Differential D53490

devel/uv: Make the selected TLS provider use the system default truststore
ClosedPublic
Actions

Authored by michaelo on Oct 30 2025, 9:55 PM.

Tags

None

Referenced Files

	F154423777: D53490.diff
	Tue, Apr 28, 11:15 AM

	Unknown Object (File)
	Mon, Apr 27, 6:32 AM

	Unknown Object (File)
	Fri, Apr 24, 8:29 PM

	Unknown Object (File)
	Mon, Apr 20, 12:05 PM

	Unknown Object (File)
	Sat, Apr 18, 2:34 PM

	Unknown Object (File)
	Thu, Apr 16, 3:07 AM

	Unknown Object (File)
	Thu, Apr 16, 1:32 AM

	Unknown Object (File)
	Sun, Apr 12, 2:13 PM

View All 61 Files

Subscribers

Details

Reviewers

yuri
vishwin

Group Reviewers

Commits

R11:9ddf7a912155: devel/uv: Make the selected TLS provider use the system default truststore

Summary

uv uses openssl_probe::probe() transitively which unfortunately discovers the
wrong truststore sources resulting in certificate validation errors even if
certctl(8) manages everything nicely. The selected provider might be OpenSSL
from the system, vendored OpenSSL, rustls or maybe something else.

Note: uv still requires you to use --native-tls or UV_NATIVE_TLS=1

Approved by: yuri (maintainer), mikael (rust maintainer)
Obtained from: https://github.com/alexcrichton/openssl-probe/pull/39
MFH: 2025Q4

Diff Detail

Repository

R11 FreeBSD ports repository

Lint

Lint Not Applicable

Unit

Tests Not Applicable

Event Timeline

michaelo created this revision.Oct 30 2025, 9:55 PM

Herald added a subscriber: ziaee. · View Herald TranscriptOct 30 2025, 9:55 PM

michaelo requested review of this revision.Oct 30 2025, 9:55 PM

Harbormaster completed remote builds in B68301: Diff 165506.Oct 30 2025, 9:55 PM

michaelo added a reviewer: rust.Oct 30 2025, 9:57 PM

michaelo added a reviewer: vishwin.Oct 31 2025, 9:48 PM

This revision was not accepted when it landed; it landed in state Needs Review.Nov 3 2025, 8:29 AM

Closed by commit R11:9ddf7a912155: devel/uv: Make the selected TLS provider use the system default truststore (authored by michaelo, committed by yuri). · Explain Why

This revision was automatically updated to reflect the committed changes.

yuri added a commit: R11:9ddf7a912155: devel/uv: Make the selected TLS provider use the system default truststore.

@yuri Thank you for the merge!

Revision Contents
Changeset List

Path

Size

devel/

uv/

1 line

files/

patch-cargo-crates_openssl-probe-0.1.6_src_lib.rs

50 lines

Diff 165715

devel/uv/Makefile

Loading...

devel/uv/files/patch-cargo-crates_openssl-probe-0.1.6_src_lib.rs

Loading...