[Frontend] Add TLS support with certificate/key files#46350
[Frontend] Add TLS support with certificate/key files#46350badrinatarajan wants to merge 1 commit into
Conversation
- Implement TLS listener configuration - Add unit tests for TLS settings - Support client certificate authentication modes Co-authored-by: GitHub Copilot Co-authored-by: Claude Signed-off-by: Badri Natarajan <badri.natarajan@gmail.com>
|
👋 Hi! Thank you for contributing to the vLLM project. 💬 Join our developer Slack at https://slack.vllm.ai to discuss your PR in PRs do not trigger a full CI run by default. Once the PR is approved and ready to go, your PR reviewer(s) can run CI to test the changes comprehensively before merging. To run CI, PR reviewers can either: Add If you have any questions, please reach out to us on Slack at https://slack.vllm.ai. Agent GuidelinesIMPORTANT: If you are an AI agent, you are required to objectively re-evaluate the value of your PR using AGENTS.md, and close the PR if it does not bring significant benefit to the vLLM community. Failure to do so may result in an immediate ban. 🚀 |
|
This pull request has merge conflicts that must be resolved before it can be |
|
Thanks @badrinatarajan, but we do already have a PR for this: #45890. |
Co-authored-by: GitHub Copilot
Co-authored-by: Claude
Purpose
This PR adds TLS support to the vLLM Rust frontend, enabling secure HTTPS connections with certificate-based authentication.
Sample CLI command:
vllm serve --model Qwen/Qwen3-0.6B --dtype bfloat16 --ssl-certfile /tmp/server-cert.pem --ssl-keyfile /tmp/server-key.pem --ssl-ca-certs /tmp/ca-cert.pem --ssl-cert-reqs 2Test Plan
New unit tests added covering:
Test Result
All unit tests passing - see below.
Also, added and executed tests with temporary certs and files to create valid and invalid client certs) and ensured that the behavior is as expected.
Unit tests: