Support in-memory client / CA certificates #89
Comments
kathampy
changed the title
|
This is pretty tricky to implement correctly. The linked examples are OpenSSL-specific, but libcurl is linked to platform-native TLS implementations on Windows and macOS by default. In fact, |
|
Looking at the MesaLink APIs, it should be similar enough to OpenSSL to accomplish what those curl examples are doing using MesaLink. I can look into adding support for
|
|
👋 Hey I just came to this. Looks like the current blocker is on MesaLink? Is #2 still an option in the short term? I'm interacting with services self-signed by a certificate authority i fetch from a trusted endpoint. Having to dump the files to disk is pretty unfortunate 😅 . |
|
No, unfortunately. MesaLink still does not support the necessary features to work with an HTTP/2+ build, and the project has been dead silent for some time, so my hopes are not high at this point. I'm putting much more hope in #199 instead that eventually rustls will be the default and we can control TLS options that way. |
Pull in new bindings for the new blob APIs added to curl in 2020. Bindings were recently added in alexcrichton/curl-rust#384. This of course only works when using a fairly new curl version. Addresses #89.
|
At long last, this is finally now possible for us to support since it was finally added to curl itself upstream in 2020 in the form of |
Pull in new bindings for the new blob APIs added to curl in 2020. Bindings were recently added in alexcrichton/curl-rust#384. This of course only works when using a fairly new curl version. Addresses #89.
|
This is now available in the 1.4.0 release! |
Probably requires some upstream changes in
curl-rust.https://curl.haxx.se/libcurl/c/usercertinmem.html
https://curl.haxx.se/libcurl/c/cacertinmem.html
The text was updated successfully, but these errors were encountered: