Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

conditionally install aws-lc-rs #1617

Merged
merged 2 commits into from
Oct 25, 2024
Merged

conditionally install aws-lc-rs #1617

merged 2 commits into from
Oct 25, 2024

Conversation

goenning
Copy link
Contributor

@goenning goenning commented Oct 25, 2024
edited
Loading

Motivation

There was a recent panic on our app ( aptakube/aptakube#319 ) and it was caused by this unwrap

Solution

I suppose we should always check if there's a CryptoProvider already installed before installing another one. That's how it's done here

kube/kube-client/src/client/builder.rs

Lines 85 to 92 in ecbdafc

#[cfg(all(feature = "aws-lc-rs", feature = "rustls-tls"))]
{
if rustls::crypto::CryptoProvider::get_default().is_none() {
// the only error here is if it's been initialized in between: we can ignore it
// since our semantic is only to set the default value if it does not exist.
let _ = rustls::crypto::aws_lc_rs::default_provider().install_default();
}
}
but for some reason the oidc.rs did not

I'm also explicitly installing aws_lc_rs (with a fallback to ring) on my app, so I would expect kube to just skip it as it's already installed

cc @mcluseau

@goenning goenning changed the title conditionally install aws conditionally install aws-lc-rs Oct 25, 2024
@codecov Codecov
Copy link

codecov bot commented Oct 25, 2024
edited
Loading

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 75.3%. Comparing base (ecbdafc) to head (ac24670).
Report is 2 commits behind head on main.

Additional details and impacted files 
@@           Coverage Diff           @@
##            main   #1617     +/-   ##
=======================================
+ Coverage   75.3%   75.3%   +0.1%     
=======================================
  Files         82      82             
  Lines       7343    7344      +1     
=======================================
+ Hits        5527    5528      +1     
  Misses      1816    1816
Files with missing lines Coverage Δ
kube-client/src/client/auth/oidc.rs 56.4% <100.0%> (+0.3%) ⬆️

@mcluseau
Copy link
Contributor

Hi @goenning , I agree. It triggers some "should we factorize this" questions in my mind, but that's a question for another day :)
/lgtm

@clux clux added the changelog-fix changelog fix category for prs label Oct 25, 2024
clux
clux approved these changes Oct 25, 2024
View reviewed changes
Copy link
Member

@clux clux left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks for this. I see (after initially being wrong and deleting my first comment) that we do this already in one other place, and bubble up an error in oauth.

I guess the oauth one is coming through tame-oauth so it makes sense it's different.

@clux clux added this to the 0.97.0 milestone Oct 25, 2024
@clux clux enabled auto-merge (squash) October 25, 2024 09:17
@clux clux merged commit 140c9bd into kube-rs:main Oct 25, 2024
16 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@clux clux clux approved these changes

Assignees
No one assigned
Labels
changelog-fix changelog fix category for prs
Projects
None yet
Milestone
0.97.0
Development

Successfully merging this pull request may close these issues.
3 participants
@goenning @mcluseau @clux