From b480f683abd7d6ecbae983e500aaf9912e51174e Mon Sep 17 00:00:00 2001 From: boxdot Date: Mon, 12 Aug 2024 20:47:39 +0200 Subject: [PATCH 1/2] fix: switch rustls backend back to ring rultls switched their crypto backend to aws-lc, which unfortunately supports fewer platforms. For now, we switch the backend back to ring. Also disable tls1.2 (signal servers supports tls1.3), and tokio native certs that are not used. --- libsignal-service-hyper/Cargo.toml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/libsignal-service-hyper/Cargo.toml b/libsignal-service-hyper/Cargo.toml index b542b4caf..f19435700 100644 --- a/libsignal-service-hyper/Cargo.toml +++ b/libsignal-service-hyper/Cargo.toml @@ -22,7 +22,7 @@ url = "2.1" hyper = "1.0" hyper-util = { version = "0.1", features = ["client", "client-legacy"] } -hyper-rustls = { version = "0.27", features = ["http1", "http2"] } +hyper-rustls = { version = "0.27", default-features = false, features = ["http1", "http2", "ring"] } hyper-timeout = "0.5" headers = "0.4" http-body-util = "0.1" @@ -31,7 +31,7 @@ http-body-util = "0.1" async-tungstenite = { version = "0.27", features = ["tokio-rustls-native-certs", "url"] } tokio = { version = "1.0", features = ["macros"] } -tokio-rustls = "0.26" +tokio-rustls = { version = "0.26", default-features = false, features = ["logging", "ring"] } rustls-pemfile = "2.0" From e2ef0ca2db636d94dcd730566baa9d39820b8626 Mon Sep 17 00:00:00 2001 From: boxdot Date: Mon, 12 Aug 2024 20:50:09 +0200 Subject: [PATCH 2/2] enable the default logging feature of rustls --- libsignal-service-hyper/Cargo.toml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/libsignal-service-hyper/Cargo.toml b/libsignal-service-hyper/Cargo.toml index f19435700..d6d33944f 100644 --- a/libsignal-service-hyper/Cargo.toml +++ b/libsignal-service-hyper/Cargo.toml @@ -22,7 +22,7 @@ url = "2.1" hyper = "1.0" hyper-util = { version = "0.1", features = ["client", "client-legacy"] } -hyper-rustls = { version = "0.27", default-features = false, features = ["http1", "http2", "ring"] } +hyper-rustls = { version = "0.27", default-features = false, features = ["http1", "http2", "ring", "logging"] } hyper-timeout = "0.5" headers = "0.4" http-body-util = "0.1"