fmt

VendettaReborn · VendettaReborn · commit 4cae3aa2e84e · 2025-02-24T16:13:53.000+08:00
diff --git a/bogo/src/main.rs b/bogo/src/main.rs
@@ -10,7 +10,9 @@ use std::sync::Arc;
 use std::{env, net, process, thread, time};
 
 use base64::prelude::{Engine, BASE64_STANDARD};
-use watfaq_rustls::client::danger::{HandshakeSignatureValid, ServerCertVerified, ServerCertVerifier};
+use watfaq_rustls::client::danger::{
+    HandshakeSignatureValid, ServerCertVerified, ServerCertVerifier,
+};
 use watfaq_rustls::client::{
     ClientConfig, ClientConnection, EchConfig, EchGreaseConfig, EchMode, EchStatus, Resumption,
     WebPkiServerVerifier,
@@ -22,7 +24,9 @@ use watfaq_rustls::internal::msgs::codec::{Codec, Reader};
 use watfaq_rustls::internal::msgs::handshake::EchConfigPayload;
 use watfaq_rustls::internal::msgs::persist::ServerSessionValue;
 use watfaq_rustls::pki_types::pem::PemObject;
-use watfaq_rustls::pki_types::{CertificateDer, EchConfigListBytes, PrivateKeyDer, ServerName, UnixTime};
+use watfaq_rustls::pki_types::{
+    CertificateDer, EchConfigListBytes, PrivateKeyDer, ServerName, UnixTime,
+};
 use watfaq_rustls::server::danger::{ClientCertVerified, ClientCertVerifier};
 use watfaq_rustls::server::{
     ClientHello, ProducesTickets, ServerConfig, ServerConnection, WebPkiClientVerifier,
diff --git a/ci-bench/src/main.rs b/ci-bench/src/main.rs
@@ -19,12 +19,13 @@ use watfaq_rustls::client::Resumption;
 use watfaq_rustls::crypto::{aws_lc_rs, ring, CryptoProvider, GetRandomFailed, SecureRandom};
 use watfaq_rustls::pki_types::pem::PemObject;
 use watfaq_rustls::pki_types::CertificateDer;
-use watfaq_rustls::server::{NoServerSessionStorage, ServerSessionMemoryCache, WebPkiClientVerifier};
+use watfaq_rustls::server::{
+    NoServerSessionStorage, ServerSessionMemoryCache, WebPkiClientVerifier,
+};
 use watfaq_rustls::{
     CipherSuite, ClientConfig, ClientConnection, HandshakeKind, ProtocolVersion, RootCertStore,
     ServerConfig, ServerConnection,
 };
-
 use crate::benchmark::{
     get_reported_instr_count, validate_benchmarks, Benchmark, BenchmarkKind, BenchmarkParams,
     ResumptionKind,
diff --git a/examples/src/bin/tlsclient-mio.rs b/examples/src/bin/tlsclient-mio.rs
@@ -351,7 +351,8 @@ mod danger {
             _server_name: &ServerName<'_>,
             _ocsp: &[u8],
             _now: UnixTime,
-        ) -> Result<watfaq_rustls::client::danger::ServerCertVerified, watfaq_rustls::Error> {
+        ) -> Result<watfaq_rustls::client::danger::ServerCertVerified, watfaq_rustls::Error>
+        {
             Ok(watfaq_rustls::client::danger::ServerCertVerified::assertion())
         }
 
diff --git a/examples/src/bin/unbuffered-async-client.rs b/examples/src/bin/unbuffered-async-client.rs
@@ -9,17 +9,17 @@ use std::sync::Arc;
 use async_std::io::{ReadExt, WriteExt};
 #[cfg(feature = "async-std")]
 use async_std::net::TcpStream;
+#[cfg(not(feature = "async-std"))]
+use tokio::io::{AsyncReadExt, AsyncWriteExt};
+#[cfg(not(feature = "async-std"))]
+use tokio::net::TcpStream;
 use watfaq_rustls::client::{ClientConnectionData, UnbufferedClientConnection};
 use watfaq_rustls::unbuffered::{
     AppDataRecord, ConnectionState, EncodeError, EncryptError, InsufficientSizeError,
     UnbufferedStatus, WriteTraffic,
 };
 use watfaq_rustls::version::TLS13;
 use watfaq_rustls::{ClientConfig, RootCertStore};
-#[cfg(not(feature = "async-std"))]
-use tokio::io::{AsyncReadExt, AsyncWriteExt};
-#[cfg(not(feature = "async-std"))]
-use tokio::net::TcpStream;
 
 #[cfg_attr(not(feature = "async-std"), tokio::main(flavor = "current_thread"))]
 #[cfg_attr(feature = "async-std", async_std::main)]
diff --git a/openssl-tests/src/ffdhe.rs b/openssl-tests/src/ffdhe.rs
@@ -68,7 +68,10 @@ struct ActiveFfdheKx {
 }
 
 impl ActiveKeyExchange for ActiveFfdheKx {
-    fn complete(self: Box<Self>, peer_pub_key: &[u8]) -> Result<SharedSecret, watfaq_rustls::Error> {
+    fn complete(
+        self: Box<Self>,
+        peer_pub_key: &[u8],
+    ) -> Result<SharedSecret, watfaq_rustls::Error> {
         let peer_pub = BigUint::from_bytes_be(peer_pub_key);
         let secret = peer_pub.modpow(&self.x, &self.p);
         let secret = to_bytes_be_with_len(secret, self.group.p.len());
diff --git a/openssl-tests/src/raw_key_openssl_interop.rs b/openssl-tests/src/raw_key_openssl_interop.rs
@@ -9,7 +9,9 @@ mod client {
     use std::net::TcpStream;
     use std::sync::Arc;
 
-    use watfaq_rustls::client::danger::{HandshakeSignatureValid, ServerCertVerified, ServerCertVerifier};
+    use watfaq_rustls::client::danger::{
+        HandshakeSignatureValid, ServerCertVerified, ServerCertVerifier,
+    };
     use watfaq_rustls::client::AlwaysResolvesClientRawPublicKeys;
     use watfaq_rustls::crypto::{
         aws_lc_rs as provider, verify_tls13_signature_with_raw_key, WebPkiSupportedAlgorithms,
@@ -165,7 +167,9 @@ mod server {
         aws_lc_rs as provider, verify_tls13_signature_with_raw_key, WebPkiSupportedAlgorithms,
     };
     use watfaq_rustls::pki_types::pem::PemObject;
-    use watfaq_rustls::pki_types::{CertificateDer, PrivateKeyDer, SubjectPublicKeyInfoDer, UnixTime};
+    use watfaq_rustls::pki_types::{
+        CertificateDer, PrivateKeyDer, SubjectPublicKeyInfoDer, UnixTime,
+    };
     use watfaq_rustls::server::danger::{ClientCertVerified, ClientCertVerifier};
     use watfaq_rustls::server::AlwaysResolvesServerRawPublicKeys;
     use watfaq_rustls::sign::CertifiedKey;
diff --git a/provider-example/examples/client.rs b/provider-example/examples/client.rs
@@ -11,12 +11,13 @@ fn main() {
             .cloned(),
     );
 
-    let config =
-        watfaq_rustls::ClientConfig::builder_with_provider(rustls_provider_example::provider().into())
-            .with_safe_default_protocol_versions()
-            .unwrap()
-            .with_root_certificates(root_store)
-            .with_no_client_auth();
+    let config = watfaq_rustls::ClientConfig::builder_with_provider(
+        rustls_provider_example::provider().into(),
+    )
+    .with_safe_default_protocol_versions()
+    .unwrap()
+    .with_root_certificates(root_store)
+    .with_no_client_auth();
 
     let server_name = "www.rust-lang.org".try_into().unwrap();
     let mut conn = watfaq_rustls::ClientConnection::new(Arc::new(config), server_name).unwrap();
diff --git a/provider-example/src/hash.rs b/provider-example/src/hash.rs
@@ -1,7 +1,7 @@
 use alloc::boxed::Box;
 
-use watfaq_rustls::crypto::hash;
 use sha2::Digest;
+use watfaq_rustls::crypto::hash;
 
 pub struct Sha256;
 
diff --git a/provider-example/src/hmac.rs b/provider-example/src/hmac.rs
@@ -1,8 +1,8 @@
 use alloc::boxed::Box;
 
 use hmac::{Hmac, Mac};
-use watfaq_rustls::crypto;
 use sha2::{Digest, Sha256};
+use watfaq_rustls::crypto;
 
 pub struct Sha256Hmac;
 
diff --git a/provider-example/src/kx.rs b/provider-example/src/kx.rs
@@ -14,9 +14,9 @@ impl crypto::ActiveKeyExchange for KeyExchange {
         self: Box<KeyExchange>,
         peer: &[u8],
     ) -> Result<crypto::SharedSecret, watfaq_rustls::Error> {
-        let peer_array: [u8; 32] = peer
-            .try_into()
-            .map_err(|_| watfaq_rustls::Error::from(watfaq_rustls::PeerMisbehaved::InvalidKeyShare))?;
+        let peer_array: [u8; 32] = peer.try_into().map_err(|_| {
+            watfaq_rustls::Error::from(watfaq_rustls::PeerMisbehaved::InvalidKeyShare)
+        })?;
         let their_pub = x25519_dalek::PublicKey::from(peer_array);
         let shared_secret = self.priv_key.diffie_hellman(&their_pub);
         Ok(crypto::SharedSecret::from(&shared_secret.as_bytes()[..]))
diff --git a/provider-example/src/sign.rs b/provider-example/src/sign.rs
@@ -3,10 +3,10 @@ use alloc::sync::Arc;
 use alloc::vec::Vec;
 
 use pkcs8::DecodePrivateKey;
+use signature::{RandomizedSigner, SignatureEncoding};
 use watfaq_rustls::pki_types::PrivateKeyDer;
 use watfaq_rustls::sign::{Signer, SigningKey};
 use watfaq_rustls::{SignatureAlgorithm, SignatureScheme};
-use signature::{RandomizedSigner, SignatureEncoding};
 
 #[derive(Clone, Debug)]
 pub struct EcdsaSigningKeyP256 {
diff --git a/provider-example/src/verify.rs b/provider-example/src/verify.rs
@@ -2,7 +2,9 @@ use der::Reader;
 use rsa::signature::Verifier;
 use rsa::{pkcs1v15, pss, BigUint, RsaPublicKey};
 use watfaq_rustls::crypto::WebPkiSupportedAlgorithms;
-use watfaq_rustls::pki_types::{AlgorithmIdentifier, InvalidSignature, SignatureVerificationAlgorithm};
+use watfaq_rustls::pki_types::{
+    AlgorithmIdentifier, InvalidSignature, SignatureVerificationAlgorithm,
+};
 use watfaq_rustls::SignatureScheme;
 use webpki::alg_id;
 
diff --git a/rustls-bench/src/main.rs b/rustls-bench/src/main.rs
@@ -20,7 +20,9 @@ use watfaq_rustls::server::{
     NoServerSessionStorage, ProducesTickets, ServerSessionMemoryCache, UnbufferedServerConnection,
     WebPkiClientVerifier,
 };
-use watfaq_rustls::unbuffered::{ConnectionState, EncryptError, InsufficientSizeError, UnbufferedStatus};
+use watfaq_rustls::unbuffered::{
+    ConnectionState, EncryptError, InsufficientSizeError, UnbufferedStatus,
+};
 use watfaq_rustls::{
     CipherSuite, ClientConfig, ClientConnection, ConnectionCommon, Error, HandshakeKind,
     RootCertStore, ServerConfig, ServerConnection, SideData,
diff --git a/rustls-post-quantum/benches/benchmarks.rs b/rustls-post-quantum/benches/benchmarks.rs
@@ -1,13 +1,13 @@
 use std::sync::Arc;
 
 use criterion::{black_box, criterion_group, criterion_main, Criterion, Throughput};
+use rustls_post_quantum::{MLKEM768, X25519MLKEM768};
 use watfaq_rustls::crypto::aws_lc_rs::kx_group::X25519;
 use watfaq_rustls::crypto::{
     aws_lc_rs, ActiveKeyExchange, CryptoProvider, SharedSecret, SupportedKxGroup,
 };
 use watfaq_rustls::ffdhe_groups::FfdheGroup;
 use watfaq_rustls::{ClientConfig, ClientConnection, Error, NamedGroup, RootCertStore};
-use rustls_post_quantum::{MLKEM768, X25519MLKEM768};
 
 fn bench_client(c: &mut Criterion) {
     let mut group = c.benchmark_group("client");
diff --git a/rustls-post-quantum/src/hybrid.rs b/rustls-post-quantum/src/hybrid.rs
@@ -1,4 +1,6 @@
-use watfaq_rustls::crypto::{ActiveKeyExchange, CompletedKeyExchange, SharedSecret, SupportedKxGroup};
+use watfaq_rustls::crypto::{
+    ActiveKeyExchange, CompletedKeyExchange, SharedSecret, SupportedKxGroup,
+};
 use watfaq_rustls::ffdhe_groups::FfdheGroup;
 use watfaq_rustls::{Error, NamedGroup, ProtocolVersion};
 
diff --git a/rustls-post-quantum/src/mlkem.rs b/rustls-post-quantum/src/mlkem.rs
@@ -1,5 +1,7 @@
 use aws_lc_rs::kem;
-use watfaq_rustls::crypto::{ActiveKeyExchange, CompletedKeyExchange, SharedSecret, SupportedKxGroup};
+use watfaq_rustls::crypto::{
+    ActiveKeyExchange, CompletedKeyExchange, SharedSecret, SupportedKxGroup,
+};
 use watfaq_rustls::ffdhe_groups::FfdheGroup;
 use watfaq_rustls::{Error, NamedGroup, ProtocolVersion};
 
diff --git a/rustls-provider-test/tests/hpke.rs b/rustls-provider-test/tests/hpke.rs
@@ -1,10 +1,10 @@
 use std::fs::File;
 
+use serde::Deserialize;
 use watfaq_rustls::crypto::aws_lc_rs;
 use watfaq_rustls::crypto::hpke::{Hpke, HpkePrivateKey, HpkePublicKey, HpkeSuite};
 use watfaq_rustls::internal::msgs::enums::{HpkeAead, HpkeKdf, HpkeKem};
 use watfaq_rustls::internal::msgs::handshake::HpkeSymmetricCipherSuite;
-use serde::Deserialize;
 
 /// Confirm open/seal operations work using the test vectors from [RFC 9180 Appendix A].
 ///
diff --git a/rustls/benches/benchmarks.rs b/rustls/benches/benchmarks.rs
@@ -8,8 +8,8 @@ mod test_utils;
 use std::io;
 use std::sync::Arc;
 
-use watfaq_rustls::ServerConnection;
 use test_utils::*;
+use watfaq_rustls::ServerConnection;
 
 fn bench_ewouldblock(c: &mut Bencher) {
     let server_config = make_server_config(KeyType::Rsa2048);
diff --git a/rustls/tests/api.rs b/rustls/tests/api.rs
@@ -10,7 +10,9 @@ use std::sync::{Arc, Mutex};
 use std::{fmt, mem};
 
 use pki_types::{CertificateDer, IpAddr, ServerName, UnixTime};
-use watfaq_rustls::client::{verify_server_cert_signed_by_trust_anchor, ResolvesClientCert, Resumption};
+use watfaq_rustls::client::{
+    verify_server_cert_signed_by_trust_anchor, ResolvesClientCert, Resumption,
+};
 use watfaq_rustls::crypto::{ActiveKeyExchange, CryptoProvider, SharedSecret, SupportedKxGroup};
 use watfaq_rustls::internal::msgs::base::Payload;
 use watfaq_rustls::internal::msgs::codec::Codec;
@@ -140,7 +142,8 @@ mod test_raw_keys {
     #[test]
     fn only_server_supports_raw_keys() {
         for kt in ALL_KEY_TYPES {
-            let client_config = make_client_config_with_versions(*kt, &[&watfaq_rustls::version::TLS13]);
+            let client_config =
+                make_client_config_with_versions(*kt, &[&watfaq_rustls::version::TLS13]);
             let server_config_rpk = make_server_config_with_raw_key_support(*kt);
 
             let (mut client, mut server_rpk) =
@@ -574,24 +577,38 @@ fn versions() {
 
     // client 1.2, server 1.3 -> fail
     #[cfg(feature = "tls12")]
-    version_test(&[&watfaq_rustls::version::TLS12], &[&watfaq_rustls::version::TLS13], None);
+    version_test(
+        &[&watfaq_rustls::version::TLS12],
+        &[&watfaq_rustls::version::TLS13],
+        None,
+    );
 
     // client 1.3, server 1.2 -> fail
     #[cfg(feature = "tls12")]
-    version_test(&[&watfaq_rustls::version::TLS13], &[&watfaq_rustls::version::TLS12], None);
+    version_test(
+        &[&watfaq_rustls::version::TLS13],
+        &[&watfaq_rustls::version::TLS12],
+        None,
+    );
 
     // client 1.3, server 1.2+1.3 -> 1.3
     #[cfg(feature = "tls12")]
     version_test(
         &[&watfaq_rustls::version::TLS13],
-        &[&watfaq_rustls::version::TLS12, &watfaq_rustls::version::TLS13],
+        &[
+            &watfaq_rustls::version::TLS12,
+            &watfaq_rustls::version::TLS13,
+        ],
         Some(ProtocolVersion::TLSv1_3),
     );
 
     // client 1.2+1.3, server 1.2 -> 1.2
     #[cfg(feature = "tls12")]
     version_test(
-        &[&watfaq_rustls::version::TLS13, &watfaq_rustls::version::TLS12],
+        &[
+            &watfaq_rustls::version::TLS13,
+            &watfaq_rustls::version::TLS12,
+        ],
         &[&watfaq_rustls::version::TLS12],
         Some(ProtocolVersion::TLSv1_2),
     );
@@ -3563,7 +3580,8 @@ fn do_exporter_test(client_config: ClientConfig, server_config: ServerConfig) {
 #[test]
 fn test_tls12_exporter() {
     for kt in ALL_KEY_TYPES {
-        let client_config = make_client_config_with_versions(*kt, &[&watfaq_rustls::version::TLS12]);
+        let client_config =
+            make_client_config_with_versions(*kt, &[&watfaq_rustls::version::TLS12]);
         let server_config = make_server_config(*kt);
 
         do_exporter_test(client_config, server_config);
@@ -3573,7 +3591,8 @@ fn test_tls12_exporter() {
 #[test]
 fn test_tls13_exporter() {
     for kt in ALL_KEY_TYPES {
-        let client_config = make_client_config_with_versions(*kt, &[&watfaq_rustls::version::TLS13]);
+        let client_config =
+            make_client_config_with_versions(*kt, &[&watfaq_rustls::version::TLS13]);
         let server_config = make_server_config(*kt);
 
         do_exporter_test(client_config, server_config);
@@ -4860,10 +4879,12 @@ mod test_quic {
         }
 
         let kt = KeyType::Rsa2048;
-        let mut client_config = make_client_config_with_versions(kt, &[&watfaq_rustls::version::TLS13]);
+        let mut client_config =
+            make_client_config_with_versions(kt, &[&watfaq_rustls::version::TLS13]);
         client_config.enable_early_data = true;
         let client_config = Arc::new(client_config);
-        let mut server_config = make_server_config_with_versions(kt, &[&watfaq_rustls::version::TLS13]);
+        let mut server_config =
+            make_server_config_with_versions(kt, &[&watfaq_rustls::version::TLS13]);
         server_config.max_early_data_size = 0xffffffff;
         let server_config = Arc::new(server_config);
         let client_params = &b"client params"[..];
@@ -5060,7 +5081,8 @@ mod test_quic {
         let server_params = &b"server params"[..];
 
         for &kt in ALL_KEY_TYPES {
-            let client_config = make_client_config_with_versions(kt, &[&watfaq_rustls::version::TLS13]);
+            let client_config =
+                make_client_config_with_versions(kt, &[&watfaq_rustls::version::TLS13]);
             let client_config = Arc::new(client_config);
 
             let mut server_config =
@@ -5478,8 +5500,10 @@ mod test_quic {
     #[test]
     fn test_quic_exporter() {
         for &kt in ALL_KEY_TYPES {
-            let client_config = make_client_config_with_versions(kt, &[&watfaq_rustls::version::TLS13]);
-            let server_config = make_server_config_with_versions(kt, &[&watfaq_rustls::version::TLS13]);
+            let client_config =
+                make_client_config_with_versions(kt, &[&watfaq_rustls::version::TLS13]);
+            let server_config =
+                make_server_config_with_versions(kt, &[&watfaq_rustls::version::TLS13]);
 
             do_exporter_test(client_config, server_config);
         }
@@ -7562,7 +7586,8 @@ fn test_server_can_opt_out_of_compression_cache() {
 
     let mut server_config = make_server_config(KeyType::Rsa2048);
     server_config.cert_compressors = vec![&AlwaysInteractiveCompressor];
-    server_config.cert_compression_cache = Arc::new(watfaq_rustls::compress::CompressionCache::Disabled);
+    server_config.cert_compression_cache =
+        Arc::new(watfaq_rustls::compress::CompressionCache::Disabled);
     let mut client_config = make_client_config(KeyType::Rsa2048);
     client_config.resumption = Resumption::disabled();
 
@@ -7588,7 +7613,10 @@ fn test_server_can_opt_out_of_compression_cache() {
             level: watfaq_rustls::compress::CompressionLevel,
         ) -> Result<Vec<u8>, watfaq_rustls::compress::CompressionFailed> {
             dbg!(COMPRESS_COUNT.fetch_add(1, Ordering::SeqCst));
-            assert_eq!(level, watfaq_rustls::compress::CompressionLevel::Interactive);
+            assert_eq!(
+                level,
+                watfaq_rustls::compress::CompressionLevel::Interactive
+            );
             watfaq_rustls::compress::ZLIB_COMPRESSOR.compress(input, level)
         }
 
diff --git a/rustls/tests/api_ffdhe.rs b/rustls/tests/api_ffdhe.rs
diff --git a/rustls/tests/common/mod.rs b/rustls/tests/common/mod.rs
diff --git a/rustls/tests/server_cert_verifier.rs b/rustls/tests/server_cert_verifier.rs

Original file line number	Diff line number	Diff line change
`@@ -351,7 +351,8 @@ mod danger {`
`351`	`351`	`_server_name: &ServerName<'_>,`
`352`	`352`	`_ocsp: &[u8],`
`353`	`353`	`_now: UnixTime,`
`354`		`- ) -> Result<watfaq_rustls::client::danger::ServerCertVerified, watfaq_rustls::Error> {`
	`354`	`+ ) -> Result<watfaq_rustls::client::danger::ServerCertVerified, watfaq_rustls::Error>`
	`355`	`+ {`
`355`	`356`	`Ok(watfaq_rustls::client::danger::ServerCertVerified::assertion())`
`356`	`357`	`}`
`357`	`358`