update ws dependencies as well as http rustls dependency

2026-03-31 09:45:31 +00:00 · 2024-01-07 10:40:50 +01:00 · 2024-01-07 10:40:50 +01:00 · 3042539101
commit 3042539101
parent 071f088d8b
16 changed files with 499 additions and 295 deletions
--- a/crates/ws_load_test/Cargo.toml
+++ b/crates/ws_load_test/Cargo.toml
@ -19,18 +19,18 @@ aquatic_toml_config.workspace = true
 aquatic_ws_protocol.workspace = true

 anyhow = "1"
-async-tungstenite = "0.23"
+async-tungstenite = "0.24"
 futures = "0.3"
-futures-rustls = "0.24"
+futures-rustls = "0.25"
 glommio = "0.8"
 log = "0.4"
 mimalloc = { version = "0.1", default-features = false }
 rand = { version = "0.8", features = ["small_rng"] }
 rand_distr = "0.4"
-rustls = { version = "0.21", default-features = false, features = ["dangerous_configuration"] }
+rustls = { version = "0.22" }
 serde = { version = "1", features = ["derive"] }
 serde_json = "1"
-tungstenite = "0.20"
+tungstenite = "0.21"

 [dev-dependencies]
 quickcheck = "1"
--- a/crates/ws_load_test/src/main.rs
+++ b/crates/ws_load_test/src/main.rs
@ -87,25 +87,53 @@ fn run(config: Config) -> ::anyhow::Result<()> {
    Ok(())
 }

+#[derive(Debug)]
 struct FakeCertificateVerifier;

-impl rustls::client::ServerCertVerifier for FakeCertificateVerifier {
+impl rustls::client::danger::ServerCertVerifier for FakeCertificateVerifier {
    fn verify_server_cert(
        &self,
-        _end_entity: &rustls::Certificate,
-        _intermediates: &[rustls::Certificate],
-        _server_name: &rustls::ServerName,
-        _scts: &mut dyn Iterator<Item = &[u8]>,
+        _end_entity: &rustls::pki_types::CertificateDer<'_>,
+        _intermediates: &[rustls::pki_types::CertificateDer<'_>],
+        _server_name: &rustls::pki_types::ServerName<'_>,
        _ocsp_response: &[u8],
-        _now: std::time::SystemTime,
-    ) -> Result<rustls::client::ServerCertVerified, rustls::Error> {
-        Ok(rustls::client::ServerCertVerified::assertion())
+        _now: rustls::pki_types::UnixTime,
+    ) -> Result<rustls::client::danger::ServerCertVerified, rustls::Error> {
+        Ok(rustls::client::danger::ServerCertVerified::assertion())
+    }
+
+    fn verify_tls12_signature(
+        &self,
+        _message: &[u8],
+        _cert: &rustls::pki_types::CertificateDer<'_>,
+        _dss: &rustls::DigitallySignedStruct,
+    ) -> Result<rustls::client::danger::HandshakeSignatureValid, rustls::Error> {
+        Ok(rustls::client::danger::HandshakeSignatureValid::assertion())
+    }
+
+    fn verify_tls13_signature(
+        &self,
+        _message: &[u8],
+        _cert: &rustls::pki_types::CertificateDer<'_>,
+        _dss: &rustls::DigitallySignedStruct,
+    ) -> Result<rustls::client::danger::HandshakeSignatureValid, rustls::Error> {
+        Ok(rustls::client::danger::HandshakeSignatureValid::assertion())
+    }
+
+    fn supported_verify_schemes(&self) -> Vec<rustls::SignatureScheme> {
+        vec![
+            rustls::SignatureScheme::ECDSA_NISTP384_SHA384,
+            rustls::SignatureScheme::ECDSA_NISTP256_SHA256,
+            rustls::SignatureScheme::RSA_PSS_SHA512,
+            rustls::SignatureScheme::RSA_PSS_SHA384,
+            rustls::SignatureScheme::RSA_PSS_SHA256,
+            rustls::SignatureScheme::ED25519,
+        ]
    }
 }

 fn create_tls_config() -> anyhow::Result<Arc<rustls::ClientConfig>> {
    let mut config = rustls::ClientConfig::builder()
-        .with_safe_defaults()
        .with_root_certificates(rustls::RootCertStore::empty())
        .with_no_client_auth();