Joe Birr-Pixton

This is likely a feature request on the openssl-probe crate

Ah, yes, you're right. openssl-probe does actually support this already; since it returns both the bundle file and also the directory to look in. So I'll plan to get this...

This project is passively maintained: I don't have immediate plans to add new features, but will fix bugs.

Is there a lint we can activate to validate/defend this?

> @ctz, any thoughts? I think I should make these have a LRU eviction strategy. It's most likely to be the useful behaviour.

rustls supports the stateless approach (aka "tickets") but it's not a sound idea to do 0RTT resumption with them: see https://tools.ietf.org/html/rfc8446#section-8

Over in rustls we'd like to implement support for Encrypted Client Hello, which would ideally use this. Failing that, the work in this PR could live in a separate crate...

> Bumping the crate version (maybe to an alpha or beta pre-release version) when we make a semver-breaking change seems reasonable. This ^ is the summary of what we're doing....

Thanks for the contribution here -- recently we've been trying to move away from errors that aren't machine readable because they squashed the cause into a string -- see eg....

This is now on main and will be part of the forthcoming 0.21.0 release. Testing before then is gratefully received; please raise any issues found. Thanks to @ereslibre again!