-
Notifications
You must be signed in to change notification settings - Fork 159
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Make rustls
provider option configurable
#516
base: main
Are you sure you want to change the base?
Conversation
I think that should do it. |
It looks like this needs to be a little more fleshed out, unfortunately. With default features turned off, and the Thinking out loud, I think we need to do three things:
Doing number 3 would mean we also need to essentially copy the error message that How does that sound? |
Let me get a second pair of eyes from Fedora rust packaging to check if we don't need to do other tweaks. |
You mean all of them or one of them? The first one is probably the simplest, as long as when one wanted to use |
All of them. Essentially, if we only had a feature flag called This means we need at least two feature flags -- one that includes proper defaults, and one that includes no default -- which are represented by the first and second work items in the list. The third work item is the necessary code changes to support both of those variants, since the current code depends on |
Thanks for the explanation. While I think that at one point in the future (and I want to stress that this point might not be as soon as we'd hope) the defaults will be ok across the board, I also think that there's considerable work to be done to support I can only suggest to make it work with ring as well. At least for the time being. As soon as the transitional phase is over, ring might be deprecated anyway. But right now it is certainly part of many projects and thus I think it makes sense to support it in metrics as well. |
Yeah, I mean, I think what I'd want to do, if anything, is something like:
In this scenario, crypto provider A would be whatever we decide the default should be, and (As a side note: I tend to want to standardize on AWS-LC to help drive adoption, and fixing of bugs, so that by being forced to deal with these sharp edges when they occur, people -- myself included -- are incentivized to fix them. Over time, being responsible for supporting contributions that I personally don't use or depend on, it ends up being a large amount of time that has to be spent dealing with this stuff... so I'd rather have the experience be a little worse for some users but much much better for the majority, by focusing my time on pushing the majority of users towards the things I know are well-supported. This is all to say that I currently use AWS-LC at work, and for a bunch of personal projects, so I know if there's a build issue on Linux, Windows, or macOS, I will likely notice it very quickly and be able to help diagnose or contribute to fixing the problem.) |
This should allow downstream projects to configure the rustls provider that they need to be consistent across all their dependencies. This should address an issue in
atuin
where therustls
tls backend needs to be moved back toring
due to other workflows breaking. @tessus does this look good for that?Closes #515