pub trait ResolvesServerCert:
Debug
+ Send
+ Sync {
// Required method
fn resolve(
&self,
client_hello: ClientHello<'_>,
) -> Option<Arc<CertifiedKey>>;
// Provided method
fn only_raw_public_keys(&self) -> bool { ... }
}Expand description
How to choose a certificate chain and signing key for use in server authentication.
This is suitable when selecting a certificate does not require I/O or when the application is using blocking I/O anyhow.
For applications that use async I/O and need to do I/O to choose
a certificate (for instance, fetching a certificate from a data store),
the Acceptor interface is more suitable.
Required Methods§
Sourcefn resolve(&self, client_hello: ClientHello<'_>) -> Option<Arc<CertifiedKey>>
fn resolve(&self, client_hello: ClientHello<'_>) -> Option<Arc<CertifiedKey>>
Choose a certificate chain and matching key given simplified ClientHello information.
Return None to abort the handshake.
Provided Methods§
Sourcefn only_raw_public_keys(&self) -> bool
fn only_raw_public_keys(&self) -> bool
Return true when the server only supports raw public keys.
Implementors§
impl ResolvesServerCert for SingleCertAndKey
impl ResolvesServerCert for AlwaysResolvesServerRawPublicKeys
impl ResolvesServerCert for ResolvesServerCertUsingSni
Available on crate features
std or hashbrown only.