Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Remove dependency on rustls #26

Merged
merged 4 commits into from
Oct 9, 2021
Merged

Remove dependency on rustls #26

merged 4 commits into from
Oct 9, 2021

Conversation

djc
Copy link
Member

@djc djc commented Jun 28, 2021

Expose a simpler API that just returns a Vec<Certificate>, where Certificate is a newtype wrapper over Vec<u8> (as is done in rustls itself), relying on rustls-pemfile for PEM parsing.

@djc djc mentioned this pull request Jun 30, 2021
Merged
@djc djc force-pushed the no-rustls branch 3 times, most recently from 4651698 to 6116ef5 Compare July 7, 2021 08:35
@djc
Copy link
Member Author

djc commented Jul 7, 2021

This now includes the commits from #27 to make sure these changes work.

@djc
Copy link
Member Author

djc commented Sep 27, 2021

Updated this to depend on rustls 0.20 for the tests. Would be nice to get this merged and published to unblock downstream users (as always, I'm happy to work on that myself -- would follow a similar release process as outlined in the rustls release process -- would it be helpful to copy that in this repository?).

@djc djc mentioned this pull request Oct 5, 2021
Closed
@djc djc merged commit fc11ca2 into rustls:main Oct 9, 2021
@Keruspe
Copy link
Contributor

Keruspe commented Oct 10, 2021

Any chance to get a new release with this soon-ish, or are you waiting for some other things first?

@djc
Copy link
Member Author

djc commented Oct 10, 2021

We definitely plan to publish a new release soon.

This was referenced Oct 11, 2021
Closed
Closed
@djc
Copy link
Member Author

djc commented Oct 11, 2021

@Keruspe next steps in #31.

@pimterry pimterry mentioned this pull request Oct 13, 2021
Merged
g2p added a commit to g2p/hyper-rustls that referenced this pull request Oct 18, 2021
@g2p
with_native_roots: Restore robustness to unparseable certs
344d493 
rustls-native-certs used to filter out invalid certs on Unix, where
certs are parsed from PEM files.
rustls/rustls-native-certs#26 changed it
to passing them unparsed.  Now that hyper-rustls does the parsing,
keep being robust to invalid certs.  Implementation modified from
rustls::RootCertStore::add_parsable_certificates, which cannot be
used directly due to a newtype in rustls-native-certs.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@ctz ctz ctz approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@djc @Keruspe @ctz