enhance: use rustls instead native TLS in proxy client #128
Conversation
|
Hi @stackinspector! Thanks for opening this PR and collaborating with this project and helping making it better. To answer your points above:
This sounds related to how paths are provided to the FileExplorer on Windows, perhaps I have to check current environment/OS and build the path accordingly. Thanks for noticing! Do you mind opening an issue for this so we track it there? At the moment I don't have access to any Windows system, but I'm happy to help you if you want to give it a shot as well.
If you feel like opening another issue for this one please do! I can give it a shot during the week. |
|
@stackinspector looks like all CI workflows are working correctly but clippy. Can you please apply clippy suggestions? If you could squash together Thanks in advance! |
Sorry, I didn't understand how I should perform the operation you described. Make another commit to apply clippy fixes? Force yank |
|
@stackinspector don't worry! Just run |
|
Okay, it's now finished. I just kind of missed your point before. |
No worries! |
2 participants
When I tried to compile this project on my Linux VM, I found an error while compiling
openssl-sys. Certainly the reason was OpenSSL development package was not configured, but this is not important. What actually matters is that a project that claims to userustlsandhyper-rustlsis compiling with dependency to OpenSSL! It must be a configuration issue somewhere, like some library introducing both by default, I thought. So I looked up the dependency chain foropenssl-sysand eventually foundhyper-tls, which is the support library for hyper's use of native TLS. I tried to remove this dependency to find where it was used, and found that only http client of proxy used itsHttpsConnector. Thinking that this was probably an oversight, I tried to replace the dependency withhyper-rustlsand itsHttpsConnector, and found that did not raise any compiler errors.About
Cargo.lock: I have a habit of runningcargo updatebefore commiting the code after modifying a project. When I modified this project and rancargo update, I found thatCargo.lockhad several hundred lines of changes. I was a little surprised and thought this might not be a normal occurrence for a project that more than half of commits are by dependabot. I don't use dependabot, and maybe dependabot doesn't recursively update the dependencies in Cargo.lock ascargo updatedoes. Anyway it's up to you whether to merge changes in Cargo.lock or not.By the way, I tried to start this server on my two Windows machines (one runs Windows Server and the other runs Windows 10) and found that it could not access any files on both machines, any request to access files and directories (include
/) returned status 403 with contentAccess declined. (os error 5). On both Linux and Windows it cannot read any certificate and key files (standard RSA certificate and key in plain text which works properly with Nginx), promptingThe provided certificate is empty, I checked the code and found that maybe it is a problem with reading buffers. To both problems I have no clue until present, and can't determine whether it's a problem with the project or my environment.