1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
use cassandra::util::Protected;
use cassandra::error::*;
use cassandra_sys::CassSslVerifyFlags;
use cassandra_sys::CassSsl as _Ssl;
use cassandra_sys::cass_ssl_add_trusted_cert;
use cassandra_sys::cass_ssl_free;
use cassandra_sys::cass_ssl_new;
use cassandra_sys::cass_ssl_set_cert;
use cassandra_sys::cass_ssl_set_private_key;
use cassandra_sys::cass_ssl_set_verify_flags;
use std::ffi::CString;
#[derive(Debug, Eq, PartialEq, Copy, Clone, Hash)]
#[allow(missing_docs)]
#[allow(non_camel_case_types)]
pub enum SslVerifyFlag {
NONE,
PEER_CERT,
PEER_IDENTITY,
PEER_IDENTITY_DNS,
}
enhance_nullary_enum!(SslVerifyFlag, CassSslVerifyFlags, {
(NONE, CASS_SSL_VERIFY_NONE, "NONE"),
(PEER_CERT, CASS_SSL_VERIFY_PEER_CERT, "PEER_CERT"),
(PEER_IDENTITY, CASS_SSL_VERIFY_PEER_IDENTITY, "PEER_IDENTITY"),
(PEER_IDENTITY_DNS, CASS_SSL_VERIFY_PEER_IDENTITY_DNS, "PEER_IDENTITY_DNS"),
});
fn to_bitset(flags: &[SslVerifyFlag]) -> i32 {
let mut res = 0;
for f in flags.iter() {
res = res | f.inner() as u32;
}
res as i32
}
#[derive(Debug)]
pub struct Ssl(*mut _Ssl);
unsafe impl Send for Ssl {}
impl Protected<*mut _Ssl> for Ssl {
fn inner(&self) -> *mut _Ssl { self.0 }
fn build(inner: *mut _Ssl) -> Self { Ssl(inner) }
}
impl Drop for Ssl {
fn drop(&mut self) { unsafe { cass_ssl_free(self.0) } }
}
impl Default for Ssl {
fn default() -> Ssl { unsafe { Ssl(cass_ssl_new()) } }
}
impl Ssl {
pub fn add_trusted_cert(&mut self, cert: &str) -> Result<&mut Self> {
unsafe {
cass_ssl_add_trusted_cert(self.0, CString::new(cert)?.as_ptr())
.to_result(self)
}
}
pub fn set_verify_flags(&mut self, flags: &[SslVerifyFlag]) { unsafe { cass_ssl_set_verify_flags(self.0, to_bitset(flags)) } }
pub fn set_cert(&mut self, cert: &str) -> Result<&mut Self> {
unsafe {
cass_ssl_set_cert(self.0, CString::new(cert)?.as_ptr())
.to_result(self)
}
}
pub fn set_private_key(&mut self, key: &str, password: &str) -> Result<&mut Self> {
unsafe {
cass_ssl_set_private_key(self.0,
CString::new(key)?.as_ptr(),
password.as_ptr() as *const i8)
.to_result(self)
}
}
}