trz-gateway-common 0.2.12

Secure Proxy / Agents implementation in Rust
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77

use std::convert::Infallible;
use std::sync::Arc;

use nameth::nameth;
use openssl::x509::store::X509Store;

use super::TrustedStoreConfig;
use crate::security_configuration::common::get_or_init;

/// A [TrustedStoreConfig] that computes the [X509Store] once,
/// and then memoizes it.
pub struct MemoizedTrustedStoreConfig<C> {
    base: C,
    root_certificates: std::sync::Mutex<Option<Arc<X509Store>>>,
}

impl<C> MemoizedTrustedStoreConfig<C> {
    pub fn new(base: C) -> Self {
        Self {
            base,
            root_certificates: Default::default(),
        }
    }
}

impl<C: TrustedStoreConfig> TrustedStoreConfig for MemoizedTrustedStoreConfig<C> {
    type Error = C::Error;
    fn root_certificates(&self) -> Result<Arc<X509Store>, Self::Error> {
        get_or_init(&self.root_certificates, || self.base.root_certificates())
    }
}

/// A [TrustedStoreConfig] that contains the pre-computed X509 store.
///
/// Computing the [X509Store] is thus an infallible operation.
#[derive(Clone)]
#[nameth]
pub struct CachedTrustedStoreConfig {
    root_certificates: Arc<X509Store>,
}

impl CachedTrustedStoreConfig {
    pub fn new<C: TrustedStoreConfig>(base: C) -> Result<Self, C::Error> {
        Ok(Self {
            root_certificates: base.root_certificates()?,
        })
    }
}

impl TrustedStoreConfig for CachedTrustedStoreConfig {
    type Error = Infallible;
    fn root_certificates(&self) -> Result<Arc<X509Store>, Self::Error> {
        Ok(self.root_certificates.clone())
    }
}

impl From<X509Store> for CachedTrustedStoreConfig {
    fn from(root_certificates: X509Store) -> Self {
        CachedTrustedStoreConfig {
            root_certificates: Arc::from(root_certificates),
        }
    }
}

mod debug {
    use std::fmt::Debug;
    use std::fmt::Formatter;

    use super::CACHED_TRUSTED_STORE_CONFIG;
    use super::CachedTrustedStoreConfig;

    impl Debug for CachedTrustedStoreConfig {
        fn fmt(&self, f: &mut Formatter<'_>) -> std::fmt::Result {
            f.debug_struct(CACHED_TRUSTED_STORE_CONFIG).finish()
        }
    }
}