Module server
Available on crate feature
tls only.Expand description
TLS implementation agnostic server types
Structs§
- Input
With Client Hello - An
inputwith a Client Hello (tls) attached to it, usually used in combination withPeekTlsClientHelloService. - NoTls
Reject Error - non-tls connection is rejected
- Peek
TlsClient Hello Service - A peek
Servicewhich returns theClientHelloto the inner service for tls-detected traffic, and otherwise make use of the Reject service. - Self
Signed Data - Data used to configure the generation of a self-signed certificate.
- Server
Auth Data - Raw private key and certificate data to facilitate server authentication.
- SniRequest
- A request ready for SNI routing,
usually used in combination with
SniRouter. - SniRouter
- A
Servicerouter that can be used to support routing of tls traffic as well as non-tls traffic. - TlsClient
Verify - How the client is verified (mTLS).
- TlsPeek
Router - A
Servicerouter that can be used to support tls traffic as well as non-tls traffic. - TlsServer
Auth - Server auth (cert chain + key) to use, as configured on
TlsServerConfig. - TlsServer
Config - A backend agnostic TLS server config
- TlsStore
Client Cert Chain - Whether to capture the client certificate chain into
NegotiatedTlsParameters.
Enums§
- Client
Verify Mode - Mode of client verification by a (tls) server
- Self
Signed KeyKind - Key algorithm to use when generating a self-signed key pair.
Traits§
- Dynamic
Cert Issuer - Trait that needs to be implemented by cert issuers to support dynamically issueing (external) certs based on client_hello input.
Functions§
- peek_
client_ hello_ from_ input - Functional API to try to peek TLS:CH from an existing I/O input, returning the stream as-is with the read data prefixed from memory.
Type Aliases§
- SniPrefixed
Io PrefixedIoalias used bySniRouter.- TlsClient
Hello Prefixed Io PrefixedIoalias used byPeekTlsClientHelloService.- TlsPrefixed
Io PrefixedIoalias used byTlsPeekRouter.