Introduce TlsConnect and QuicConnect trait to be more flexible #2137
Comments
|
What is the actual problem you're trying to solve? |
First, to use other tls / quic backends such as boringssl or quiche. |
|
Out of curiosity, can you give more context on why you/Bytedance want to use different TLS/QUIC backends? |
|
I have forked a We have been using rustls in the G3 project for all of the hickory features, And we may also have to support TLCP (a TLS variant protocol that is officially promoted in China) usage in DoT and DoH, so we have to use Tongsuo or some other tls crates in such case. |
Is your feature request related to a problem? Please describe.
The tls connect code should be same for DoT and DoH, for DoT we have rustls / openssl / native-tls support, but for DoH we only have rustls support, this should be changed to allow more flexible selection of tls libraries and the version.
And the tls connect code is simple, has little to do with the dns code, so they should be split out to avoid unnecessary major version bumps when the tls crate released new major versions.
Describe the solution you'd like
We should add TlsConnect trait, which will convert a
TcpStreaminto aTlsStream<TcpStream>, and use separate crate such as hickory-rustls, hickory-openssl, hickory-native-tls to provide impls, and it wouldn't be too much work to add new impls for users when they want to use a new tls crate or when they need to update rustls to a new version.We should add QuicConnect trait, to create h3
SendRequest<_>and also poll the close of the connection. The use of h3_quinn crate can be split into a hickory-quinn crate, and users can use their own h3 quic backend crates as long as the use the same h3 major version.The text was updated successfully, but these errors were encountered: