ws: don't attempt to parse TLS files when running without TLS

2026-04-02 02:35:31 +00:00 · 2022-07-19 17:29:13 +02:00 · 2022-07-19 17:29:13 +02:00 · 7b06bf8736
commit 7b06bf8736
parent 72c66e6e1a
3 changed files with 8 additions and 7 deletions
--- a/aquatic_http/src/config.rs
+++ b/aquatic_http/src/config.rs
@ -10,7 +10,7 @@ use serde::Deserialize;
 use aquatic_common::cli::LogLevel;
 /// aquatic_http configuration
-/// 
+///
 /// Does not support running behind a reverse proxy.
 #[derive(Clone, Debug, PartialEq, TomlConfig, Deserialize)]
 #[serde(default, deny_unknown_fields)]
--- a/aquatic_ws/src/config.rs
+++ b/aquatic_ws/src/config.rs
@ -9,7 +9,7 @@ use aquatic_common::cli::LogLevel;
 use aquatic_toml_config::TomlConfig;
 /// aquatic_ws configuration
-/// 
+///
 /// Running behind a reverse proxy is supported, but IPv4 peer requests have
 /// to be proxied to IPv4 requests, and IPv6 requests to IPv6 requests.
 #[derive(Clone, Debug, PartialEq, TomlConfig, Deserialize)]
--- a/aquatic_ws/src/lib.rs
+++ b/aquatic_ws/src/lib.rs
@ -47,13 +47,14 @@ pub fn run(config: Config) -> ::anyhow::Result<()> {
    let (sentinel_watcher, sentinel) = PanicSentinelWatcher::create_with_sentinel();
    let priv_dropper = PrivilegeDropper::new(config.privileges.clone(), config.socket_workers);
-    let opt_tls_config = config
+    let opt_tls_config = if config.network.enable_tls {
-        .network
+        Some(Arc::new(create_rustls_config(
        .enable_tls
        .then_some(Arc::new(create_rustls_config(
            &config.network.tls_certificate_path,
            &config.network.tls_private_key_path,
-        )?));
+        )?))
    } else {
        None
    };
    let mut executors = Vec::new();