dnim/rust-postgres
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Add native-tls support

Browse Source
This commit is contained in:
Steven Fackler 2016-11-09 21:25:08 +00:00
parent d99843ba91
commit 667b7304eb
5 changed files with 79 additions and 9 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
Cargo.toml
View File

@ -25,6 +25,7 @@ with-bit-vec = ["bit-vec"]
with-chrono = ["chrono"] with-chrono = ["chrono"]
with-eui48 = ["eui48"] with-eui48 = ["eui48"]
with-openssl = ["openssl"] with-openssl = ["openssl"]
with-native-tls = ["native-tls"]
with-rustc-serialize = ["rustc-serialize"] with-rustc-serialize = ["rustc-serialize"]
with-security-framework = ["security-framework"] with-security-framework = ["security-framework"]
with-serde_json = ["serde_json"] with-serde_json = ["serde_json"]
@ -44,6 +45,7 @@ bit-vec = { version = "0.4", optional = true }
chrono = { version = "0.2.14", optional = true } chrono = { version = "0.2.14", optional = true }
eui48 = { version = "0.1", optional = true } eui48 = { version = "0.1", optional = true }
openssl = { version = "0.9", optional = true } openssl = { version = "0.9", optional = true }
native-tls = { version = "0.1", optional = true }
rustc-serialize = { version = "0.3", optional = true } rustc-serialize = { version = "0.3", optional = true }
security-framework = { version = "0.1.2", optional = true } security-framework = { version = "0.1.2", optional = true }
serde_json = { version = ">= 0.6, < 0.9", optional = true } serde_json = { version = ">= 0.6, < 0.9", optional = true }

18
src/lib.rs
View File

@ -44,25 +44,25 @@
//! This crate supports TLS secured connections. The `TlsMode` enum is passed to connection methods //! This crate supports TLS secured connections. The `TlsMode` enum is passed to connection methods
//! and indicates if the connection will not, may, or must be secured by TLS. The TLS implementation //! and indicates if the connection will not, may, or must be secured by TLS. The TLS implementation
//! is pluggable through the `TlsHandshake` trait. Implementations for OpenSSL and OSX's Secure //! is pluggable through the `TlsHandshake` trait. Implementations for OpenSSL and OSX's Secure
//! Transport are provided behind the `with-openssl` and `with-security-framework` feature flags //! Transport are provided behind the `with-openssl`, `with-security-framework`, and
//! respectively. //! `with-native-tls` feature flags respectively.
//! //!
//! ## Examples //! ## Examples
//! //!
//! Connecting using OpenSSL: //! Connecting using native-tls:
//! //!
//! ```no_run //! ```no_run
//! extern crate postgres; //! extern crate postgres;
//! //!
//! use postgres::{Connection, TlsMode}; //! use postgres::{Connection, TlsMode};
//! # #[cfg(feature = "with-openssl")] //! # #[cfg(feature = "with-native-tls")]
//! use postgres::tls::openssl::OpenSsl; //! use postgres::tls::native_tls::NativeTls;
//! //!
//! # #[cfg(not(feature = "with-openssl"))] fn main() {} //! # #[cfg(not(feature = "with-native-tls"))] fn main() {}
//! # #[cfg(feature = "with-openssl")] //! # #[cfg(feature = "with-native-tls")]
//! fn main() { //! fn main() {
//! let openssl = OpenSsl::new().unwrap(); //! let negotiator = NativeTls::new().unwrap();
//! let conn = Connection::connect("postgres://postgres@localhost", TlsMode::Require(&openssl)) //! let conn = Connection::connect("postgres://postgres@localhost", TlsMode::Require(&negotiator))
//! .unwrap(); //! .unwrap();
//! } //! }
//! ``` //! ```

2
src/tls/mod.rs
View File

@ -9,6 +9,8 @@ use std::fmt;
pub mod openssl; pub mod openssl;
#[cfg(feature = "with-security-framework")] #[cfg(feature = "with-security-framework")]
pub mod security_framework; pub mod security_framework;
#[cfg(feature = "with-native-tls")]
pub mod native_tls;
/// A trait implemented by TLS streams. /// A trait implemented by TLS streams.
pub trait TlsStream: fmt::Debug + Read + Write + Send { pub trait TlsStream: fmt::Debug + Read + Write + Send {

64
src/tls/native_tls.rs Normal file
View File

@ -0,0 +1,64 @@
//! Native TLS support.
extern crate native_tls;
use std::error::Error;
use std::fmt;
use self::native_tls::TlsConnector;
use tls::{TlsStream, Stream, TlsHandshake};
impl TlsStream for native_tls::TlsStream<Stream> {
fn get_ref(&self) -> &Stream {
self.get_ref()
}
fn get_mut(&mut self) -> &mut Stream {
self.get_mut()
}
}
/// A `TlsHandshake` implementation that uses the native-tls crate.
///
/// Requires the `with-native-tls` feature.
pub struct NativeTls(TlsConnector);
impl fmt::Debug for NativeTls {
fn fmt(&self, fmt: &mut fmt::Formatter) -> fmt::Result {
fmt.debug_struct("NativeTls").finish()
}
}
impl NativeTls {
/// Creates a new `NativeTls` with its default configuration.
pub fn new() -> Result<NativeTls, native_tls::Error> {
let connector = try!(TlsConnector::builder());
let connector = try!(connector.build());
Ok(NativeTls(connector))
}
/// Returns a reference to the inner `TlsConnector`.
pub fn connector(&self) -> &TlsConnector {
&self.0
}
/// Returns a mutable reference to the inner `TlsConnector`.
pub fn connector_mut(&mut self) -> &mut TlsConnector {
&mut self.0
}
}
impl From<TlsConnector> for NativeTls {
fn from(connector: TlsConnector) -> NativeTls {
NativeTls(connector)
}
}
impl TlsHandshake for NativeTls {
fn tls_handshake(&self,
domain: &str,
stream: Stream)
-> Result<Box<TlsStream>, Box<Error + Send + Sync>> {
let stream = try!(self.0.connect(domain, stream));
Ok(Box::new(stream))
}
}

2
tests/test.rs
View File

@ -6,6 +6,8 @@ extern crate url;
extern crate openssl; extern crate openssl;
#[cfg(feature = "with-security-framework")] #[cfg(feature = "with-security-framework")]
extern crate security_framework; extern crate security_framework;
#[cfg(feature = "native-tls")]
extern crate native_tls;
use fallible_iterator::FallibleIterator; use fallible_iterator::FallibleIterator;
use postgres::{HandleNotice, Connection, GenericConnection, TlsMode}; use postgres::{HandleNotice, Connection, GenericConnection, TlsMode};