Struct openssl::ssl::SslOptions [−]

pub struct SslOptions { /* fields omitted */ }

Options controlling the behavior of an SslContext.

Methods

`impl SslOptions`

`const DONT_INSERT_EMPTY_FRAGMENTS: SslOptions`

DONT_INSERT_EMPTY_FRAGMENTS: SslOptions = SslOptions{bits: ffi::SSL_OP_DONT_INSERT_EMPTY_FRAGMENTS,}

Disables a countermeasure against an SSLv3/TLSv1.0 vulnerability affecting CBC ciphers.

`const ALL: SslOptions`

ALL: SslOptions = SslOptions{bits: ffi::SSL_OP_ALL,}

A "reasonable default" set of options which enables compatibility flags.

`const NO_QUERY_MTU: SslOptions`

NO_QUERY_MTU: SslOptions = SslOptions{bits: ffi::SSL_OP_NO_QUERY_MTU,}

Do not query the MTU.

Only affects DTLS connections.

`const COOKIE_EXCHANGE: SslOptions`

COOKIE_EXCHANGE: SslOptions = SslOptions{bits: ffi::SSL_OP_COOKIE_EXCHANGE,}

Enables Cookie Exchange as described in RFC 4347 Section 4.2.1.

Only affects DTLS connections.

`const NO_TICKET: SslOptions`

NO_TICKET: SslOptions = SslOptions{bits: ffi::SSL_OP_NO_TICKET,}

Disables the use of session tickets for session resumption.

`const NO_SESSION_RESUMPTION_ON_RENEGOTIATION: SslOptions`

NO_SESSION_RESUMPTION_ON_RENEGOTIATION: SslOptions = SslOptions{bits: ffi::SSL_OP_NO_SESSION_RESUMPTION_ON_RENEGOTIATION,}

Always start a new session when performing a renegotiation on the server side.

`const NO_COMPRESSION: SslOptions`

NO_COMPRESSION: SslOptions = SslOptions{bits: ffi::SSL_OP_NO_COMPRESSION,}

Disables the use of TLS compression.

`const ALLOW_UNSAFE_LEGACY_RENEGOTIATION: SslOptions`

ALLOW_UNSAFE_LEGACY_RENEGOTIATION: SslOptions = SslOptions{bits: ffi::SSL_OP_ALLOW_UNSAFE_LEGACY_RENEGOTIATION,}

Allow legacy insecure renegotiation with servers or clients that do not support secure renegotiation.

`const SINGLE_ECDH_USE: SslOptions`

SINGLE_ECDH_USE: SslOptions = SslOptions{bits: ffi::SSL_OP_SINGLE_ECDH_USE,}

Creates a new key for each session when using ECDHE.

This is always enabled in OpenSSL 1.1.0.

`const SINGLE_DH_USE: SslOptions`

SINGLE_DH_USE: SslOptions = SslOptions{bits: ffi::SSL_OP_SINGLE_DH_USE,}

Creates a new key for each session when using DHE.

This is always enabled in OpenSSL 1.1.0.

`const CIPHER_SERVER_PREFERENCE: SslOptions`

CIPHER_SERVER_PREFERENCE: SslOptions = SslOptions{bits: ffi::SSL_OP_CIPHER_SERVER_PREFERENCE,}

Use the server's preferences rather than the client's when selecting a cipher.

This has no effect on the client side.

`const TLS_ROLLBACK_BUG: SslOptions`

TLS_ROLLBACK_BUG: SslOptions = SslOptions{bits: ffi::SSL_OP_TLS_ROLLBACK_BUG,}

Disables version rollback attach detection.

`const NO_SSLV2: SslOptions`

NO_SSLV2: SslOptions = SslOptions{bits: ffi::SSL_OP_NO_SSLv2,}

Disables the use of SSLv2.

`const NO_SSLV3: SslOptions`

NO_SSLV3: SslOptions = SslOptions{bits: ffi::SSL_OP_NO_SSLv3,}

Disables the use of SSLv3.

`const NO_TLSV1: SslOptions`

NO_TLSV1: SslOptions = SslOptions{bits: ffi::SSL_OP_NO_TLSv1,}

Disables the use of TLSv1.0.

`const NO_TLSV1_1: SslOptions`

NO_TLSV1_1: SslOptions = SslOptions{bits: ffi::SSL_OP_NO_TLSv1_1,}

Disables the use of TLSv1.1.

`const NO_TLSV1_2: SslOptions`

NO_TLSV1_2: SslOptions = SslOptions{bits: ffi::SSL_OP_NO_TLSv1_2,}

Disables the use of TLSv1.2.

`const NO_DTLSV1: SslOptions`

NO_DTLSV1: SslOptions = SslOptions{bits: ffi::SSL_OP_NO_DTLSv1,}

Disables the use of DTLSv1.0

Requires OpenSSL 1.0.2, 1.1.0, or 1.1.1 and the corresponding Cargo feature.

`const NO_DTLSV1_2: SslOptions`

NO_DTLSV1_2: SslOptions = SslOptions{bits: ffi::SSL_OP_NO_DTLSv1_2,}

Disables the use of DTLSv1.2. Requires OpenSSL 1.0.2, 1.1.0, or 1.1.1 and the corresponding Cargo feature.

`const NO_SSL_MASK: SslOptions`

NO_SSL_MASK: SslOptions = SslOptions{bits: ffi::SSL_OP_NO_SSL_MASK,}

Disables the use of all (D)TLS protocol versions.

This can be used as a mask when whitelisting protocol versions.

Requires OpenSSL 1.0.2, 1.1.0, or 1.1.1 and the corresponding Cargo feature.

Examples

Only support TLSv1.2:

use openssl::ssl::SslOptions;

let options = SslOptions::NO_SSL_MASK & !SslOptions::NO_TLSV1_2;

`fn empty() -> SslOptions`

Returns an empty set of flags.

`fn all() -> SslOptions`

Returns the set containing all flags.

`fn bits(&self) -> c_ulong`

Returns the raw value of the flags currently stored.

`fn from_bits(bits: c_ulong) -> Option<SslOptions>`

Convert from underlying bit representation, unless that representation contains bits that do not correspond to a flag.

`fn from_bits_truncate(bits: c_ulong) -> SslOptions`

Convert from underlying bit representation, dropping any bits that do not correspond to flags.

`fn is_empty(&self) -> bool`

Returns true if no flags are currently stored.

`fn is_all(&self) -> bool`

Returns true if all flags are currently set.

`fn intersects(&self, other: SslOptions) -> bool`

Returns true if there are flags common to both self and other.

`fn contains(&self, other: SslOptions) -> bool`

Returns true all of the flags in other are contained within self.

`fn insert(&mut self, other: SslOptions)`

Inserts the specified flags in-place.

`fn remove(&mut self, other: SslOptions)`

Removes the specified flags in-place.

`fn toggle(&mut self, other: SslOptions)`

Toggles the specified flags in-place.

`fn set(&mut self, other: SslOptions, value: bool)`

Inserts or removes the specified flags depending on the passed value.

Trait Implementations

`impl Copy for SslOptions`

`impl PartialEq for SslOptions`

`fn eq(&self, __arg_0: &SslOptions) -> bool`

This method tests for self and other values to be equal, and is used by ==. Read more

`fn ne(&self, __arg_0: &SslOptions) -> bool`

This method tests for !=.

`impl Eq for SslOptions`

`impl Clone for SslOptions`

`fn clone(&self) -> SslOptions`

Returns a copy of the value. Read more

`fn clone_from(&mut self, source: &Self)`
1.0.0
[src]

Performs copy-assignment from source. Read more

`impl PartialOrd for SslOptions`

`fn partial_cmp(&self, __arg_0: &SslOptions) -> Option<Ordering>`

This method returns an ordering between self and other values if one exists. Read more

`fn lt(&self, __arg_0: &SslOptions) -> bool`

This method tests less than (for self and other) and is used by the < operator. Read more

`fn le(&self, __arg_0: &SslOptions) -> bool`

This method tests less than or equal to (for self and other) and is used by the <= operator. Read more

`fn gt(&self, __arg_0: &SslOptions) -> bool`

This method tests greater than (for self and other) and is used by the > operator. Read more

`fn ge(&self, __arg_0: &SslOptions) -> bool`

This method tests greater than or equal to (for self and other) and is used by the >= operator. Read more

`impl Ord for SslOptions`

`fn cmp(&self, __arg_0: &SslOptions) -> Ordering`

This method returns an Ordering between self and other. Read more

`fn max(self, other: Self) -> Self`
1.22.0
[src]

Compares and returns the maximum of two values. Read more

`fn min(self, other: Self) -> Self`
1.22.0
[src]

Compares and returns the minimum of two values. Read more

`impl Hash for SslOptions`

`fn hash<H: Hasher>(&self, arg_0: &mut __H)`

Feeds this value into the given [Hasher]. Read more