-
Notifications
You must be signed in to change notification settings - Fork 30
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
track upstream Rustls 0.22.x alpha changes. #341
Commits on Nov 17, 2023
-
deps: use rustls/webpki/rustls-pemfile alphas.
rustls 0.21.5 -> 0.22.0-alpha.4 webpki 0.101.0 -> 0.102.0-alpha.6 rustls-pemfile 1.0.3 -> 2.0.0-alpha.1 adds rustls-pki-types 0.2.1
Configuration menu - View commit details
-
Copy full SHA for 1ea02b1 - Browse repository at this point
Copy the full SHA 1ea02b1View commit details -
error: track upstream removal of cert SCT support.
This commit removes the error handling related to certificate SCTs. The upstream Rustls project removed embedded SCT support in 0.22.x.
Configuration menu - View commit details
-
Copy full SHA for ff8bbfd - Browse repository at this point
Copy the full SHA ff8bbfdView commit details -
Configuration menu - View commit details
-
Copy full SHA for 3be8117 - Browse repository at this point
Copy the full SHA 3be8117View commit details -
client: fixes for updated verifier traits.
The upstream traits no longer have any default fn implementations, because they relied on webpki/*ring* and Rustls is making that optional. In this branch we're continuing to keep a webpki/*ring* dep. and so can reconstitute the default fns by deferring to the webpki impls as appropriate.
Configuration menu - View commit details
-
Copy full SHA for b556bf3 - Browse repository at this point
Copy the full SHA b556bf3View commit details -
use danger modules for dangerous bits
This commit updates several imports that were once provided when the `dangerous_configuration` feature was enabled to use their new homes in specific `danger` modules. The upstream feature flag was removed and these new `danger` modules are always available.
Configuration menu - View commit details
-
Copy full SHA for 17accd8 - Browse repository at this point
Copy the full SHA 17accd8View commit details -
fix ALL_CIPHER_SUITES, DEFAULT_CIPHER_SUITES imports
Both the `ALL_CIPHER_SUITES` and `DEFAULT_CIPHER_SUITES` symbols are now specific to a crypto provider. Since for the time being rustls-ffi will stick with using *ring* for the crypto provider this commit updates the imports to use the symbols provided by `rustls::crypto::ring` instead of the crate root.
Configuration menu - View commit details
-
Copy full SHA for fb67a90 - Browse repository at this point
Copy the full SHA fb67a90View commit details -
This commit updates rustls-ffi to use the shared pki-types crate, similar to the upstream rustls projects.
Configuration menu - View commit details
-
Copy full SHA for fbba68d - Browse repository at this point
Copy the full SHA fbba68dView commit details
Commits on Nov 20, 2023
-
This commit implements a builder pattern for `root_cert_store` so that we can have a path to both a mutable root cert store while trust anchors are being added, and a const root cert store suitable for an `Arc` once completed.
Configuration menu - View commit details
-
Copy full SHA for c29479b - Browse repository at this point
Copy the full SHA c29479bView commit details -
rework client cert verifiers w/ builder API
This commit reworks the rustls-ffi API for client certificate validation to track the new builder based API that landed in Rustls rustls/rustls#1368
Configuration menu - View commit details
-
Copy full SHA for 05a35d8 - Browse repository at this point
Copy the full SHA 05a35d8View commit details -
implement Debug where required by upstream bounds
The upstream Rustls project has added `Debug` bounds to many traits. This commit updates rustls-ffi implementations to derive `Debug`, or implement it by hand, as required.
Configuration menu - View commit details
-
Copy full SHA for 20b1081 - Browse repository at this point
Copy the full SHA 20b1081View commit details -
cipher: adjust to provider-specific cipher suite imports
The upstream rustls crate moved the `cipher_suite` module and defines into provider specific packages. Since rustls-ffi is presently hardcoded to use the *ring*-based crypto provider this commit updates the cipher suite references to use `rustls::crypto::ring::cipher_suite` in place of `rustls::cipher_suite`.
Configuration menu - View commit details
-
Copy full SHA for 833c6de - Browse repository at this point
Copy the full SHA 833c6deView commit details -
error: ClientCertVerifierBuilderError -> VerifierBuilderError
This commit updates references to `ClientCertVerifierBuilderError` to track the upstream rename to `VerifierBuilderError`.
Configuration menu - View commit details
-
Copy full SHA for 12798cc - Browse repository at this point
Copy the full SHA 12798ccView commit details -
update import of rustls::sign::any_supported_type
This re-export was removed and instead we need to use `rustls::crypto::ring::sign::any_supported_type` since this is a property of the *ring* specific crypto provider.
Configuration menu - View commit details
-
Copy full SHA for 95ecbd0 - Browse repository at this point
Copy the full SHA 95ecbd0View commit details -
add builder for server cert verifier, root builder from file
* Implement a builder pattern and built representation for the webpki server cert verifier. * Update the client config builder to consume a built server cert verifier. * Update the roots builder to support loading roots from a file in addition to pem buffer.
Configuration menu - View commit details
-
Copy full SHA for bc0e3ac - Browse repository at this point
Copy the full SHA bc0e3acView commit details -
Configuration menu - View commit details
-
Copy full SHA for 27049a2 - Browse repository at this point
Copy the full SHA 27049a2View commit details -
Configuration menu - View commit details
-
Copy full SHA for 057aa48 - Browse repository at this point
Copy the full SHA 057aa48View commit details -
Configuration menu - View commit details
-
Copy full SHA for b9af9f8 - Browse repository at this point
Copy the full SHA b9af9f8View commit details -
Configuration menu - View commit details
-
Copy full SHA for 0700a45 - Browse repository at this point
Copy the full SHA 0700a45View commit details -
Configuration menu - View commit details
-
Copy full SHA for 2d6c77c - Browse repository at this point
Copy the full SHA 2d6c77cView commit details