Modules§
Structs§
- Client
- Client
Certificate State - Client
Config - Client
Identity - Client
Runtime Args - Client
Service Settings - Client
Settings - Client
Settings Resolution Defaults - Generated
Client Identity - Parsed
Client Hello - Prepared
Client - Prepared
Server - Server
- Server
Config - Server
Settings - Server
Tunnel Settings - XdgPath
Error
Enums§
- Client
Certificate Renewal Decision - Client
Connect Error - Client
Hello Error - Client
Identity Material Error - Client
Public Cert Config - Client
Public Cert Error - Client
Settings Resolution Error - Client
Startup Error - Client
TlsMode - LogLevel
- Parse
Client Identity Certificate Error - Parse
Client Identity Error - Quic
Config Error - Selected
Client Config - Server
Certificate Settings - Server
Settings Resolution Error - Server
Startup Error - Settings
Error
Constants§
- CLIENT_
CERT_ FILENAME - CLIENT_
CERT_ LIFETIME_ DAYS - CLIENT_
CERT_ RENEW_ AFTER_ DAYS - CLIENT_
HELLO_ BUFFER_ LIMIT - CLIENT_
IDENTITY_ FILENAME - CLIENT_
KEY_ FILENAME - CLIENT_
PUBLIC_ CA_ FILENAME - CLIENT_
PUBLIC_ CA_ LIFETIME_ DAYS - CLIENT_
PUBLIC_ CERT_ FILENAME - CLIENT_
PUBLIC_ CERT_ LIFETIME_ DAYS - CLIENT_
PUBLIC_ KEY_ FILENAME - HANDSHAKE_
TIMEOUT - IDLE_
TIMEOUT - KEEPALIVE_
INTERVAL - MAX_
SERVER_ OPENED_ BIDI_ STREAMS - RUNEWARP_
ALPN - SERVER_
CA_ FILENAME
Functions§
- client_
identity_ from_ certificate_ der - client_
public_ cert_ leaf_ dir - Returns the subdirectory that holds the leaf cert and key for
hostname. - decide_
client_ certificate_ renewal - default_
client_ acme_ state_ dir - default_
client_ identity_ material_ dir - default_
client_ public_ cert_ material_ dir - default_
client_ server_ ca_ path - default_
config_ path - default_
server_ acme_ state_ dir - default_
server_ cert_ material_ dir - generate_
client_ identity - initialize_
manual_ client_ public_ cert - Bootstraps a shared Public hostname CA and a leaf certificate for
hostname. - initialize_
manual_ server_ certificate - inspect_
client_ certificate_ renewal - inspect_
manual_ server_ certificate - load_
client_ settings - load_
server_ settings - make_
client_ quic_ config - make_
client_ quic_ config_ with_ client_ auth - make_
server_ quic_ config - make_
server_ quic_ config_ with_ client_ auth - make_
server_ quic_ config_ with_ client_ auth_ resolver - read_
client_ hello - read_
client_ identity - renew_
client_ identity_ certificate - renew_
manual_ client_ public_ cert - Renews the leaf certificate for
hostnameunderdirectory, reusing the existing shared Public hostname CA. The CA itself is not changed. - renew_
manual_ server_ certificate - resolve_
client_ identity_ material_ dir_ from_ config - resolve_
client_ public_ cert_ material_ dir_ from_ config - resolve_
client_ settings_ from_ cli - resolve_
selected_ client_ settings - resolve_
server_ cert_ material_ dir_ from_ config - resolve_
server_ hostname_ from_ config - resolve_
server_ settings_ from_ cli - resolve_
terminating_ hostnames_ from_ config - Returns the deduplicated, normalized list of
public-hostnamesfrom every[[client.services]]entry whosetls-modeis"terminate". ReturnsNonewhen no[client]section exists in the config file. - rotate_
client_ identity - rotate_
manual_ client_ public_ cert_ authority - Rotates the shared Public hostname CA and reissues every leaf certificate for
the given
hostnames. Both the CA cert and CA private key are replaced; every managed leaf cert and key are replaced under their hostname subdirectories. - rotate_
manual_ server_ certificate_ authority - select_
client_ config