1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
extern crate hyper_tls;
extern crate tokio_core;
extern crate openssl;
extern crate native_tls;
use std::path::Path;
use hyper;
use self::tokio_core::reactor::Handle;
pub fn http_connector() -> Box<Fn(&Handle) -> hyper::client::HttpConnector + Send + Sync> {
Box::new(move |handle: &Handle| {
hyper::client::HttpConnector::new(4, handle)
})
}
pub fn https_connector<CA>(
ca_certificate: CA,
) -> Box<Fn(&Handle) -> hyper_tls::HttpsConnector<hyper::client::HttpConnector> + Send + Sync>
where
CA: AsRef<Path>,
{
let ca_certificate = ca_certificate.as_ref().to_owned();
Box::new(move |handle: &Handle| {
let mut ssl = openssl::ssl::SslConnectorBuilder::new(openssl::ssl::SslMethod::tls())
.unwrap();
ssl.set_ca_file(ca_certificate.clone()).unwrap();
let builder: native_tls::TlsConnectorBuilder =
native_tls::backend::openssl::TlsConnectorBuilderExt::from_openssl(ssl);
let mut connector = hyper::client::HttpConnector::new(4, handle);
connector.enforce_http(false);
let connector: hyper_tls::HttpsConnector<hyper::client::HttpConnector> =
(connector, builder.build().unwrap()).into();
connector
})
}
pub fn https_mutual_connector<CA, K, C>(
ca_certificate: CA,
client_key: K,
client_certificate: C,
) -> Box<Fn(&Handle) -> hyper_tls::HttpsConnector<hyper::client::HttpConnector> + Send + Sync>
where
CA: AsRef<Path>,
K: AsRef<Path>,
C: AsRef<Path>,
{
let ca_certificate = ca_certificate.as_ref().to_owned();
let client_key = client_key.as_ref().to_owned();
let client_certificate = client_certificate.as_ref().to_owned();
Box::new(move |handle: &Handle| {
let mut ssl = openssl::ssl::SslConnectorBuilder::new(openssl::ssl::SslMethod::tls())
.unwrap();
ssl.set_ca_file(ca_certificate.clone()).unwrap();
ssl.set_private_key_file(client_key.clone(), openssl::x509::X509_FILETYPE_PEM)
.unwrap();
ssl.set_certificate_chain_file(client_certificate.clone())
.unwrap();
ssl.check_private_key().unwrap();
let builder: native_tls::TlsConnectorBuilder =
native_tls::backend::openssl::TlsConnectorBuilderExt::from_openssl(ssl);
let mut connector = hyper::client::HttpConnector::new(4, handle);
connector.enforce_http(false);
let connector: hyper_tls::HttpsConnector<hyper::client::HttpConnector> =
(connector, builder.build().unwrap()).into();
connector
})
}