esp-hal icon indicating copy to clipboard operation
esp-hal copied to clipboard
verified publisher icon esp-rs

Explore Rustls and create an example

Open bjoernQ opened this issue 1 year ago • 1 comments

Initially we can use RustCrypto to create a Rustls-Crypto-Provider (and later use HW-acceleration) to provide an alternative to mbedtls in cases where embedded-tls isn't enough (e.g. mutual authentication, server functionality etc.)

bjoernQ avatar Jul 19 '24 09:07 bjoernQ

Blocked by https://github.com/rustls/rustls/issues/2068

bjoernQ avatar Aug 28 '24 09:08 bjoernQ

I have been really busy working on https://github.com/rustls/rustls/pull/2200 to enable building rustls for this kind of target. This is almost ready, with a few remaining XXX / TODO items that I would like to resolve soon. And I have a similar update for rustls-rustcrypto provider working here: https://github.com/brodycj/rustls-rustcrypto/pull/1

Bad news is that there may be some resistance due to the requirement for Rust nightly & issue with the built-in rustls providers: https://github.com/rustls/rustls/issues/2068#issuecomment-2541589795

requires Rust nightly version

Perhaps this isn't a feature ready for mainline Rustls in this case?

One issue is that I had some trouble building the built-in aws-lc-rs & ring providers with the no atomic ptr targets.

I have similar feelings here. If this only works with rustls-rustcrypto, and not the two mainline crypto providers, is it ready to ship?

If they would reject my proposal or put it on hold, this would continue to block progress here.

I personally cannot see why they should reject a feature that could help some people in the embedded Rust community, even if the feature is clearly documented as an "unstable" feature that should only affect those who want to use the feature.

I would really appreciate it if anyone could help support my case to get my proposal accepted and included.

I would surely hate it if we could not use rustls without forking it.

brody4hire avatar Dec 13 '24 17:12 brody4hire

Please note my questions shouldn't be read as intent to reject the proposal. I'm only one maintainer and don't set the project direction. I also haven't made a personal conclusion of whether it should/shouldn't be accepted, I'm only asking questions I think are relevant to evaluating the state of the work as part of a broader discussion.

cpu avatar Dec 13 '24 17:12 cpu

~~updated response: @cpu I would like to propose we keep the discussion in rustls/rustls#2068 for now, I think all the info I wrote here should now be in my comment on rustls/rustls#2068~~

old response:

Thanks @cpu, sorry I didn't see your comment before commenting in the other thread - https://github.com/rustls/rustls/issues/2068#issuecomment-2541917807 - quoting most of it here:

I was hoping to contribute this feature as an unstable feature, and I think there is plenty of precedence for supporting unstable feature options. Here are a couple prime examples that I found from a very quick search, which happen to be within the Rust ecosystem:

  • https://doc.rust-lang.org/cargo/reference/unstable.html - unstable features in Rust itself
  • https://docs.deno.com/runtime/reference/cli/unstable_flags/

Yes there would be some special requirements for those who wish to start using this proposed feature, which I don't think should affect anyone else not using this feature.

The one minor caveat I can think of is that someone building rustls with --all-features flag would be affected by this feature. But considering that rustls is a library, I think this could only be an issue with someone building rustls as a stand-alone library build, NOT someone including rustls as a dependency for a higher-level application or library.

@cpu @bjoernQ I don't know which thread would be best for us to continue discussion in, or if it may be better to continue discussion in the PR itself - rustls/rustls#2200

I think the biggest impact could be in the following kinds of stand-alone rustls library builds:

  • build with all features - I would love to find a way to enable building with all stable features
  • build with proposed critical-section feature - this would require --cfg option to get the required support from portable-atomic-util::Arc

Alternative could be to use an unstable cfg feature, like I did in this released contribution: https://github.com/taiki-e/portable-atomic/pull/195

P.S. I will be unplugging in the next couple hours, back online sometime during the weekend.

brody4hire avatar Dec 13 '24 17:12 brody4hire

I don't know which thread would be best for us to continue discussion in, or if it may be better to continue discussion in the PR itself - https://github.com/rustls/rustls/pull/2200

Let's continue in Rustls#2200 - I just wanted to add context here before anyone got too worked up about an outcome that isn't decided.

cpu avatar Dec 13 '24 17:12 cpu

I tried to understand the status quo of the changes in rustls, and it seems to me supporting targets without atomics in rustls is no further (thank you @brody4hire for your work on making it easier to fork though!). Given that we are not end users, but vendors, I don't think we can recommend rustls for our embedded customers. Therefore I'll close this for now.

We may add an example for our chips with atomics support, for completeness sake, but without full support there will always be an asterisk.

MabezDev avatar Jul 18 '25 13:07 MabezDev