Expand description
This module contains all the rustls specific pingora integration for things like loading certificates and private keys
Modules§
- version
- All defined protocol versions appear in this module.
Structs§
- Accept
- Future returned from
TlsAcceptor::acceptwhich will resolve once the accept handshake has finished. - Certificate
Der - A DER-encoded X.509 certificate; as specified in RFC 5280
- Client
Config - Common configuration for (typically) all connections made by a program.
- Client
TlsStream - A wrapper around an underlying raw stream which implements the TLS or SSL protocol.
- Connect
- Future returned from
TlsConnector::connectwhich will resolve once the connection handshake has finished. - Digitally
Signed Struct - This type combines a
SignatureSchemeand a signature payload produced with that scheme. - Ellipses
- Handshake
Signature Valid - Zero-sized marker type representing verification of a signature.
- KeyLog
File KeyLogimplementation that opens a file whose name is given by theSSLKEYLOGFILEenvironment variable, and writes keys into it.- NoDebug
- Wraps a type
Tand provides a Debug impl that does not rely onTbeing Debug. - Root
Cert Store - A container for root certificates able to provide a root-of-trust for connection authentication.
- Server
Cert Verified - Zero-sized marker type representing verification of a server cert chain.
- Server
Config - Common configuration for a set of server sessions.
- Server
TlsStream - A wrapper around an underlying raw stream which implements the TLS or SSL protocol.
- Stream
- This type implements
io::Readandio::Write, encapsulating a ConnectionCand an underlying transportT, such as a socket. - TlsAcceptor
- A wrapper around a
rustls::ServerConfig, providing an asyncacceptmethod. - TlsConnector
- A wrapper around a
rustls::ClientConfig, providing an asyncconnectmethod. - Unix
Time - A timestamp, tracking the number of non-leap seconds since the Unix epoch.
- WebPki
Server Verifier - Default
ServerCertVerifier, see the trait impl for more information. - With
Type Info
Enums§
- Certificate
Error - The ways in which certificate validators can express errors.
- Private
KeyDer - A DER-encoded X.509 private key, in one of several formats
- RusTls
Error - rustls reports protocol errors using this type.
- Server
Name - Encodes ways a client can know the expected name of the server.
- Signature
Scheme - The
SignatureSchemeTLS protocol enum. Values in this enum are taken from the various RFCs covering TLS, and are listed by IANA. TheUnknownitem is used when processing unrecognised ordinals. - TlsStream
- Unified TLS stream type
Traits§
- Server
Cert Verifier - Something that can verify a server certificate chain, and verify signatures made by certificates.
Functions§
- hash_
certificate - load_
ca_ file_ into_ store - Load the certificates from the given pem file path into the given certificate store
- load_
certs_ and_ key_ files - Load the certificates and private key files
- load_
native_ certs - Load root certificates found in the platform’s native certificate store.
- load_
pem_ file_ ca - Load the certificate
- load_
pem_ file_ private_ key - load_
platform_ certs_ incl_ env_ into_ store - Attempt to load the native cas into the given root-certificate store