Struct tlspuffin::tls::rustls::sign::EcdsaSigningKey

pub struct EcdsaSigningKey {
    key: Arc<EcdsaKeyPair>,
    scheme: SignatureScheme,
}

Expand description

A SigningKey that uses exactly one TLS-level SignatureScheme and one ring-level signature::SigningAlgorithm.

Compare this to RsaSigningKey, which for a particular key is willing to sign with several algorithms. This is quite poor cryptography practice, but is necessary because a given RSA key is expected to work in TLS1.2 (PKCS#1 signatures) and TLS1.3 (PSS signatures) – nobody is willing to obtain certificates for different protocol versions.

Currently this is only implemented for ECDSA keys.

Fields§

§key: Arc<EcdsaKeyPair>§scheme: SignatureScheme

Implementations§

impl EcdsaSigningKey

pub fn new(
    der: &PrivateKey,
    scheme: SignatureScheme,
    sigalg: &'static EcdsaSigningAlgorithm
) -> Result<Self, ()>

Make a new ECDSASigningKey from a DER encoding in PKCS#8 or SEC1 format, expecting a key usable with precisely the given signature scheme.

fn convert_sec1_to_pkcs8(
    scheme: SignatureScheme,
    sigalg: &'static EcdsaSigningAlgorithm,
    maybe_sec1_der: &[u8]
) -> Result<EcdsaKeyPair, ()>

Convert a SEC1 encoding to PKCS8, and ask ring to parse it. This can be removed once https://github.com/briansmith/ring/pull/1456 (or equivalent) is landed.

Trait Implementations§

impl SigningKey for EcdsaSigningKey

fn choose_scheme(
    &self,
    offered: &[SignatureScheme],
    rng: Box<dyn SecureRandom + Send + Sync>
) -> Option<Box<dyn Signer>>

Choose a SignatureScheme from those offered. Read more

fn algorithm(&self) -> SignatureAlgorithm

What kind of key we have.

Auto Trait Implementations§

impl RefUnwindSafe for EcdsaSigningKey

impl Send for EcdsaSigningKey

impl Sync for EcdsaSigningKey

impl Unpin for EcdsaSigningKey

impl UnwindSafe for EcdsaSigningKey

Blanket Implementations§

impl<T> Any for Twhere
T: 'static + ?Sized,

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more

impl<T> Borrow<T> for Twhere
T: ?Sized,

const: unstable · source§

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more

impl<T> BorrowMut<T> for Twhere
T: ?Sized,

const: unstable · source§

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more

impl<T> From<T> for T

const: unstable · source§

fn from(t: T) -> T

Returns the argument unchanged.

impl<T, U> Into<U> for Twhere
U: From<T>,

const: unstable · source§

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

impl<Tail, T> Prepend<T> for Tail

type PreprendResult = Tail

The Resulting [TupleList], of an [Prepend::prepend()] call, including the prepended entry.

fn prepend(self, value: T) -> (T, <Tail as Prepend<T>>::PreprendResult)

Prepend a value to this tuple, returning a new tuple with prepended value.

impl<T, U> TryFrom<U> for Twhere
U: Into<T>,

type Error = Infallible

The type returned in the event of a conversion error.

const: unstable · source§

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.

impl<T, U> TryInto<U> for Twhere
U: TryFrom<T>,

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.

const: unstable · source§

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.

impl<V, T> VZip<V> for Twhere
V: MultiLane<T>,

fn vzip(self) -> V

impl<T> UnsafeAny for Twhere
T: Any,