tls_api_rustls/
acceptor.rs

1use std::convert::TryFrom;
2use std::sync::Arc;
3
4use rustls::StreamOwned;
5
6use tls_api::async_as_sync::AsyncIoAsSyncIo;
7use tls_api::spi_acceptor_common;
8use tls_api::AsyncSocket;
9use tls_api::AsyncSocketBox;
10use tls_api::BoxFuture;
11use tls_api::ImplInfo;
12
13use crate::handshake::HandshakeFuture;
14use crate::RustlsStream;
15use std::future::Future;
16
17pub struct TlsAcceptorBuilder(pub rustls::ServerConfig);
18pub struct TlsAcceptor(pub Arc<rustls::ServerConfig>);
19
20impl tls_api::TlsAcceptorBuilder for TlsAcceptorBuilder {
21    type Acceptor = TlsAcceptor;
22
23    type Underlying = rustls::ServerConfig;
24
25    fn set_alpn_protocols(&mut self, protocols: &[&[u8]]) -> anyhow::Result<()> {
26        self.0.alpn_protocols = protocols.iter().map(|p| p.to_vec()).collect();
27        Ok(())
28    }
29
30    fn underlying_mut(&mut self) -> &mut rustls::ServerConfig {
31        &mut self.0
32    }
33
34    fn build(self) -> anyhow::Result<TlsAcceptor> {
35        Ok(TlsAcceptor(Arc::new(self.0)))
36    }
37}
38
39impl TlsAcceptor {
40    pub fn accept_impl<S>(
41        &self,
42        stream: S,
43    ) -> impl Future<Output = anyhow::Result<crate::TlsStream<S>>> + '_
44    where
45        S: AsyncSocket,
46    {
47        let conn = rustls::ServerConnection::new(self.0.clone());
48        let conn = match conn.map_err(anyhow::Error::new) {
49            Ok(conn) => conn,
50            Err(e) => return BoxFuture::new(async { Err(e) }),
51        };
52        let tls_stream: crate::TlsStream<S> =
53            crate::TlsStream::new(RustlsStream::Server(StreamOwned {
54                sock: AsyncIoAsSyncIo::new(stream),
55                conn,
56            }));
57
58        BoxFuture::new(HandshakeFuture::MidHandshake(tls_stream))
59    }
60}
61
62impl tls_api::TlsAcceptor for TlsAcceptor {
63    type Builder = TlsAcceptorBuilder;
64
65    type Underlying = Arc<rustls::ServerConfig>;
66    type TlsStream = crate::TlsStream<AsyncSocketBox>;
67
68    fn underlying_mut(&mut self) -> &mut Self::Underlying {
69        &mut self.0
70    }
71
72    const IMPLEMENTED: bool = true;
73    // TODO: https://github.com/sfackler/rust-openssl/pull/646
74    const SUPPORTS_ALPN: bool = true;
75    const SUPPORTS_DER_KEYS: bool = true;
76    const SUPPORTS_PKCS12_KEYS: bool = false;
77
78    fn info() -> ImplInfo {
79        crate::info()
80    }
81
82    fn builder_from_der_key(cert: &[u8], key: &[u8]) -> anyhow::Result<TlsAcceptorBuilder> {
83        let cert = rustls::pki_types::CertificateDer::from(cert.to_vec());
84        let config = rustls::ServerConfig::builder()
85            .with_no_client_auth()
86            .with_single_cert(
87                vec![cert],
88                rustls::pki_types::PrivateKeyDer::try_from(key.to_vec())
89                    .map_err(|x| anyhow::anyhow!(x))?,
90            )
91            .map_err(anyhow::Error::new)?;
92        Ok(TlsAcceptorBuilder(config))
93    }
94
95    spi_acceptor_common!(crate::TlsStream<S>);
96}
tls_api_rustls/acceptor.rs

tls_api_rustls/
acceptor.rs
