feat(forge): add flag to disable HTTPS certificate validation for RPC #11960

mirokuratczyk · 2025-10-03T19:13:47Z

Motivation

Resolve #11907 (comment).

Solution

Add --insecure/-k flag to forge script which toggles ignoring invalid certs (e.g., self-signed)

I'm not sure this PR handles all possible codepaths as new providers are built in many different places and each needs to be configured with .accept_invalid_certs(bool).

PR Checklist

Added Tests
Added Documentation
Breaking changes

mablr

Nice, but I guess it would be actually cleaner to build the provider using :

foundry/crates/cli/src/utils/mod.rs

Lines 102 to 106 in c646b88

    
           /// Returns a [RetryProvider] instantiated using [Config]'s 
        
           /// RPC 
        
           pub fn get_provider(config: &Config) -> Result<RetryProvider> { 
        
               get_provider_builder(config)?.build() 
        
           }

this would retrieve eth_rpc_accept_invalid_certs key from the config directly.

This actually confirms the need for a refactor of the RpcOpts/EvmArgs common fields. So I'll open a dedicated issue to get feedback from the project team.

mablr · 2025-10-03T20:03:31Z

crates/common/src/provider/mod.rs

 #[track_caller]
-pub fn get_http_provider(builder: impl AsRef<str>) -> RetryProvider {
-    try_get_http_provider(builder).unwrap()
+pub fn get_http_provider(builder: impl AsRef<str>, accept_invalid_certs: bool) -> RetryProvider {


This should not be there

mablr · 2025-10-03T20:04:02Z

crates/evm/core/src/backend/mod.rs

        let Some(endpoint) = ENDPOINT else { return };

-        let provider = get_http_provider(endpoint);
+        let provider = get_http_provider(endpoint, false);


feat(forge): add flag to disable HTTPS certificate validation for RPC

cc35ab5

github-project-automation bot added this to Foundry Oct 3, 2025

mirokuratczyk mentioned this pull request Oct 3, 2025

feat(forge): add flag to disable HTTPS certificate validation for RPC #11907

Open

mablr reviewed Oct 3, 2025

View reviewed changes

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

feat(forge): add flag to disable HTTPS certificate validation for RPC #11960

feat(forge): add flag to disable HTTPS certificate validation for RPC #11960

mirokuratczyk commented Oct 3, 2025

Uh oh!

mablr left a comment

Uh oh!

mablr Oct 3, 2025

Uh oh!

mablr Oct 3, 2025

Uh oh!

Uh oh!

	/// Returns a [RetryProvider] instantiated using [Config]'s
	/// RPC
	pub fn get_provider(config: &Config) -> Result<RetryProvider> {
	get_provider_builder(config)?.build()
	}

feat(forge): add flag to disable HTTPS certificate validation for RPC #11960

Are you sure you want to change the base?

feat(forge): add flag to disable HTTPS certificate validation for RPC #11960

Conversation

mirokuratczyk commented Oct 3, 2025

Motivation

Solution

PR Checklist

Uh oh!

mablr left a comment

Choose a reason for hiding this comment

Uh oh!

mablr Oct 3, 2025

Choose a reason for hiding this comment

Uh oh!

mablr Oct 3, 2025

Choose a reason for hiding this comment

Uh oh!

Uh oh!