1
1
mirror of https://github.com/wez/wezterm.git synced 2024-11-27 12:23:46 +03:00

mux: upgrade rcgen

This version no longer generates invalid CA certificates and
allows TLS connections using the internal PKI to advance
further.  Still need to debug an early disconnect.
This commit is contained in:
Wez Furlong 2020-10-04 10:05:31 -07:00
parent 3dc5994fa8
commit 19cea53e35
4 changed files with 29 additions and 8 deletions

30
Cargo.lock generated
View File

@ -2521,6 +2521,17 @@ dependencies = [
"regex", "regex",
] ]
[[package]]
name = "pem"
version = "0.8.1"
source = "registry+https://github.com/rust-lang/crates.io-index"
checksum = "59698ea79df9bf77104aefd39cc3ec990cb9693fb59c3b0a70ddf2646fdffb4b"
dependencies = [
"base64 0.12.3",
"once_cell",
"regex",
]
[[package]] [[package]]
name = "percent-encoding" name = "percent-encoding"
version = "2.1.0" version = "2.1.0"
@ -2924,7 +2935,19 @@ source = "registry+https://github.com/rust-lang/crates.io-index"
checksum = "e6d6cbbf5f43710b9242a4897f4671a469198e2d826d9df043fc16e046f45d8a" checksum = "e6d6cbbf5f43710b9242a4897f4671a469198e2d826d9df043fc16e046f45d8a"
dependencies = [ dependencies = [
"chrono", "chrono",
"pem", "pem 0.6.1",
"ring",
"yasna",
]
[[package]]
name = "rcgen"
version = "0.8.5"
source = "registry+https://github.com/rust-lang/crates.io-index"
checksum = "4974f7e96ee51fa3c90c3022e02c3a7117e71cb2a84518a55e44360135200c25"
dependencies = [
"chrono",
"pem 0.8.1",
"ring", "ring",
"yasna", "yasna",
] ]
@ -4175,7 +4198,7 @@ dependencies = [
"pulldown-cmark", "pulldown-cmark",
"rangeset", "rangeset",
"ratelim", "ratelim",
"rcgen", "rcgen 0.7.0",
"regex", "regex",
"serde", "serde",
"serde_json", "serde_json",
@ -4211,7 +4234,6 @@ dependencies = [
"codec", "codec",
"config", "config",
"filedescriptor", "filedescriptor",
"foreign-types-shared",
"hostname", "hostname",
"libc", "libc",
"log", "log",
@ -4221,7 +4243,7 @@ dependencies = [
"pretty_env_logger", "pretty_env_logger",
"promise", "promise",
"rangeset", "rangeset",
"rcgen", "rcgen 0.8.5",
"smol", "smol",
"structopt", "structopt",
"uds_windows", "uds_windows",

View File

@ -11,7 +11,6 @@ anyhow = "1.0"
codec = { path = "../codec" } codec = { path = "../codec" }
config = { path = "../config" } config = { path = "../config" }
filedescriptor = { version="0.7", path = "../filedescriptor" } filedescriptor = { version="0.7", path = "../filedescriptor" }
foreign-types-shared = "0.1.1" # to peek into SslStream's SSL
hostname = "0.3" hostname = "0.3"
libc = "0.2" libc = "0.2"
log = "0.4" log = "0.4"
@ -21,7 +20,7 @@ portable-pty = { path = "../pty", features = ["serde_support"]}
pretty_env_logger = "0.4" pretty_env_logger = "0.4"
promise = { path = "../promise" } promise = { path = "../promise" }
rangeset = { path = "../rangeset" } rangeset = { path = "../rangeset" }
rcgen = "0.7" rcgen = "0.8"
smol = "1.2" smol = "1.2"
structopt = "0.3" structopt = "0.3"
umask = { path = "../umask" } umask = { path = "../umask" }

View File

@ -10,7 +10,7 @@ use std::path::PathBuf;
/// channel (eg: ssh to reach the host, then unix domain to access /// channel (eg: ssh to reach the host, then unix domain to access
/// the server) to make a request for the key information. /// the server) to make a request for the key information.
/// We'll generate that request a new client cert and return /// We'll generate that request a new client cert and return
/// both the public CA certificate informat and that key to the client. /// both the public CA certificate information and that key to the client.
/// The client will use both of those things to connect to the TLS /// The client will use both of those things to connect to the TLS
/// server. /// server.
pub struct Pki { pub struct Pki {

View File

@ -855,7 +855,7 @@ impl Client {
let msg = format!( let msg = format!(
"Please install the same version of wezterm on both \ "Please install the same version of wezterm on both \
the client and server! \ the client and server! \
The server reported error {} while being asked for its \ The server reported error '{}' while being asked for its \
version. This likely means that the server is older \ version. This likely means that the server is older \
than the client.", than the client.",
err err