Skip to content

Clean up name api#182

Closed
djc wants to merge 21 commits intomainfrom
clean-up-name-api
Closed

Clean up name api#182
djc wants to merge 21 commits intomainfrom
clean-up-name-api

Conversation

@djc
Copy link
Member

@djc djc commented Sep 20, 2023

Small refactoring for the name API from reviewing #178. Hope this doesn't make a rebase too painful.

cpu added 14 commits September 18, 2023 10:11
@cpu
subject_name: remove comment about required feature
4e2ef1b 
We switched to using `doc_auto_cfg` to automatically indicate in
Rustdocs when an item requires a particular feature. This comment about
the `dns_name::DnsName` re-export requiring alloc isn't necessary
anymore.
@cpu
lib: remove unneeded manual docsrs cfg_attr
839cd93 
We switched to `doc_auto_cfg` and don't need to manually annotate
`cfg(feature ...)` annotations for docsrs purposes anymore.
@cpu
tests: remove unnecessary pub visibility
0682cec
@cpu
tests: rename data -> cert_der in expect_cert_dns_names
12cd0ea
@cpu
end_entity: rework dns_names to return iter of &str
f5ace6d 
This is what most consumers of the API are interested in, and avoids
needing to export the `GeneralDnsNameRef` and `WildcardDnsNameRef`
types.
@cpu
tests: simplify expect_cert_dns_names
de8b2ec
@cpu
tests: move no_subject_alt_names test above helper
8d60950
@cpu
tests: rework no_subject_alt_names test
2350c2e 
We can express this test with the `expect_cert_dns_names` helper.
@cpu
tests: clean up unneeded bindings
22cebce
@cpu
end_entity: fix dns_names rustdoc comment
7ffbabe 
Prior to this commit the rustdoc comment on `EndEntityCert.dns_names`
mentioned using `verify_is_valid_for_dns_name` and
`verify_is_valid_for_at_least_one_dns_name`, but these functions don't
exist anymore.

This commit updates the comment to point to
`EndEntityCert::verify_is_valid_for_subject_name`, and does so with
a proper Rustdoc link so that future updates will be caught by `cargo
doc` if we forget to fix this reference to match.
@cpu
end_entity: make dns_names infallible
cd7bbfd 
The purpose of the `dns_names` helper on an `EndEntityCert` is to
provide users the opportunity to get information on the dNSName SAN
values in a certificate for **non-validation** purposes. Checking that
a certificate is valid for a particular name should always be done with
`verify_is_valid_for_at_least_one_dns_name`.

With that use-case in mind, we can make the `dns_names` helper easier
for consumers to use by filtering out invalid general names, returning
an `Iterator<Item = &'a str>` unconditionally, instead of
a `Result`. This better matches the updated name validation semantics
where we ignore `MalformedDnsIdentifier` errors to continue to try to
find a valid name to validate against.
@cpu
lib: rm alloc req. for dns_names
5f4ec11 
With the update to the `dns_names` function in the previous commit we
can now make `EndEntity.dns_names` work without requiring `alloc`.
@cpu
subject_name: tidy up list_cert_dns_names
9754177 
Avoid combinator chaining, use explicit `match`.
@cpu
signed_data: fix code block missing close marker
006f878
@djc djc requested review from cpu and ctz September 20, 2023 08:51
@codecov
Copy link

codecov bot commented Sep 20, 2023
edited
Loading

Codecov Report

Merging #182 (219a115) into main (8d6a733) will increase coverage by 0.11%.
Report is 11 commits behind head on main.
The diff coverage is 89.28%.

❗ Current head 219a115 differs from pull request most recent head 27a1234. Consider uploading reports for the commit 27a1234 to get more accurate results

@@            Coverage Diff             @@
##             main     #182      +/-   ##
==========================================
+ Coverage   96.31%   96.43%   +0.11%     
==========================================
  Files          17       17              
  Lines        4510     4512       +2     
==========================================
+ Hits         4344     4351       +7     
+ Misses        166      161       -5
Files Changed Coverage Δ
src/subject_name/dns_name.rs 87.98% <88.46%> (+1.11%) ⬆️
src/end_entity.rs 100.00% <100.00%> (ø)
src/subject_name/verify.rs 92.09% <100.00%> (ø)

... and 6 files with indirect coverage changes

📣 We’re building smart automated test selection to slash your CI/CD build times. Learn more

djc added 7 commits September 20, 2023 11:11
@djc
Move InvalidDnsNameError definition down below usage
d8c05e1
@djc
Move GeneralDnsNameRef definition to the top
221fd4a
@djc
Refactor faux-bool enum definition for AllowWildcards
4e169bb
@djc
Use as_str() method to reference DnsNameRef contents
51f23a4 
The From impl feels a little unidiomatic because the DnsNameRef is not
consumed. An AsRef impl would unnecessarily constrain the lifetime of
the output value to `&self`, whereas it can live as long as `'a`.
@djc
Use as_str() method to reference WildcardDnsNameRef contents
941589c 
The From impl feels a little unidiomatic because the WildcardDnsNameRef is
not consumed. An AsRef impl would unnecessarily constrain the lifetime of
the output value to `&self`, whereas it can live as long as `'a`.
@djc
Use as_str() method to reference GeneralDnsNameRef contents
d5bc8e9 
The From impl feels a little unidiomatic because the GeneralDnsNameRef is
not consumed. An AsRef impl would unnecessarily constrain the lifetime of
the output value to `&self`, whereas it can live as long as `'a`.
@djc
Remove API that is now unused
27a1234
@djc djc force-pushed the clean-up-name-api branch from 219a115 to 27a1234 Compare September 20, 2023 09:17
@djc djc closed this Sep 20, 2023
@cpu cpu deleted the clean-up-name-api branch September 20, 2023 14:01
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@cpu cpu Awaiting requested review from cpu

@ctz ctz Awaiting requested review from ctz

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@djc @cpu