Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add tls_info / TlsInfo for access to peer's leaf certificate #1938

Merged
merged 8 commits into from Sep 4, 2023
Merged

Add tls_info / TlsInfo for access to peer's leaf certificate #1938

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
8 commits
Select commit Hold shift + click to select a range
460cd5a
Add `https_info` / `HttpsInfo` for access to peer's leaf certificate
droe Aug 11, 2023
a3316a6
Fix blocking API CI failure and add tests
droe Aug 14, 2023
257dc53
Fix build failure with feature native-tls
droe Aug 14, 2023
271c23b
Skip test_https_info for rustls-tls-manual-roots to fix tests
droe Aug 14, 2023
fe138f9
Merge branch 'seanmonstar:master' into feature/server-cert
droe Aug 25, 2023
95c05ba
Rename HttpsInfo to TlsInfo and move into tls
droe Aug 25, 2023
656b966
Fix formatting
droe Aug 26, 2023
d220bb1
PR feedback: Remove TlsInfo re-export
droe Sep 4, 2023
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Jump to
Jump to file
Failed to load files.
Diff view
Diff view
30 changes: 30 additions & 0 deletions src/async_impl/client.rs
View file
Open in desktop
Expand Up @@ -115,6 +115,8 @@ struct Config {
#[cfg(feature = "__tls")]
max_tls_version: Option<tls::Version>,
#[cfg(feature = "__tls")]
tls_info: bool,
#[cfg(feature = "__tls")]
tls: TlsBackend,
http_version_pref: HttpVersionPref,
http09_responses: bool,
Expand Down Expand Up @@ -198,6 +200,8 @@ impl ClientBuilder {
#[cfg(feature = "__tls")]
max_tls_version: None,
#[cfg(feature = "__tls")]
tls_info: false,
#[cfg(feature = "__tls")]
tls: TlsBackend::default(),
http_version_pref: HttpVersionPref::All,
http09_responses: false,
Expand Down Expand Up @@ -408,6 +412,7 @@ impl ClientBuilder {
user_agent(&config.headers),
config.local_address,
config.nodelay,
config.tls_info,
)?
}
#[cfg(feature = "native-tls")]
Expand All @@ -418,6 +423,7 @@ impl ClientBuilder {
user_agent(&config.headers),
config.local_address,
config.nodelay,
config.tls_info,
),
#[cfg(feature = "__rustls")]
TlsBackend::BuiltRustls(conn) => {
Expand All @@ -442,6 +448,7 @@ impl ClientBuilder {
user_agent(&config.headers),
config.local_address,
config.nodelay,
config.tls_info,
)
}
#[cfg(feature = "__rustls")]
Expand Down Expand Up @@ -586,6 +593,7 @@ impl ClientBuilder {
user_agent(&config.headers),
config.local_address,
config.nodelay,
config.tls_info,
)
}
#[cfg(any(feature = "native-tls", feature = "__rustls",))]
Expand Down Expand Up @@ -1483,6 +1491,26 @@ impl ClientBuilder {
self
}

/// Add TLS information as `TlsInfo` extension to responses.
///
/// # Optional
///
/// This requires the optional `default-tls`, `native-tls`, or `rustls-tls(-...)`
/// feature to be enabled.
#[cfg(feature = "__tls")]
#[cfg_attr(
docsrs,
doc(cfg(any(
feature = "default-tls",
feature = "native-tls",
feature = "rustls-tls"
)))
)]
pub fn tls_info(mut self, tls_info: bool) -> ClientBuilder {
self.config.tls_info = tls_info;
self
}

/// Enables the [trust-dns](trust_dns_resolver) async resolver instead of a default threadpool using `getaddrinfo`.
///
/// If the `trust-dns` feature is turned on, the default option is enabled.
Expand Down Expand Up @@ -1987,6 +2015,8 @@ impl Config {
}

f.field("tls_sni", &self.tls_sni);

f.field("tls_info", &self.tls_info);
}

#[cfg(all(feature = "native-tls-crate", feature = "__rustls"))]
Expand Down
19 changes: 19 additions & 0 deletions src/blocking/client.rs
View file
Open in desktop
Expand Up @@ -738,6 +738,25 @@ impl ClientBuilder {
self.with_inner(move |inner| inner.use_rustls_tls())
}

/// Add TLS information as `TlsInfo` extension to responses.
///
/// # Optional
///
/// This requires the optional `default-tls`, `native-tls`, or `rustls-tls(-...)`
/// feature to be enabled.
#[cfg(feature = "__tls")]
#[cfg_attr(
docsrs,
doc(cfg(any(
feature = "default-tls",
feature = "native-tls",
feature = "rustls-tls"
)))
)]
pub fn tls_info(self, tls_info: bool) -> ClientBuilder {
self.with_inner(|inner| inner.tls_info(tls_info))
}

/// Use a preconfigured TLS backend.
///
/// If the passed `Any` argument is not a TLS backend that reqwest
Expand Down