You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This PR removes the dependency to OpenSSL, one of the most notorious library for cross compilation, for moon. This should make this project, as well as downstream executables like the closed-source mooncake, easier to cross-compile and available to more platforms.
Potential feature compatibility issue with reqwest upgrade
Category
Maintainability Code Snippet
reqwest = { version = "0.12.24", default-features = false, features = [
"multipart",
"blocking",
"json",
"stream",
"rustls-tls",
"charset",
"http2",
"system-proxy",
] } Recommendation
Verify that all existing reqwest usage patterns in the codebase are compatible with version 0.12, particularly around error handling and API changes. Consider adding integration tests to ensure HTTP functionality works correctly with the new TLS backend. Reasoning
Major version upgrades of HTTP clients often introduce breaking changes in APIs, error types, or behavior that could cause runtime issues if not properly tested.
Missing certificate validation configuration
Category
Correctness Code Snippet
reqwest = { version = "0.12.24", default-features = false, features = [
"rustls-tls",
"system-proxy",
] } Recommendation
Ensure that certificate validation behavior matches the previous OpenSSL implementation. Consider adding explicit configuration for certificate validation if the default rustls behavior differs from OpenSSL. Reasoning
Different TLS backends may have different default behaviors for certificate validation, which could affect security or cause connectivity issues with some servers.
Removed OpenSSL build configuration without verifying impact
Category
Performance Code Snippet
[target.'cfg(not(windows))'.dependencies]
openssl = { version = "0.10.66", features = ["vendored"] } Recommendation
Benchmark TLS performance between OpenSSL and rustls implementations to ensure no significant performance regression, especially for high-throughput scenarios or in resource-constrained environments. Reasoning
While rustls is generally efficient, OpenSSL with vendored features might have had specific optimizations that could affect build times or runtime performance in certain scenarios.
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
This PR removes the dependency to OpenSSL, one of the most notorious library for cross compilation, for
moon. This should make this project, as well as downstream executables like the closed-sourcemooncake, easier to cross-compile and available to more platforms.cc @myfreess
Metadata