-
Notifications
You must be signed in to change notification settings - Fork 33
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
improve API (make it harder to use wrong) #130
Comments
|
hannesm
changed the title
imrpove API (make it harder to use wrong)
improve API (make it harder to use wrong)
Feb 26, 2020
see #131 |
hannesm
added a commit
to hannesm/opam-repository
that referenced
this issue
Mar 11, 2020
CHANGES: * BREAKING mirleft/ocaml-x509#131 use mirage-crypto and mirage-crypto-pk instead of nocrypto raise lower OCaml bound to 4.07.0, test 4.10.0 in CI * BREAKING mirleft/ocaml-x509#131 Certificate.Host_set is now Host.Set, and has pretty-printers * BREAKING mirleft/ocaml-x509#131 Authenticator.null was removed (fixes mirleft/ocaml-x509#130, suggested by @emillon) * BREAKING mirleft/ocaml-x509#131 Authenticator.t now requires (non-optional) ~host and ~time arguments which may return an option. This allows to more easily spot the cases where None is provided. Also, time is (unit -> Ptime.t option) instead of Ptime.t -- thus the timestamp at the time of certificate verification is used instead of the time of Authenticator construction. Similar changes in Validation for verify_chain, verify_chain_of_trust, trust_key_fingerprint, trust_cert_fingerprint. fixes mirleft/ocaml-x509#130, suggested by @emillon
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
as discussed with @emillon
Authenticator.null
Authenticator.t
abstract (and provide a constructor) <- more easily discoverAuthenticator.t
usestime:(unit -> Ptime.t option)
((a) being explicit about time - (b) renametime
to something more sensible - (c) also use a function to avoid the timestamp used at Authenticator creation time vs actual authentication)host:[`host] Domain_name.t option
as wellThe text was updated successfully, but these errors were encountered: