uselesskey_rustls/lib.rs
1#![forbid(unsafe_code)]
2
3//! Integration between uselesskey test fixtures and `rustls-pki-types`.
4//!
5//! This crate re-exports extension traits from `uselesskey-core-rustls-pki`
6//! that convert uselesskey fixtures into `rustls-pki-types` types
7//! (`PrivateKeyDer`, `CertificateDer`).
8//!
9//! With the `server-config` and `client-config` features, it also provides
10//! convenience builders for `rustls::ServerConfig` and `rustls::ClientConfig`,
11//! including mutual TLS (mTLS) support.
12//!
13//! # Convert a private key to rustls format
14//!
15//! ```
16//! use uselesskey_core::Factory;
17//! use uselesskey_rsa::{RsaFactoryExt, RsaSpec};
18//! use uselesskey_rustls::RustlsPrivateKeyExt;
19//!
20//! let fx = Factory::random();
21//! let rsa = fx.rsa("server", RsaSpec::rs256());
22//! let key = rsa.private_key_der_rustls();
23//! assert_eq!(key.secret_der(), rsa.private_key_pkcs8_der());
24//! ```
25//!
26//! # Build TLS configs (requires `tls-config` + a crypto provider feature)
27//!
28//! ```no_run
29//! use uselesskey_core::Factory;
30//! use uselesskey_x509::{X509FactoryExt, ChainSpec};
31//! use uselesskey_rustls::{RustlsServerConfigExt, RustlsClientConfigExt};
32//!
33//! let fx = Factory::random();
34//! let chain = fx.x509_chain("svc", ChainSpec::new("test.example.com"));
35//!
36//! let server_cfg = chain.server_config_rustls();
37//! let client_cfg = chain.client_config_rustls();
38//! ```
39
40#[cfg(any(feature = "server-config", feature = "client-config"))]
41mod config;
42
43#[cfg(test)]
44mod testutil;
45
46#[cfg(feature = "x509")]
47pub use uselesskey_core_rustls_pki::RustlsChainExt;
48pub use uselesskey_core_rustls_pki::{RustlsCertExt, RustlsPrivateKeyExt};
49
50#[cfg(feature = "server-config")]
51pub use config::RustlsServerConfigExt;
52
53#[cfg(feature = "client-config")]
54pub use config::RustlsClientConfigExt;
55
56#[cfg(all(feature = "server-config", feature = "client-config"))]
57pub use config::RustlsMtlsExt;