feat(tls): add LazyConfigAcceptor for rustls (#686)

Berrysoft · web-flow · commit 47150fa22617 · 2026-02-14T14:28:32.000+08:00
diff --git a/compio-tls/src/lib.rs b/compio-tls/src/lib.rs
@@ -23,3 +23,8 @@ mod stream;
 pub use adapter::*;
 pub use maybe::*;
 pub use stream::*;
+
+#[cfg(feature = "rustls")]
+mod rtls;
+#[cfg(feature = "rustls")]
+pub use rtls::*;
diff --git a/compio-tls/src/rtls.rs b/compio-tls/src/rtls.rs
@@ -0,0 +1,70 @@
+use std::{
+    io,
+    pin::Pin,
+    sync::Arc,
+    task::{Context, Poll},
+};
+
+use compio_io::{AsyncRead, AsyncWrite, compat::AsyncStream};
+use futures_util::FutureExt;
+use rustls::{
+    ServerConfig, ServerConnection,
+    server::{Acceptor, ClientHello},
+};
+
+use crate::TlsStream;
+
+/// A lazy TLS acceptor that performs the initial handshake and allows access to
+/// the [`ClientHello`] message before completing the handshake.
+pub struct LazyConfigAcceptor<S>(futures_rustls::LazyConfigAcceptor<AsyncStream<S>>);
+
+impl<S: AsyncRead + AsyncWrite + 'static> LazyConfigAcceptor<S> {
+    /// Create a new [`LazyConfigAcceptor`] with the given acceptor and stream.
+    pub fn new(acceptor: Acceptor, s: S) -> Self {
+        Self(futures_rustls::LazyConfigAcceptor::new(
+            acceptor,
+            AsyncStream::new(s),
+        ))
+    }
+}
+
+impl<S: AsyncRead + AsyncWrite + 'static> Future for LazyConfigAcceptor<S> {
+    type Output = Result<StartHandshake<S>, io::Error>;
+
+    fn poll(mut self: Pin<&mut Self>, cx: &mut Context<'_>) -> Poll<Self::Output> {
+        self.0.poll_unpin(cx).map_ok(StartHandshake)
+    }
+}
+
+/// A TLS acceptor that has completed the initial handshake and allows access to
+/// the [`ClientHello`] message.
+pub struct StartHandshake<S>(futures_rustls::StartHandshake<AsyncStream<S>>);
+
+impl<S: AsyncRead + AsyncWrite + 'static> StartHandshake<S> {
+    /// Get the [`ClientHello`] message from the initial handshake.
+    pub fn client_hello(&self) -> ClientHello<'_> {
+        self.0.client_hello()
+    }
+
+    /// Complete the TLS handshake and return a [`TlsStream`] if successful.
+    pub fn into_stream(
+        self,
+        config: Arc<ServerConfig>,
+    ) -> impl Future<Output = io::Result<TlsStream<S>>> {
+        self.into_stream_with(config, |_| ())
+    }
+
+    /// Complete the TLS handshake and return a [`TlsStream`] if successful.
+    pub fn into_stream_with<F>(
+        self,
+        config: Arc<ServerConfig>,
+        f: F,
+    ) -> impl Future<Output = io::Result<TlsStream<S>>>
+    where
+        F: FnOnce(&mut ServerConnection),
+    {
+        self.0
+            .into_stream_with(config, f)
+            .map(|res| res.map(TlsStream::from))
+    }
+}
