Closed nnmkhang closed 3 months ago
My suggestion: allow passing in a CryptoProvider to the Verifier, and default to the rustls default if no CryptoProvider is supplied.
This sounds like a good suggestion. WDYT about https://github.com/rustls/rustls-platform-verifier/pull/81 ?
This was resolved by #81. Thanks again for filing the issue! I'm working on a release with this feature in https://github.com/rustls/rustls-platform-verifier/pull/88.
in
src/verification/windows.rs
there is a check to ensure that the defaultCryptoProvider
must be used.Enabling custom crypto providers will allow users who want to opt out of using the
rustls
the ability to configure platform verifier with their own crypto provider.From 'windows.rs` on line 427
and also line 448
My suggestion: allow passing in a
CryptoProvider
to theVerifier
, and default to therustls
default if noCryptoProvider
is supplied.