Skip to content

Commit 1b5d429

Browse files
tottototottoto
committed
chore(tls): Refactor parsing Identity
1 parent 4e7e742 commit 1b5d429

File tree

3 files changed

+14
-20
lines changed

3 files changed

+14
-20
lines changed

tonic/src/transport/channel/service/tls.rs

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -9,7 +9,7 @@ use tokio_rustls::{
99
};
1010

1111
use super::io::BoxedIo;
12-
use crate::transport::service::tls::{load_identity, TlsError, ALPN_H2};
12+
use crate::transport::service::tls::{TlsError, ALPN_H2};
1313
use crate::transport::tls::{Certificate, Identity};
1414

1515
#[derive(Clone)]
@@ -48,7 +48,7 @@ impl TlsConnector {
4848
let builder = builder.with_root_certificates(roots);
4949
let mut config = match identity {
5050
Some(identity) => {
51-
let (client_cert, client_key) = load_identity(identity)?;
51+
let (client_cert, client_key) = identity.parse()?;
5252
builder.with_client_auth_cert(client_cert, client_key)?
5353
}
5454
None => builder.with_no_client_auth(),

tonic/src/transport/server/service/tls.rs

Lines changed: 2 additions & 6 deletions
Original file line numberDiff line numberDiff line change
@@ -7,11 +7,7 @@ use tokio_rustls::{
77
TlsAcceptor as RustlsAcceptor,
88
};
99

10-
use crate::transport::{
11-
server::Connected,
12-
service::tls::{load_identity, ALPN_H2},
13-
Certificate, Identity,
14-
};
10+
use crate::transport::{server::Connected, service::tls::ALPN_H2, Certificate, Identity};
1511

1612
#[derive(Clone)]
1713
pub(crate) struct TlsAcceptor {
@@ -41,7 +37,7 @@ impl TlsAcceptor {
4137
}
4238
};
4339

44-
let (cert, key) = load_identity(identity)?;
40+
let (cert, key) = identity.parse()?;
4541
let mut config = builder.with_single_cert(cert, key)?;
4642

4743
config.alpn_protocols.push(ALPN_H2.into());

tonic/src/transport/service/tls.rs

Lines changed: 10 additions & 12 deletions
Original file line numberDiff line numberDiff line change
@@ -40,16 +40,14 @@ impl Certificate {
4040
}
4141
}
4242

43-
pub(crate) fn load_identity(
44-
identity: Identity,
45-
) -> Result<(Vec<CertificateDer<'static>>, PrivateKeyDer<'static>), TlsError> {
46-
let cert = rustls_pemfile::certs(&mut Cursor::new(identity.cert))
47-
.collect::<Result<Vec<_>, _>>()
48-
.map_err(|_| TlsError::CertificateParseError)?;
49-
50-
let Ok(Some(key)) = rustls_pemfile::private_key(&mut Cursor::new(identity.key)) else {
51-
return Err(TlsError::PrivateKeyParseError);
52-
};
53-
54-
Ok((cert, key))
43+
impl Identity {
44+
pub(crate) fn parse(
45+
&self,
46+
) -> Result<(Vec<CertificateDer<'static>>, PrivateKeyDer<'static>), TlsError> {
47+
let cert = self.cert.parse()?;
48+
let Ok(Some(key)) = rustls_pemfile::private_key(&mut Cursor::new(&self.key)) else {
49+
return Err(TlsError::PrivateKeyParseError);
50+
};
51+
Ok((cert, key))
52+
}
5553
}

0 commit comments

Comments
 (0)