wtx 0.45.0

A collection of different transport implementations and related tools focused primarily on web technologies.
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49

use crate::{
  asn1::{
    Asn1DecodeWrapper, Asn1EncodeWrapper, Len, Opt, SEQUENCE_TAG, U32, asn1_writer, decode_asn1_tlv,
  },
  codec::{Decode, DecodeWrapper, Encode, EncodeWrapper, GenericCodec},
  x509::{INHIBIT_POLICY_MAPPING_TAG, REQUIRE_EXPLICIT_POLICY_TAG, X509Error},
};

/// It can be used to prohibit policy mapping or require that each certificate in a path contain
/// an acceptable policy identifier.
#[derive(Debug, PartialEq)]
pub struct PolicyConstraints {
  /// Number of additional certificates that may appear in the path before an explicit policy
  /// is required.
  pub require_explicit_policy: Option<u32>,
  /// Number of additional certificates that may appear in the path before policy mapping
  /// is no longer permitted.
  pub inhibit_policy_mapping: Option<u32>,
}

impl<'de> Decode<'de, GenericCodec<Asn1DecodeWrapper, ()>> for PolicyConstraints {
  #[inline]
  fn decode(dw: &mut DecodeWrapper<'de, Asn1DecodeWrapper>) -> crate::Result<Self> {
    let (SEQUENCE_TAG, _, value, rest) = decode_asn1_tlv(dw.bytes)? else {
      return Err(X509Error::InvalidExtensionPolicyConstraints.into());
    };
    dw.bytes = value;
    let require_explicit_policy: Option<U32> = Opt::decode(dw, REQUIRE_EXPLICIT_POLICY_TAG)?.0;
    let inhibit_policy_mapping: Option<U32> = Opt::decode(dw, INHIBIT_POLICY_MAPPING_TAG)?.0;
    dw.bytes = rest;
    Ok(Self {
      require_explicit_policy: require_explicit_policy.map(|el| el.u32()),
      inhibit_policy_mapping: inhibit_policy_mapping.map(|el| el.u32()),
    })
  }
}

impl Encode<GenericCodec<(), Asn1EncodeWrapper>> for PolicyConstraints {
  #[inline]
  fn encode(&self, ew: &mut EncodeWrapper<'_, Asn1EncodeWrapper>) -> crate::Result<()> {
    asn1_writer(ew, Len::MAX_ONE_BYTE, SEQUENCE_TAG, |local_ew| {
      Opt(&self.require_explicit_policy.map(U32::from_u32))
        .encode(local_ew, REQUIRE_EXPLICIT_POLICY_TAG)?;
      Opt(&self.inhibit_policy_mapping.map(U32::from_u32))
        .encode(local_ew, INHIBIT_POLICY_MAPPING_TAG)?;
      Ok(())
    })
  }
}