Bumped the minimum compiler version tested by CI to 1.56 - this is necessary due to an increasing number of dependencies introducing Cargo manifest features only supported on newer versions of Rust.
Add support for UNIX sockets
Thanks to @ColonelThirtyTwo for adding support for binding to UNIX sockets when creating a tiny-http server. This change makes a few small breaking API modifications, if you are constructing ServerConfig manually you will need to use the new ListenAddr type rather than directly supplying a net::SocketAddr. Likewise Server::server_addr() will now return an enum that can represent either a TCP socket or a UNIX socket.
Finally Request::remote_addr() now returns an Option<&SocketAddr> as UNIX sockets don't ever have a remote host.
Reduce required dependencies by switching to httpdate@esheppa replaced our internal HTTPDate type with the httpdate library (used extensively in the community by Hyper, Tokio and others) which reduces our baseline dependency tree from 18 crates to 5!
TestRequest::path no longer has a 'static bound, allowing for fuzzers to generate test request paths at runtime.
Unpinned zeroize so it can float around any stable ^1 version.
Bumped the minimum compiler version tested by CI to 1.56 - this is necessary due to an increasing number of dependencies
introducing Cargo manifest features only supported on newer versions of Rust.
Thanks to @ColonelThirtyTwo for adding support for binding to UNIX sockets when creating a tiny-http server. This change
makes a few small breaking API modifications, if you are constructing ServerConfig manually you will need to use the new ListenAddr
type rather than directly supplying a net::SocketAddr. Likewise Server::server_addr() will now return an enum that can
represent either a TCP socket or a UNIX socket.
Finally Request::remote_addr() now returns an Option<&SocketAddr> as UNIX sockets don't ever have a remote host.
@esheppa replaced our internal HTTPDate type with the httpdate library (used extensively in the community by Hyper, Tokio and others)
which reduces our baseline dependency tree from 18 crates to 5!
TestRequest::path no longer has a 'static bound, allowing for fuzzers to generate test request paths at runtime.
Unpinned zeroize so it can float around any stable ^1 version.
Thanks to @3xmblzj5 and @travispaul for their help in implementing Rustls as a
drop-in replacement for OpenSSL, you can now build tiny-http with TLS support without any external dependencies!
OpenSSL will remain the default implementation if you just enable the ssl feature, but you are strongly encouraged
to use ssl-rustls where possible!
chrono was only used to store and format DateTime into the slightly odd format required by RFC 7231, so to
avoid the numerous RUSTSEC advisories generated by the localtime_r issue, we can just drop it entirely and switch
to time-rs.
Unfortunately this means we need to bump our minimum tested compiler version to 1.51, and as such this change
requires a full minor release.
Most Recent Ignore Conditions Applied to This Pull Request
| Dependency Name | Ignore Conditions |
| --- | --- |
| tiny_http | [>= 0.10.a, < 0.11] |
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot show ignore conditions` will show all of the ignore conditions of the specified dependency
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
Updates the requirements on tiny_http to permit the latest version.
Release notes
Sourced from tiny_http's releases.
Changelog
Sourced from tiny_http's changelog.
... (truncated)
Commits
212b1c4
Prepare for 0.12.0 release87b00a8
Merge pull request #228 from esheppa/use-httpdatec2a38ad
remove unused url dependency, switch to httpdatef0fce7e
Remove the 'static requirement on TestRequest::pathdd9c8dd
Use ^1 zeroizeb9d9e8a
Update log dependency to 0.4.4789e1c1
Add support for UNIX socketsc5177b0
Release v0.11.0876efd6
Correctly load certificate chains into OpenSSLa9823f2
Refactor SSL support into two modulesMost Recent Ignore Conditions Applied to This Pull Request
| Dependency Name | Ignore Conditions | | --- | --- | | tiny_http | [>= 0.10.a, < 0.11] |Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show