful TLS 1.2 handshake
  • Successful GET request header exchange
  • Successful body download
  • header parsing
  • URL parser
  • DNS resolving
  • MIME parsing
  • All of the correct heading handling
    • Follow absolute redirects
    • Follow relative redirects
    • Pretty-printing and guidance messages for failed requests
  • TOFU (trust on first use) for SSL connections
    • Implement primitive TOFU (store public key, not certificate)
    • Implement correct TOFU (trust on first use) for SSL connections
  • Client certificates
    • temporary cert
    • permanent cert
  • Use XDG directories
  • Implement windows port
    • Port zig-network to windows
    • Implement correct config directory locating for windows
    • Trust Anchor support for windows

Dependencies

Build Instructions

  1. Refresh submodules (git submodule init, git submodule update)
  2. Build gurl (zig build)
  3. Run ./zig-cache/bin/gurl

Design Considerations

Give the user control over their system and make configuration easy.

Certificate Trust

  • accept any certificate
  • auto-accept the cert on first use (TOFU)
  • use CAs or ask user on first sight (TOFU+CA)
  • always ask on first sight (interactive TOFU)
  • auto-accept when first seen in a session (TOFU, no disk usage)
  • always ask when first seen in a session (interactive TOFU, no disk usage)

Future Plans

Correctly adhere to XDG standards and use xdg-open

TOFU Notes

Current implementation just stores the public key of the server and not the certificate with fingerprint and everything

That certificate's fingerprint and expiry date are saved in a persistent database (like the .known_hosts file for SSH), associated with the server's hostname.

Client Certificate Process

  • Wait for specification update

Tools

Connect with OpenSSL:

openssl s_client --connect domain.name -quiet -verify_quiet

Dump DER certificate information:

openssl x509 -in trust-store/mozz.us/cert-1.der -inform der -text

Convert DER to PEM:

openssl x509 -inform der -in trust-store/gemini.conman.org/cert-0.der -out conman.pem

About

A curl-like cli application to interact with Gemini sites.

Topics

zig gemini ziglang

Resources

Readme

License

MIT license

Stars

14 stars

Watchers

3 watching

Forks

2 forks
Report repository

Releases

1 tags

Sponsor this project

 
Learn more about GitHub Sponsors

Packages

No packages published

Contributors 2

  •  
  •  

Languages