[WIP] feat: implement support for raw public keys in TLS

dignifiedquire commented 1 week ago

Description

This is step one of #2798. This introduces the configuration of the TLS authentication method, allowing to enable the usage of raw public keys, which will lead to us being able to remove the hack of using self signed certificates.

TODOs

[x] add configuration in iroh-net
[ ] add configuration in iroh
[ ] tests
[ ] cleanup

Breaking Changes

Notes & open questions

Depends on #2934 for my own sanity

Change checklist

[ ] Self-review.
[ ] Documentation updates following the style guide, if relevant.
[ ] Tests if relevant.
[ ] All breaking changes documented.

github-actions[bot] commented 1 week ago

Documentation for this PR has been generated and is available at: https://n0-computer.github.io/iroh/pr/2937/docs/iroh/

Last updated: 2024-11-15T20:19:58Z

github-actions[bot] commented 1 week ago

Netsim report & logs for this PR have been generated and is available at: LOGS This report will remain available for 3 days.

Last updated for commit: fc2355d

matheus23 commented 4 days ago

For a hot minute I was imagining a feature on rustls to disable all non-RPK paths, imagining that we could get rid of ASN.1/DER parsing code. Then I remembered that we still use HTTPS :upside_down_face:

n0-computer / iroh