Skip to main content

MitmCertResolver

Struct MitmCertResolver

pub struct MitmCertResolver { /* private fields */ }

Expand description

A ResolvesServerCert implementation that generates per-host TLS certificates on the fly, signed by a CertificateAuthority.

When a client connects with SNI, the resolver generates (or returns a cached) leaf certificate for that hostname. Certificates are cached in an LRU cache to avoid regenerating them on every connection.

Implementations§

impl MitmCertResolver

pub fn new(ca: CertificateAuthority) -> Self

Create a resolver with the default LRU cache capacity (1024).

pub fn with_cache_capacity(ca: CertificateAuthority, capacity: usize) -> Self

Create a resolver with a custom LRU cache capacity.

pub fn into_server_config(self) -> ServerConfig

Build a ServerConfig that uses this resolver for certificate selection.

The returned config has no client authentication and no ALPN protocols. Set config.alpn_protocols if your use case requires protocol negotiation (e.g. [b"h2", b"http/1.1"] for HTTP).

Trait Implementations§

impl Debug for MitmCertResolver

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter. Read more

impl ResolvesServerCert for MitmCertResolver

fn resolve(&self, client_hello: ClientHello<'_>) -> Option<Arc<CertifiedKey>>

Choose a certificate chain and matching key given simplified ClientHello information. Read more

fn only_raw_public_keys(&self) -> bool

Return true when the server only supports raw public keys.

Auto Trait Implementations§

impl !Freeze for MitmCertResolver

impl !RefUnwindSafe for MitmCertResolver

impl Send for MitmCertResolver

impl Sync for MitmCertResolver

impl Unpin for MitmCertResolver

impl UnsafeUnpin for MitmCertResolver

impl !UnwindSafe for MitmCertResolver

Blanket Implementations§

impl<T> Any for T
where T: 'static + ?Sized,

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more

impl<'a, T, E> AsTaggedExplicit<'a, E> for T
where T: 'a,

fn explicit(self, class: Class, tag: u32) -> TaggedParser<'a, Explicit, Self, E>

impl<'a, T, E> AsTaggedImplicit<'a, E> for T
where T: 'a,

fn implicit( self, class: Class, constructed: bool, tag: u32, ) -> TaggedParser<'a, Implicit, Self, E>

impl<T> Borrow<T> for T
where T: ?Sized,

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more

impl<T> BorrowMut<T> for T
where T: ?Sized,

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more

impl<T> From<T> for T

fn from(t: T) -> T

Returns the argument unchanged.

impl<T, U> Into<U> for T
where U: From<T>,

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

impl<T, U> TryFrom<U> for T
where U: Into<T>,

type Error = Infallible

The type returned in the event of a conversion error.

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.