Allow to start tls server with HttpServer::serve_tls

2025-06-25 09:59:21 +02:00 · 2017-11-01 16:34:58 -07:00
parent a12e5e9cf5
commit ec3b139273
8 changed files with 152 additions and 19 deletions
--- a/src/lib.rs
+++ b/src/lib.rs
@ -21,6 +21,11 @@ extern crate url;
 extern crate percent_encoding;
 extern crate actix;

+#[cfg(feature="tls")]
+extern crate native_tls;
+#[cfg(feature="tls")]
+extern crate tokio_tls;
+
 mod application;
 mod body;
 mod context;
@ -64,3 +69,6 @@ pub use http::{Method, StatusCode, Version};
 pub use cookie::{Cookie, CookieBuilder};
 pub use cookie::{ParseError as CookieParseError};
 pub use http_range::{HttpRange, HttpRangeParseError};
+
+#[cfg(feature="tls")]
+pub use native_tls::Pkcs12;
--- a/src/server.rs
+++ b/src/server.rs
@ -11,6 +11,11 @@ use tokio_core::reactor::Timeout;
 use tokio_core::net::{TcpListener, TcpStream};
 use tokio_io::{AsyncRead, AsyncWrite};

+#[cfg(feature="tls")]
+use native_tls::TlsAcceptor;
+#[cfg(feature="tls")]
+use tokio_tls::{TlsStream, TlsAcceptorExt};
+
 use task::Task;
 use reader::{Reader, ReaderError};
 use payload::Payload;
@ -69,17 +74,9 @@ impl<T, A, H> HttpServer<T, A, H>
            self
        }))
    }
-}

-impl<H: HttpHandler> HttpServer<TcpStream, net::SocketAddr, H> {
-
-    /// Start listening for incomming connections.
-    ///
-    /// This methods converts address to list of `SocketAddr`
-    /// then binds to all available addresses.
-    pub fn serve<S, Addr>(self, addr: S) -> io::Result<Addr>
-        where Self: ActorAddress<Self, Addr>,
-              S: net::ToSocketAddrs,
+    fn bind<S: net::ToSocketAddrs>(&self, addr: S)
+                                   -> io::Result<Vec<(net::SocketAddr, TcpListener)>>
    {
        let mut err = None;
        let mut addrs = Vec::new();
@ -98,17 +95,71 @@ impl<H: HttpHandler> HttpServer<TcpStream, net::SocketAddr, H> {
                Err(io::Error::new(io::ErrorKind::Other, "Can not bind to address."))
            }
        } else {
-            Ok(HttpServer::create(move |ctx| {
-                for (addr, tcp) in addrs {
-                    info!("Starting http server on {}", addr);
-                    ctx.add_stream(tcp.incoming().map(|(t, a)| IoStream(t, a)));
-                }
-                self
-            }))
+            Ok(addrs)
        }
    }
 }

+impl<H: HttpHandler> HttpServer<TcpStream, net::SocketAddr, H> {
+
+    /// Start listening for incomming connections.
+    ///
+    /// This methods converts address to list of `SocketAddr`
+    /// then binds to all available addresses.
+    pub fn serve<S, Addr>(self, addr: S) -> io::Result<Addr>
+        where Self: ActorAddress<Self, Addr>,
+              S: net::ToSocketAddrs,
+    {
+        let addrs = self.bind(addr)?;
+
+        Ok(HttpServer::create(move |ctx| {
+            for (addr, tcp) in addrs {
+                info!("Starting http server on {}", addr);
+                ctx.add_stream(tcp.incoming().map(|(t, a)| IoStream(t, a)));
+            }
+            self
+        }))
+    }
+}
+
+#[cfg(feature="tls")]
+impl<H: HttpHandler> HttpServer<TlsStream<TcpStream>, net::SocketAddr, H> {
+
+    /// Start listening for incomming tls connections.
+    ///
+    /// This methods converts address to list of `SocketAddr`
+    /// then binds to all available addresses.
+    pub fn serve_tls<S, Addr>(self, addr: S, pkcs12: ::Pkcs12) -> io::Result<Addr>
+        where Self: ActorAddress<Self, Addr>,
+              S: net::ToSocketAddrs,
+    {
+        let addrs = self.bind(addr)?;
+        let acceptor = match TlsAcceptor::builder(pkcs12) {
+            Ok(builder) => {
+                match builder.build() {
+                    Ok(acceptor) => Rc::new(acceptor),
+                    Err(err) => return Err(io::Error::new(io::ErrorKind::Other, err))
+                }
+            }
+            Err(err) => return Err(io::Error::new(io::ErrorKind::Other, err))
+        };
+
+        Ok(HttpServer::create(move |ctx| {
+            for (addr, tcp) in addrs {
+                info!("Starting tls http server on {}", addr);
+
+                let acc = acceptor.clone();
+                ctx.add_stream(tcp.incoming().and_then(move |(stream, addr)| {
+                    TlsAcceptorExt::accept_async(acc.as_ref(), stream)
+                        .map(move |t| IoStream(t, addr))
+                        .map_err(|err| io::Error::new(io::ErrorKind::Other, err))
+                }));
+            }
+            self
+        }))
+    }
+}
+
 struct IoStream<T, A>(T, A);

 impl<T, A> ResponseType for IoStream<T, A>
@ -129,6 +180,10 @@ impl<T, A, H> Handler<IoStream<T, A>, io::Error> for HttpServer<T, A, H>
          A: 'static,
          H: HttpHandler + 'static,
 {
+    fn error(&mut self, err: io::Error, _: &mut Context<Self>) {
+        trace!("Error handling request: {}", err)
+    }
+
    fn handle(&mut self, msg: IoStream<T, A>, _: &mut Context<Self>)
              -> Response<Self, IoStream<T, A>>
    {