pub struct TlsStreamBuilder<S> { /* private fields */ }
Available on crate feature dns-over-native-tls only.
Expand description

A builder for the TlsStream

Implementations§

source§

impl<S: DnsTcpStream> TlsStreamBuilder<S>

source

pub fn new() -> Self

Constructs a new TlsStreamBuilder

source

pub fn add_ca(&mut self, ca: Certificate)

Add a custom trusted peer certificate or certificate authority.

If this is the ‘client’ then the ‘server’ must have it associated as it’s identity, or have had the identity signed by this certificate.

source

pub fn bind_addr(&mut self, bind_addr: SocketAddr)

Sets the address to connect from.

source

pub fn build_with_future<F>( self, future: F, name_server: SocketAddr, dns_name: String ) -> (Pin<Box<dyn Future<Output = Result<TlsStream<S>, Error>> + Send>>, BufDnsStreamHandle)where S: DnsTcpStream, F: Future<Output = Result<S>> + Send + Unpin + 'static,

Similar to build, but with customized stream future.

Arguments
  • name_server - IP and Port for the remote DNS resolver
  • dns_name - The DNS name, Public Key Info (SPKI) name, as associated to a certificate
source§

impl<S: Connect> TlsStreamBuilder<S>

source

pub fn build( self, name_server: SocketAddr, dns_name: String ) -> (Pin<Box<dyn Future<Output = Result<TlsStream<S>, Error>> + Send>>, BufDnsStreamHandle)

Creates a new TlsStream to the specified name_server

RFC 7858, DNS over TLS, May 2016

3.2.  TLS Handshake and Authentication

  Once the DNS client succeeds in connecting via TCP on the well-known
  port for DNS over TLS, it proceeds with the TLS handshake [RFC5246],
  following the best practices specified in [BCP195].

  The client will then authenticate the server, if required.  This
  document does not propose new ideas for authentication.  Depending on
  the privacy profile in use (Section 4), the DNS client may choose not
  to require authentication of the server, or it may make use of a
  trusted Subject Public Key Info (SPKI) Fingerprint pin set.

  After TLS negotiation completes, the connection will be encrypted and
  is now protected from eavesdropping.
Arguments
  • name_server - IP and Port for the remote DNS resolver
  • dns_name - The DNS name, Public Key Info (SPKI) name, as associated to a certificate

Trait Implementations§

source§

impl<S: Default> Default for TlsStreamBuilder<S>

source§

fn default() -> TlsStreamBuilder<S>

Returns the “default value” for a type. Read more

Auto Trait Implementations§

§

impl<S> RefUnwindSafe for TlsStreamBuilder<S>where S: RefUnwindSafe,

§

impl<S> Send for TlsStreamBuilder<S>where S: Send,

§

impl<S> Sync for TlsStreamBuilder<S>where S: Sync,

§

impl<S> Unpin for TlsStreamBuilder<S>where S: Unpin,

§

impl<S> UnwindSafe for TlsStreamBuilder<S>where S: UnwindSafe,

Blanket Implementations§

source§

impl<T> Any for Twhere T: 'static + ?Sized,

source§

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more
source§

impl<T> Borrow<T> for Twhere T: ?Sized,

source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more
source§

impl<T> BorrowMut<T> for Twhere T: ?Sized,

source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more
source§

impl<T> From<T> for T

source§

fn from(t: T) -> T

Returns the argument unchanged.

source§

impl<T> Instrument for T

source§

fn instrument(self, span: Span) -> Instrumented<Self>

Instruments this type with the provided Span, returning an Instrumented wrapper. Read more
source§

fn in_current_span(self) -> Instrumented<Self>

Instruments this type with the current Span, returning an Instrumented wrapper. Read more
source§

impl<T, U> Into<U> for Twhere U: From<T>,

source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

source§

impl<T, U> TryFrom<U> for Twhere U: Into<T>,

§

type Error = Infallible

The type returned in the event of a conversion error.
source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.
source§

impl<T, U> TryInto<U> for Twhere U: TryFrom<T>,

§

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.
source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.
§

impl<V, T> VZip<V> for Twhere V: MultiLane<T>,

§

fn vzip(self) -> V

source§

impl<T> WithSubscriber for T

source§

fn with_subscriber<S>(self, subscriber: S) -> WithDispatch<Self>where S: Into<Dispatch>,

Attaches the provided Subscriber to this type, returning a WithDispatch wrapper. Read more
source§

fn with_current_subscriber(self) -> WithDispatch<Self>

Attaches the current default Subscriber to this type, returning a WithDispatch wrapper. Read more