Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Implement "default" functions of the trait to fix "insecure" mode #1259

Merged
merged 2 commits into from Apr 29, 2021
Merged

Implement "default" functions of the trait to fix "insecure" mode #1259

merged 2 commits into from Apr 29, 2021

Conversation

ctron
Copy link
Contributor

@ctron ctron commented Apr 28, 2021

Ignoring validation seems broken as some default functions actually do
check. That is fine for the proper TLS validation, but gets in the way
when someone wants to skip TLS validation (e.g. for self-signed
certificates).

This change re-implements these default functions in a way that they
do not check, but return "success" all the time.

Fixes #1210

@ctron
Implement "default" functions of the trait to fix "insecure" mode
b85a96f 
Ignoring validation seems broken as some default functions actually do
check. That is fine for the proper TLS validation, but gets in the way
when someone wants to skip TLS validation (e.g. for self-signed
certificates).

This change re-implements these default functions in a way that they
do not check, but return "success" all the time.

Fixes seanmonstar#1210
seanmonstar
seanmonstar approved these changes Apr 28, 2021
View reviewed changes
Copy link
Owner

@seanmonstar seanmonstar left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Excellent catch, thanks so much!

seanmonstar
seanmonstar reviewed Apr 29, 2021
View reviewed changes
src/tls.rs Outdated Show resolved Hide resolved
seanmonstar
seanmonstar reviewed Apr 29, 2021
View reviewed changes
src/tls.rs Outdated Show resolved Hide resolved
@seanmonstar seanmonstar merged commit b0af278 into seanmonstar:master Apr 29, 2021
@ctron ctron deleted the feature/fix_issue_1210_1 branch April 29, 2021 07:13
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@seanmonstar seanmonstar seanmonstar approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

danger_accept_invalid_certs doesn't work with rustls-tls
2 participants
@ctron @seanmonstar