rustls-extra 0.15.0

Useful abstractions to make it easier to work with the logic in rustls for epoll-based servers and clients.
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74

// This file is part of rustls-extra. It is subject to the license terms in the COPYRIGHT file found in the top-level directory of this distribution and at https://raw.githubusercontent.com/lemonrock/rustls-extra/master/COPYRIGHT. No part of rustls-extra, including this file, may be copied, modified, propagated, or distributed except according to the terms contained in the COPYRIGHT file.
// Copyright © 2019 The developers of rustls-extra. See the COPYRIGHT file in the top-level directory of this distribution and at https://raw.githubusercontent.com/lemonrock/rustls-extra/master/COPYRIGHT.


/// Represents an error when configuring a server.
#[derive(Debug)]
pub enum RootCertificateStoreLoadError
{
	/// Could not open a certificate authorities (CA) PEM file.
	CouldNotOpenCertificateAuthoritiesPemFile(PathBuf, io::Error),

	/// Could not read a certificate authorities (CA) PEM file.
	CouldNotReadCertificateAuthoritiesPemFile(PathBuf),

	/// After reading all certificate authority (CA) PEM files not a single valid certificate authority certificate (sic) was found.
	NoValidCertificateAuthoritiesInCertificateAuthoritiesPemFiles,
}

impl Display for RootCertificateStoreLoadError
{
	#[inline(always)]
	fn fmt(&self, f: &mut Formatter) -> fmt::Result
	{
		Debug::fmt(self, f)
	}
}

impl error::Error for RootCertificateStoreLoadError
{
	#[inline(always)]
	fn source(&self) -> Option<&(error::Error + 'static)>
	{
		use self::RootCertificateStoreLoadError::*;

		match self
		{
			&CouldNotOpenCertificateAuthoritiesPemFile(ref _path, ref error) => Some(error),

			&CouldNotReadCertificateAuthoritiesPemFile(..) => None,

			&NoValidCertificateAuthoritiesInCertificateAuthoritiesPemFiles => None,
		}
	}
}

impl RootCertificateStoreLoadError
{
	/// Opens and parses a root certificate store.
	#[inline(always)]
	pub	fn root_certificate_store(certificate_authority_root_certificates_files: &[PathBuf]) -> Result<RootCertStore, Self>
	{
		use self::RootCertificateStoreLoadError::*;

		let mut root_certificate_store = RootCertStore::empty();

		let mut total_valid_count = 0;
		for certificate_authority_root_certificates_file in certificate_authority_root_certificates_files.iter()
		{
			let file = File::open(certificate_authority_root_certificates_file).map_err(|error| CouldNotOpenCertificateAuthoritiesPemFile(certificate_authority_root_certificates_file.to_path_buf(), error))?;
			let mut buf_reader = BufReader::new(file);
			let (valid_count, _invalid_count) = root_certificate_store.add_pem_file(&mut buf_reader).map_err(|_| CouldNotReadCertificateAuthoritiesPemFile(certificate_authority_root_certificates_file.to_path_buf()))?;
			total_valid_count += valid_count;
		}

		if unlikely!(total_valid_count == 0)
		{
			Err(NoValidCertificateAuthoritiesInCertificateAuthoritiesPemFiles)
		}
		else
		{
			Ok(root_certificate_store)
		}
	}
}