Struct rustls::Tls12CipherSuite

source · 
pub struct Tls12CipherSuite {
    pub common: CipherSuiteCommon,
    pub prf_provider: &'static dyn Prf,
    pub kx: KeyExchangeAlgorithm,
    pub sign: &'static [SignatureScheme],
    pub aead_alg: &'static dyn Tls12AeadAlgorithm,
}
Available on crate feature tls12 only.
Expand description

A TLS 1.2 cipher suite supported by rustls.

Fields§

§common: CipherSuiteCommon

Common cipher suite fields.

§prf_provider: &'static dyn Prf

How to compute the TLS1.2 PRF for the suite’s hash function.

If you have a TLS1.2 PRF implementation, you should directly implement the crypto::tls12::Prf trait.

If not, you can implement the crypto::hmac::Hmac trait (and associated), and then use crypto::tls12::PrfUsingHmac.

§kx: KeyExchangeAlgorithm

How to exchange/agree keys.

In TLS1.2, the key exchange method (eg, Elliptic Curve Diffie-Hellman with Ephemeral keys – ECDHE) is baked into the cipher suite, but the details to achieve it are negotiated separately.

This controls how protocol messages (like the ClientKeyExchange message) are interpreted once this cipher suite has been negotiated.

§sign: &'static [SignatureScheme]

How to sign messages for authentication.

This is a set of SignatureSchemes that are usable once this cipher suite has been negotiated.

The precise scheme used is then chosen from this set by the selected authentication key.

§aead_alg: &'static dyn Tls12AeadAlgorithm

How to produce a MessageDecrypter or MessageEncrypter from raw key material.

Implementations§

source§

impl Tls12CipherSuite

source

pub fn resolve_sig_schemes( &self, offered: &[SignatureScheme] ) -> Vec<SignatureScheme>

Resolve the set of supported SignatureSchemes from the offered signature schemes. If we return an empty set, the handshake terminates.

source

pub fn fips(&self) -> bool

Return true if this is backed by a FIPS-approved implementation.

This means all the constituent parts that do cryptography return true for fips().

Trait Implementations§

source§

impl Debug for Tls12CipherSuite

source§

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter. Read more
source§

impl From<&'static Tls12CipherSuite> for SupportedCipherSuite

source§

fn from(s: &'static Tls12CipherSuite) -> Self

Converts to this type from the input type.
source§

impl PartialEq for Tls12CipherSuite

source§

fn eq(&self, other: &Self) -> bool

This method tests for self and other values to be equal, and is used by ==.
1.0.0 · source§

fn ne(&self, other: &Rhs) -> bool

This method tests for !=. The default implementation is almost always sufficient, and should not be overridden without very good reason.

Auto Trait Implementations§

Blanket Implementations§

source§

impl<T> Any for T
where T: 'static + ?Sized,

source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
source§

impl<T> Borrow<T> for T
where T: ?Sized,

source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
source§

impl<T> BorrowMut<T> for T
where T: ?Sized,

source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
source§

impl<T> From<T> for T

source§

fn from(t: T) -> T

Returns the argument unchanged.

source§

impl<T, U> Into<U> for T
where U: From<T>,

source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

source§

impl<T, U> TryFrom<U> for T
where U: Into<T>,

§

type Error = Infallible

The type returned in the event of a conversion error.
source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
source§

impl<T, U> TryInto<U> for T
where U: TryFrom<T>,

§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.