miku-ktls 7.0.0-rc.4

Configures kTLS for tokio-rustls client and server connections.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84

//! CipherSuite that kTLS utilize.

use rustls::SupportedCipherSuite;

use crate::{error::CipherSuiteError, version::KtlsVersion};

pub(crate) mod cipher_suite;

/// A TLS cipher suite. Used mostly internally.
#[derive(Clone, Copy)]
pub struct KtlsCipherSuite {
    /// The TLS version
    pub version: KtlsVersion,

    /// The cipher type
    pub typ: KtlsCipherType,
}

impl TryFrom<SupportedCipherSuite> for KtlsCipherSuite {
    type Error = CipherSuiteError;

    fn try_from(#[allow(unused)] suite: SupportedCipherSuite) -> Result<Self, Self::Error> {
        let version = match suite {
            #[cfg(feature = "tls12")]
            SupportedCipherSuite::Tls12(..) => KtlsVersion::TLS12,
            #[cfg(not(feature = "tls12"))]
            SupportedCipherSuite::Tls12(..) => {
                return Err(CipherSuiteError::Tls12NotBuiltIn);
            }
            SupportedCipherSuite::Tls13(..) => KtlsVersion::TLS13,
        };

        let typ = match suite {
            suite if suite == cipher_suite::TLS13_AES_128_GCM_SHA256 => KtlsCipherType::AesGcm128,
            suite if suite == cipher_suite::TLS13_AES_256_GCM_SHA384 => KtlsCipherType::AesGcm256,
            suite if suite == cipher_suite::TLS13_CHACHA20_POLY1305_SHA256 => {
                KtlsCipherType::Chacha20Poly1305
            }
            suite if suite == cipher_suite::TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 => {
                KtlsCipherType::AesGcm128
            }
            suite if suite == cipher_suite::TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 => {
                KtlsCipherType::AesGcm256
            }
            suite if suite == cipher_suite::TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 => {
                KtlsCipherType::Chacha20Poly1305
            }
            _ => return Err(CipherSuiteError::UnsupportedCipherSuite(suite)),
        };

        Ok(Self { version, typ })
    }
}

impl KtlsCipherSuite {
    #[inline]
    /// Converts this cipher suite into the equivalent `rustls`
    /// [`SupportedCipherSuite`].
    pub fn as_supported_cipher_suite(&self) -> SupportedCipherSuite {
        match self.version {
            KtlsVersion::TLS12 => match self.typ {
                KtlsCipherType::AesGcm128 => cipher_suite::TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256,
                KtlsCipherType::AesGcm256 => cipher_suite::TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384,
                KtlsCipherType::Chacha20Poly1305 => {
                    cipher_suite::TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
                }
            },
            KtlsVersion::TLS13 => match self.typ {
                KtlsCipherType::AesGcm128 => cipher_suite::TLS13_AES_128_GCM_SHA256,
                KtlsCipherType::AesGcm256 => cipher_suite::TLS13_AES_256_GCM_SHA384,
                KtlsCipherType::Chacha20Poly1305 => cipher_suite::TLS13_CHACHA20_POLY1305_SHA256,
            },
        }
    }
}

#[non_exhaustive]
#[derive(Debug, Clone, Copy)]
/// Cipher types supported by this crate
pub enum KtlsCipherType {
    AesGcm128,
    AesGcm256,
    Chacha20Poly1305,
}