2021-08-02 23:09:09 +02:00
|
|
|
//! Run with
|
|
|
|
//!
|
|
|
|
//! ```not_rust
|
|
|
|
//! cargo run --example tls_rustls
|
|
|
|
//! ```
|
|
|
|
|
2021-08-18 00:04:15 +02:00
|
|
|
use axum::{handler::get, route};
|
2021-08-01 08:32:47 +02:00
|
|
|
use hyper::server::conn::Http;
|
2021-08-01 13:48:10 +02:00
|
|
|
use std::{fs::File, io::BufReader, sync::Arc};
|
|
|
|
use tokio::net::TcpListener;
|
|
|
|
use tokio_rustls::{
|
|
|
|
rustls::{
|
|
|
|
internal::pemfile::certs, internal::pemfile::pkcs8_private_keys, NoClientAuth, ServerConfig,
|
|
|
|
},
|
|
|
|
TlsAcceptor,
|
|
|
|
};
|
2021-08-01 08:32:47 +02:00
|
|
|
|
|
|
|
#[tokio::main]
|
|
|
|
async fn main() {
|
2021-08-05 11:25:03 +02:00
|
|
|
// Set the RUST_LOG, if it hasn't been explicitly defined
|
|
|
|
if std::env::var("RUST_LOG").is_err() {
|
|
|
|
std::env::set_var("RUST_LOG", "rustls=debug")
|
|
|
|
}
|
2021-08-05 19:43:03 +02:00
|
|
|
tracing_subscriber::fmt::init();
|
2021-08-01 22:01:33 +02:00
|
|
|
|
2021-08-01 13:48:10 +02:00
|
|
|
let rustls_config = rustls_server_config(
|
|
|
|
"examples/self_signed_certs/key.pem",
|
|
|
|
"examples/self_signed_certs/cert.pem",
|
|
|
|
);
|
2021-08-01 08:32:47 +02:00
|
|
|
|
|
|
|
let acceptor = TlsAcceptor::from(rustls_config);
|
2021-08-01 13:48:10 +02:00
|
|
|
let listener = TcpListener::bind("127.0.0.1:3000").await.unwrap();
|
2021-08-01 08:32:47 +02:00
|
|
|
|
2021-08-01 13:48:10 +02:00
|
|
|
let app = route("/", get(handler));
|
2021-08-01 08:32:47 +02:00
|
|
|
|
|
|
|
loop {
|
|
|
|
let (stream, _addr) = listener.accept().await.unwrap();
|
|
|
|
let acceptor = acceptor.clone();
|
|
|
|
|
|
|
|
let app = app.clone();
|
|
|
|
|
|
|
|
tokio::spawn(async move {
|
|
|
|
if let Ok(stream) = acceptor.accept(stream).await {
|
2021-08-17 22:17:04 +02:00
|
|
|
let _ = Http::new().serve_connection(stream, app).await;
|
2021-08-01 08:32:47 +02:00
|
|
|
}
|
|
|
|
});
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2021-08-01 13:48:10 +02:00
|
|
|
async fn handler() -> &'static str {
|
|
|
|
"Hello, World!"
|
|
|
|
}
|
|
|
|
|
2021-08-01 08:32:47 +02:00
|
|
|
fn rustls_server_config(key: &str, cert: &str) -> Arc<ServerConfig> {
|
|
|
|
let mut config = ServerConfig::new(NoClientAuth::new());
|
|
|
|
|
|
|
|
let mut key_reader = BufReader::new(File::open(key).unwrap());
|
|
|
|
let mut cert_reader = BufReader::new(File::open(cert).unwrap());
|
|
|
|
|
|
|
|
let key = pkcs8_private_keys(&mut key_reader).unwrap().remove(0);
|
|
|
|
let certs = certs(&mut cert_reader).unwrap();
|
|
|
|
|
|
|
|
config.set_single_cert(certs, key).unwrap();
|
|
|
|
|
|
|
|
config.set_protocols(&[b"h2".to_vec(), b"http/1.1".to_vec()]);
|
|
|
|
|
|
|
|
Arc::new(config)
|
|
|
|
}
|