Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Wow this is fast.

However I tried rustls with redis for my axum application, for some reason it was not working, even though my self signed ca certificate was updated in my system's local CA store.

After a lot of try I gave up then thought about trying native tls, and it worked in first go.



Did you file an issue or ask in the rustls Discord channel? We're happy to help.


>Discord


The irony is that due to CA stores (and how verification is handled) it's usually a tad more ficklish to replace TLS clients than TLS servers.

Was there no way to provide a custom CA store (that only included your self signed one)?


Did you try rustls-tls-native-roots? rustls-tls defaulting to only use the webpki bundle caught me off guard on a system with a bespoke CA




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: