Skip to content

Make CertVerifier buffer size a const generic on HttpClient#1

Open
abhay wants to merge 2 commits into
mainfrom
feat/cert-size-generic
Open

Make CertVerifier buffer size a const generic on HttpClient#1
abhay wants to merge 2 commits into
mainfrom
feat/cert-size-generic

Conversation

@abhay

@abhay abhay commented Feb 17, 2026

Copy link
Copy Markdown

Adds const CERT_SIZE: usize = 4096 to TlsConfig, Provider, and HttpClient (all behind #[cfg(feature = "embedded-tls")]). This lets consumers specify a larger certificate chain buffer for servers with long chains (e.g. Telegram's 4-cert chain needs ~6144 bytes).

Default of 4096 preserves backward compatibility — existing code compiles unchanged.

Also points embedded-tls dependency at hackshare/embedded-tls fork (hw-rsa branch) for hardware RSA offload support. Removes stale esp-mbedtls git dep (URL no longer resolves) and suppresses cfg warnings for its dormant code paths.

Adds `const CERT_SIZE: usize = 4096` to `TlsConfig`, `Provider`, and
`HttpClient` (all behind `#[cfg(feature = "embedded-tls")]`). This lets
consumers specify a larger certificate chain buffer for servers with
long chains (e.g. Telegram's 4-cert chain needs ~6144 bytes).

Default of 4096 preserves backward compatibility — existing code
compiles unchanged.

Also points embedded-tls dependency at hackshare/embedded-tls fork
(hw-rsa branch) for hardware RSA offload support. Removes stale
esp-mbedtls git dep (URL no longer resolves) and suppresses cfg
warnings for its dormant code paths.
@abhay abhay force-pushed the feat/cert-size-generic branch from e21f665 to 7cce9ce Compare February 18, 2026 23:53
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

1 participant