Force backend choice through API rather than features

As discussed in #125.
rustls · Nov 28, 2020 · fc60b8c · fc60b8c
1 parent 6ace7ca
commit fc60b8c
Show file tree

Hide file tree

Showing 4 changed files with 39 additions and 47 deletions.
diff --git a/Cargo.toml b/Cargo.toml
@@ -34,9 +34,13 @@ tokio-runtime =  ["hyper/full", "ct-logs"]
 [[example]]
 name = "client"
 path = "examples/client.rs"
-required-features = ["tokio-runtime"]
+required-features = ["native-tokio", "tokio-runtime"]
 
 [[example]]
 name = "server"
 path = "examples/server.rs"
 required-features = ["tokio-runtime"]
+
+[package.metadata.docs.rs]
+all-features = true
+rustdoc-args = ["--cfg", "docsrs"]
diff --git a/examples/client.rs b/examples/client.rs
@@ -55,7 +55,7 @@ async fn run_client() -> io::Result<()> {
             hyper_rustls::HttpsConnector::from((http, tls))
         }
         // Default HTTPS connector.
-        None => hyper_rustls::HttpsConnector::new(),
+        None => hyper_rustls::HttpsConnector::with_native_roots(),
     };
 
     // Build the hyper client from the HTTPS connector.

diff --git a/src/connector.rs b/src/connector.rs
@@ -29,46 +29,43 @@ pub struct HttpsConnector<T> {
     feature = "tokio-runtime"
 ))]
 impl HttpsConnector<HttpConnector> {
-    /// Construct a new `HttpsConnector`.
-    ///
-    /// Takes number of DNS worker threads.
-    pub fn new() -> Self {
-        let mut http = HttpConnector::new();
-        http.enforce_http(false);
+    /// Construct a new `HttpsConnector` using the OS root store
+    #[cfg(feature = "rustls-native-certs")]
+    #[cfg_attr(docsrs, doc(cfg(feature = "rustls-native-certs")))]
+    pub fn with_native_roots() -> Self {
         let mut config = ClientConfig::new();
-        config.alpn_protocols = vec![b"h2".to_vec(), b"http/1.1".to_vec()];
-        #[cfg(feature = "rustls-native-certs")]
-        {
-            config.root_store = match rustls_native_certs::load_native_certs() {
-                Ok(store) => store,
-                Err((Some(store), err)) => {
-                    warn!("Could not load all certificates: {:?}", err);
-                    store
-                }
-                Err((None, err)) => Err(err).expect("cannot access native cert store"),
-            };
-        }
-        #[cfg(feature = "webpki-roots")]
-        {
-            config
-                .root_store
-                .add_server_trust_anchors(&webpki_roots::TLS_SERVER_ROOTS);
-        }
-        config.ct_logs = Some(&ct_logs::LOGS);
+        config.root_store = match rustls_native_certs::load_native_certs() {
+            Ok(store) => store,
+            Err((Some(store), err)) => {
+                warn!("Could not load all certificates: {:?}", err);
+                store
+            }
+            Err((None, err)) => Err(err).expect("cannot access native cert store"),
+        };
         if config.root_store.is_empty() {
             panic!("no CA certificates found");
         }
-        (http, config).into()
+        Self::build(config)
     }
-}
 
-#[cfg(all(
-    any(feature = "rustls-native-certs", feature = "webpki-roots"),
-    feature = "tokio-runtime"
-))]
-impl Default for HttpsConnector<HttpConnector> {
-    fn default() -> Self {
-        Self::new()
+    /// Construct a new `HttpsConnector` using the `webpki_roots`
+    #[cfg(feature = "webpki-roots")]
+    #[cfg_attr(docsrs, doc(cfg(feature = "webpki-roots")))]
+    pub fn with_webpki_roots() -> Self {
+        let mut config = ClientConfig::new();
+        config
+            .root_store
+            .add_server_trust_anchors(&webpki_roots::TLS_SERVER_ROOTS);
+        Self::build(config)
+    }
+
+    fn build(mut config: ClientConfig) -> Self {
+        let mut http = HttpConnector::new();
+        http.enforce_http(false);
+
+        config.alpn_protocols = vec![b"h2".to_vec(), b"http/1.1".to_vec()];
+        config.ct_logs = Some(&ct_logs::LOGS);
+        (http, config).into()
     }
 }
 

diff --git a/src/lib.rs b/src/lib.rs
@@ -5,13 +5,13 @@
 //! ## Example
 //!
 //! ```no_run
-//! # #[cfg(all(any(feature = "rustls-native-certs", feature = "webpki-roots"), feature = "tokio-runtime"))]
+//! # #[cfg(all(feature = "rustls-native-certs", feature = "tokio-runtime"))]
 //! # fn main() {
 //! use hyper::{Body, Client, StatusCode, Uri};
 //!
 //! let mut rt = tokio::runtime::Runtime::new().unwrap();
 //! let url = ("https://hyper.rs").parse().unwrap();
-//! let https = hyper_rustls::HttpsConnector::new();
+//! let https = hyper_rustls::HttpsConnector::with_native_roots();
 //!
 //! let client: Client<_, hyper::Body> = Client::builder().build(https);
 //!
@@ -22,15 +22,6 @@
 //! # fn main() {}
 //! ```
 
-#[cfg(all(
-    feature = "tokio-runtime",
-    any(not(feature = "rustls-native-certs"), feature = "webpki-roots"),
-    any(not(feature = "webpki-roots"), feature = "rustls-native-certs")
-))]
-compile_error!(
-    "Must enable exactly one of rustls-native-certs (default) or webpki-roots with tokio-runtime! (note: use `default-features = false' in a binary crate for one or other)"
-);
-
 mod connector;
 mod stream;