Install rustls's CryptoProvider based on features

Previously, we'd already assume `use-rustls` to use the default `aws-lc-rs` provider and `use-rustls-ring` to use the `ring` `CryptoProvider`, e.g., for `NoCertificateVerification`. However, we **wouldn't** actually install the respective provider based on the features, leading to a **reachable** panic at runtime when user tried to access `ssl://` Electrum servers. Here, we fix this omission and install the default provider according to the configured features.
2025-07-08 15:26:01 +02:00 · 2025-07-08 15:26:01 +02:00 · f24458248a
commit f24458248a
parent 7de4cb758d
1 changed files with 23 additions and 0 deletions
--- a/src/raw_client.rs
+++ b/src/raw_client.rs
@ -406,6 +406,29 @@ impl RawClient<ElectrumSslStream> {
    ) -> Result<Self, Error> {
        use std::convert::TryFrom;

+        if rustls::crypto::CryptoProvider::get_default().is_none() {
+            // We install a crypto provider depending on the set feature.
+            #[cfg(feature = "use-rustls")]
+            rustls::crypto::CryptoProvider::install_default(
+                rustls::crypto::aws_lc_rs::default_provider(),
+            )
+            .map_err(|_| {
+                Error::CouldNotCreateConnection(rustls::Error::General(
+                    "Failed to install CryptoProvider".to_string(),
+                ))
+            })?;
+
+            #[cfg(feature = "use-rustls-ring")]
+            rustls::crypto::CryptoProvider::install_default(
+                rustls::crypto::ring::default_provider(),
+            )
+            .map_err(|_| {
+                Error::CouldNotCreateConnection(rustls::Error::General(
+                    "Failed to install CryptoProvider".to_string(),
+                ))
+            })?;
+        }
+
        let builder = ClientConfig::builder();

        let config = if validate_domain {