x509 certificate error for version 0.2.13 on Amazon Linux 2

[warmuthc]

Hi there,

I work on a Rust application that uses native-tls to listen for requests from a Java application. We build for Amazon Linux 2, as well as RHEL8, RHEL9, Ubuntu20, Ubuntu22, and Ubuntu24.
Recently we attempted to update native-tls from version 0.2.12 to 02.13, but this breaks the application on Amazon Linux 2. No other operating systems are affected.

When the Rust application receives a message from the Java application, it closes the connection with this message:

IO error: error:0B07C065:x509 certificate routines:X509_STORE_add_cert:cert already in hash table:x509_lu.c:361:

I've narrowed it down to just this version change in this crate. Is there something in this update that breaks compatibility with AL2?

[sfackler]

It doesn't have anything to do with AL2. You need #324, which is in 0.2.14.

[warmuthc]

Sorry, I should have specified that we see the same issue with 0.2.14. With both strict mode for TLS enabled or disabled

[sfackler]

Can you put together a self contained example that reproduces the issue?