aboutsummaryrefslogtreecommitdiff
path: root/src/security/mod.rs
blob: c935461668053bd6829b2861bd08fd2b12f2cc86 (plain) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81

// Copyright 2020 TiKV Project Authors. Licensed under Apache-2.0.

#[cfg(feature = "_secure")]
mod credentials;

use grpcio_sys::{grpc_channel_credentials, grpc_server_credentials};

#[cfg(feature = "_secure")]
pub use self::credentials::{
    CertificateRequestType, ChannelCredentialsBuilder, ServerCredentialsBuilder,
    ServerCredentialsFetcher,
};

/// Client-side SSL credentials.
///
/// Use [`ChannelCredentialsBuilder`] or [`ChannelCredentials::google_default_credentials`] to
/// build a [`ChannelCredentials`].
pub struct ChannelCredentials {
    creds: *mut grpc_channel_credentials,
}

impl ChannelCredentials {
    pub fn as_mut_ptr(&mut self) -> *mut grpc_channel_credentials {
        self.creds
    }

    /// Creates an insecure channel credentials object.
    pub fn insecure() -> ChannelCredentials {
        unsafe {
            let creds = grpcio_sys::grpc_insecure_credentials_create();
            ChannelCredentials { creds }
        }
    }
}

impl Drop for ChannelCredentials {
    fn drop(&mut self) {
        unsafe { grpcio_sys::grpc_channel_credentials_release(self.creds) }
    }
}

/// Server-side SSL credentials.
///
/// Use [`ServerCredentialsBuilder`] to build a [`ServerCredentials`].
pub struct ServerCredentials {
    creds: *mut grpc_server_credentials,
    // Double allocation to get around C call.
    #[cfg(feature = "_secure")]
    _fetcher: Option<Box<Box<dyn crate::ServerCredentialsFetcher + Send + Sync>>>,
}

unsafe impl Send for ServerCredentials {}

impl ServerCredentials {
    /// Creates an insecure server credentials object.
    pub fn insecure() -> ServerCredentials {
        unsafe {
            let creds = grpcio_sys::grpc_insecure_server_credentials_create();
            ServerCredentials::from_raw(creds)
        }
    }
    pub(crate) unsafe fn from_raw(creds: *mut grpc_server_credentials) -> ServerCredentials {
        ServerCredentials {
            creds,
            #[cfg(feature = "_secure")]
            _fetcher: None,
        }
    }

    pub fn as_mut_ptr(&mut self) -> *mut grpc_server_credentials {
        self.creds
    }
}

impl Drop for ServerCredentials {
    fn drop(&mut self) {
        unsafe {
            grpcio_sys::grpc_server_credentials_release(self.creds);
        }
    }
}
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-13 04:53:05 +0000