Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Support for custom TLS port + optional verify peer #37

Open
wants to merge 25 commits into
base: master
Choose a base branch
from
Open

Support for custom TLS port + optional verify peer #37

wants to merge 25 commits into from

Conversation

rohitjoshi
Copy link

@rohitjoshi rohitjoshi commented Apr 11, 2017
edited
Loading

I have added support for following two features.

  1. Specifying custom https port
  2. new method to build ssl context by passing ca file, cert and private key

mlalic and others added 21 commits April 24, 2016 17:47
@mlalic
WindowSize: Implement Into<i32> and add can_accept method
2f75488
@mlalic
WindowSize: Implement PartialEq<i32>
568a06f 
This allows `WindowSize`s to be compared for equality against `i32`s
transparently...
@mlalic
HttpConnection: Return WindowSize structs rather than i32 from window…
c333681 
… size methods

There is no point in coercing the internal `WindowSize` struct into an `i32`
before returning it; in fact, this can easily be done by clients if they have
such a requirement.
@mlalic
HttpConnection: Add methods for sending window updates
7764212
@mlalic
HttpConnection: Add method for increasing inbound window size
5c0459f
@mlalic
HttpConnection: Notify the session according to detected window updates
8c6297b 
This commit adds two methods to the `Session` trait that allow it to be
notified when a new WINDOW_UPDATE frame signals an increase in the outbound
window size for both the connection-level, as well as the stream-level
windows.
@mlalic
HttpConnection: Notify session on window size decreases
7b89260 
Two new methods are added to the `Session` trait that allow it to
receive notice when either the connection-level or a stream-level
inbound window size decreases. These calls will, as a rule, always
be emitted in pairs by the `HttpConnection` upon parsing a flow-control
subject frame (at the moment this is only the DATA frame, as per the
HTTP/2 spec).
@mlalic
SessionState: Manage state Entries, not naked Streams
f998f4a 
The state now has an entry per stream, instead of storing just the raw
stream. This is in preparation for extending the state to be able to
track more stream-related information, that does not belong on the
Stream trait itself.

(The Stream trait is supposed to be the bridge between the session and
its client that is interested only in stream-level events; requiring
those clients to also implement tracking various book-keeping stream
state is not only redundant---all streams will need to track the same
state in the same way---but also not in line with what the Stream trait
is supposed to represent.)
@mlalic
Stream: Add on_stream_error method
64abe81 
The method is used to signal errors that the local peer detects, in
contrast to those that the remote signals by sending an RST_STREAM
frame.  The Session should send the RST_STREAM after the
`on_stream_error` is called.
@mlalic
Move http::client tests module to a standalone file
3a911ec 
The mod.rs file was getting quite large...
@mlalic
Add WindowUpdateStrategy trait and an impl that disables flow control
571ed45 
The WindowUpdateStrategy trait is used to define the algorithm for
updating the flow control window of both the connection, as well as
individual stream.

The object is provided the new size of the corresponding window and
is expected to produce an action to be taken immediately: either
increase the size of the window or do nothing.
@mlalic
Flow control: Implement client-side inbound flow control
434a1d5
@rohitjoshi
Update tls.rs
8f550e5
@rohitjoshi
Update tls.rs
1f31225
added support for custom port + disabled verify peer
43faa33
enable optional verify peer
9fcb59a
enable optional verify peer
2dcd4df
@rohitjoshi
Update tls.rs
2d3f825
@rohitjoshi
Update tls.rs
e4a1568
@rohitjoshi
Update tls.rs
cca37fb
adding support for cert/private key
c1b0f9a
mlalic
mlalic reviewed Apr 12, 2017
View reviewed changes
src/http/client/tls.rs Outdated
context: Http2TlsContext::Wrapped(context),
}
}

/// Builds up a default `SslContext` instance wth TLS settings that the
/// HTTP/2 spec mandates. The path to the CA file needs to be provided.
pub fn build_default_context(ca_file_path: &Path) -> Result<SslContext, TlsConnectError> {
pub fn build_default_context(ca_file_path: &Path, verify_peer : bool, cert_file: Option<PathBuf>, private_key: Option<PathBuf>) -> Result<SslContext, TlsConnectError> {
Copy link
Owner

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This was meant to be a default context, which would be sensible without requiring the user to figure out what various switches do. That said, I'm not opposed to having a helper that offers more customization, without callers having to figure out how to build raw SslContexts.

Would you mind renaming this method to something like build_context and then implementing the original build_default_context in terms of that?

@mlalic
Copy link
Owner

mlalic commented Apr 12, 2017

Thanks for the PR!

This seems like a few definite quality of life improvements. I just had one minor comment, that'd be great if you could address.

@rohitjoshi
Copy link
Author

@mlalic thanks. I have addressed the review comments. Let me know if you recommend any other changes.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@mlalic mlalic mlalic left review comments

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@rohitjoshi @mlalic