pub struct SslContext(/* private fields */);
Expand description
A context object for TLS streams.
Applications commonly configure a single SslContext
that is shared by all of its
SslStreams
.
Implementations§
source§impl SslContext
impl SslContext
sourcepub fn builder(method: SslMethod) -> Result<SslContextBuilder, ErrorStack>
pub fn builder(method: SslMethod) -> Result<SslContextBuilder, ErrorStack>
Creates a new builder object for an SslContext
.
sourcepub fn new_ex_index<T>() -> Result<Index<SslContext, T>, ErrorStack>
pub fn new_ex_index<T>() -> Result<Index<SslContext, T>, ErrorStack>
Returns a new extra data index.
Each invocation of this function is guaranteed to return a distinct index. These can be used to store data in the context that can be retrieved later by callbacks, for example.
This corresponds to SSL_CTX_get_ex_new_index
.
Methods from Deref<Target = SslContextRef>§
sourcepub fn certificate(&self) -> Option<&X509Ref>
pub fn certificate(&self) -> Option<&X509Ref>
Returns the certificate associated with this SslContext
, if present.
Requires OpenSSL 1.0.2 or LibreSSL 2.7.0 or newer.
This corresponds to SSL_CTX_get0_certificate
.
sourcepub fn private_key(&self) -> Option<&PKeyRef<Private>>
pub fn private_key(&self) -> Option<&PKeyRef<Private>>
Returns the private key associated with this SslContext
, if present.
Requires OpenSSL 1.0.2 or LibreSSL 3.4.0 or newer.
This corresponds to SSL_CTX_get0_privatekey
.
sourcepub fn cert_store(&self) -> &X509StoreRef
pub fn cert_store(&self) -> &X509StoreRef
Returns a shared reference to the certificate store used for verification.
This corresponds to SSL_CTX_get_cert_store
.
sourcepub fn extra_chain_certs(&self) -> &StackRef<X509>
pub fn extra_chain_certs(&self) -> &StackRef<X509>
Returns a shared reference to the stack of certificates making up the chain from the leaf.
This corresponds to SSL_CTX_get_extra_chain_certs
.
sourcepub fn ex_data<T>(&self, index: Index<SslContext, T>) -> Option<&T>
pub fn ex_data<T>(&self, index: Index<SslContext, T>) -> Option<&T>
Returns a reference to the extra data at the specified index.
This corresponds to SSL_CTX_get_ex_data
.
sourcepub fn max_early_data(&self) -> u32
pub fn max_early_data(&self) -> u32
Gets the maximum amount of early data that will be accepted on incoming connections.
Requires OpenSSL 1.1.1 or LibreSSL 3.4.0 or newer.
This corresponds to SSL_CTX_get_max_early_data
.
sourcepub unsafe fn add_session(&self, session: &SslSessionRef) -> bool
pub unsafe fn add_session(&self, session: &SslSessionRef) -> bool
Adds a session to the context’s cache.
Returns true
if the session was successfully added to the cache, and false
if it was already present.
§Safety
The caller of this method is responsible for ensuring that the session has never been used with another
SslContext
than this one.
This corresponds to SSL_CTX_add_session
.
sourcepub unsafe fn remove_session(&self, session: &SslSessionRef) -> bool
pub unsafe fn remove_session(&self, session: &SslSessionRef) -> bool
Removes a session from the context’s cache and marks it as non-resumable.
Returns true
if the session was successfully found and removed, and false
otherwise.
§Safety
The caller of this method is responsible for ensuring that the session has never been used with another
SslContext
than this one.
This corresponds to SSL_CTX_remove_session
.
sourcepub fn session_cache_size(&self) -> i64
pub fn session_cache_size(&self) -> i64
Returns the context’s session cache size limit.
A value of 0 means that the cache size is unbounded.
This corresponds to SSL_CTX_sess_get_cache_size
.
sourcepub fn verify_mode(&self) -> SslVerifyMode
pub fn verify_mode(&self) -> SslVerifyMode
Returns the verify mode that was set on this context from SslContextBuilder::set_verify
.
This corresponds to SSL_CTX_get_verify_mode
.
sourcepub fn num_tickets(&self) -> usize
pub fn num_tickets(&self) -> usize
Gets the number of TLS 1.3 session tickets that will be sent to a client after a full handshake.
Requires OpenSSL 1.1.1 or newer.
This corresponds to SSL_CTX_get_num_tickets
.
sourcepub fn security_level(&self) -> u32
pub fn security_level(&self) -> u32
Get the context’s security level, which controls the allowed parameters and algorithms.
Requires OpenSSL 1.1.0 or newer.
This corresponds to SSL_CTX_get_security_level
.
Trait Implementations§
source§impl AsRef<SslContextRef> for SslContext
impl AsRef<SslContextRef> for SslContext
source§fn as_ref(&self) -> &SslContextRef
fn as_ref(&self) -> &SslContextRef
source§impl Borrow<SslContextRef> for SslContext
impl Borrow<SslContextRef> for SslContext
source§fn borrow(&self) -> &SslContextRef
fn borrow(&self) -> &SslContextRef
source§impl Clone for SslContext
impl Clone for SslContext
source§impl Debug for SslContext
impl Debug for SslContext
source§impl Deref for SslContext
impl Deref for SslContext
source§type Target = SslContextRef
type Target = SslContextRef
source§fn deref(&self) -> &SslContextRef
fn deref(&self) -> &SslContextRef
source§impl DerefMut for SslContext
impl DerefMut for SslContext
source§fn deref_mut(&mut self) -> &mut SslContextRef
fn deref_mut(&mut self) -> &mut SslContextRef
source§impl Drop for SslContext
impl Drop for SslContext
source§impl ForeignType for SslContext
impl ForeignType for SslContext
source§type Ref = SslContextRef
type Ref = SslContextRef
impl Send for SslContext
impl Sync for SslContext
Auto Trait Implementations§
impl Freeze for SslContext
impl RefUnwindSafe for SslContext
impl Unpin for SslContext
impl UnwindSafe for SslContext
Blanket Implementations§
source§impl<T> BorrowMut<T> for Twhere
T: ?Sized,
impl<T> BorrowMut<T> for Twhere
T: ?Sized,
source§fn borrow_mut(&mut self) -> &mut T
fn borrow_mut(&mut self) -> &mut T
source§impl<T> CloneToUninit for Twhere
T: Clone,
impl<T> CloneToUninit for Twhere
T: Clone,
source§unsafe fn clone_to_uninit(&self, dst: *mut T)
unsafe fn clone_to_uninit(&self, dst: *mut T)
clone_to_uninit
)