Skip to content

Commit a424f26

Browse files
phlip9phlip9
committed
client: module reorg
1 parent e4cd887 commit a424f26

File tree

6 files changed

+26
-24
lines changed

6 files changed

+26
-24
lines changed

common/src/attest/cert.rs

Lines changed: 2 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -7,8 +7,7 @@ use std::fmt;
77
use rcgen::{date_time_ymd, DnType, RcgenError, SanType};
88
use yasna::models::ObjectIdentifier;
99

10-
use crate::client_node_certs::lexe_distinguished_name_prefix;
11-
use crate::{ed25519, hex};
10+
use crate::{constants, ed25519, hex};
1211

1312
/// An x509 certificate containing remote attestation endorsements, usually
1413
/// owned by the lexe node.
@@ -47,7 +46,7 @@ impl AttestationCert {
4746
attestation: rcgen::CustomExtension,
4847
) -> Result<Self, RcgenError> {
4948
// TODO(phlip9): don't know how much DN matters...
50-
let mut name = lexe_distinguished_name_prefix();
49+
let mut name = constants::lexe_distinguished_name_prefix();
5150
name.push(DnType::CommonName, "node provisioning cert");
5251

5352
let subject_alt_names = dns_names

common/src/client_node_certs.rs renamed to common/src/client/certs.rs

Lines changed: 6 additions & 14 deletions
Original file line numberDiff line numberDiff line change
@@ -14,11 +14,11 @@
1414
//! channel via mTLS (mutual-auth TLS).
1515
1616
use rcgen::{
17-
date_time_ymd, BasicConstraints, CertificateParams, DistinguishedName,
18-
DnType, IsCa, RcgenError, SanType,
17+
date_time_ymd, BasicConstraints, CertificateParams, DnType, IsCa,
18+
RcgenError, SanType,
1919
};
2020

21-
use crate::ed25519;
21+
use crate::{constants, ed25519};
2222

2323
/// The CA cert used as the trust anchor for both client and node.
2424
///
@@ -39,19 +39,11 @@ pub struct ClientCert(rcgen::Certificate);
3939
/// The key pair for the node cert is sampled.
4040
pub struct NodeCert(rcgen::Certificate);
4141

42-
pub fn lexe_distinguished_name_prefix() -> DistinguishedName {
43-
let mut name = DistinguishedName::new();
44-
name.push(DnType::CountryName, "US");
45-
name.push(DnType::StateOrProvinceName, "CA");
46-
name.push(DnType::OrganizationName, "lexe-tech");
47-
name
48-
}
49-
5042
// -- impl CaCert -- //
5143

5244
impl CaCert {
5345
pub fn from_key_pair(key_pair: rcgen::KeyPair) -> Result<Self, RcgenError> {
54-
let mut name = lexe_distinguished_name_prefix();
46+
let mut name = constants::lexe_distinguished_name_prefix();
5547
name.push(DnType::CommonName, "client CA cert");
5648

5749
let mut params = CertificateParams::default();
@@ -81,7 +73,7 @@ impl CaCert {
8173

8274
impl ClientCert {
8375
pub fn from_key_pair(key_pair: rcgen::KeyPair) -> Result<Self, RcgenError> {
84-
let mut name = lexe_distinguished_name_prefix();
76+
let mut name = constants::lexe_distinguished_name_prefix();
8577
name.push(DnType::CommonName, "client cert");
8678

8779
let mut params = CertificateParams::default();
@@ -123,7 +115,7 @@ impl NodeCert {
123115
key_pair: rcgen::KeyPair,
124116
dns_names: Vec<String>,
125117
) -> Result<Self, RcgenError> {
126-
let mut name = lexe_distinguished_name_prefix();
118+
let mut name = constants::lexe_distinguished_name_prefix();
127119
name.push(DnType::CommonName, "node cert");
128120

129121
let subject_alt_names = dns_names

common/src/client/mod.rs

Lines changed: 4 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,4 @@
1+
// hello
2+
3+
pub mod certs;
4+
pub mod tls;

common/src/client.rs renamed to common/src/client/tls.rs

Lines changed: 4 additions & 6 deletions
Original file line numberDiff line numberDiff line change
@@ -1,4 +1,4 @@
1-
// hello
1+
//! TODO
22
33
use std::sync::Arc;
44
use std::time::SystemTime;
@@ -7,7 +7,7 @@ use anyhow::{Context, Result};
77
use rustls::client::{ServerCertVerifier, WebPkiVerifier};
88
use rustls::RootCertStore;
99

10-
use crate::client_node_certs::{CaCert, ClientCert, NodeCert};
10+
use crate::client::certs::{CaCert, ClientCert, NodeCert};
1111
use crate::rng::Crng;
1212
use crate::root_seed::RootSeed;
1313
use crate::{attest, ed25519};
@@ -274,10 +274,8 @@ mod test {
274274
.unwrap();
275275
let lexe_root = rustls::Certificate(lexe_root);
276276

277-
let config = crate::client::client_run_tls_config(
278-
&mut rng, &lexe_root, &seed,
279-
)
280-
.unwrap();
277+
let config =
278+
client_run_tls_config(&mut rng, &lexe_root, &seed).unwrap();
281279

282280
let connector = tokio_rustls::TlsConnector::from(Arc::new(config));
283281
let sni = rustls::ServerName::try_from(dns_name).unwrap();

common/src/constants.rs

Lines changed: 9 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,9 @@
1+
use rcgen::{DistinguishedName, DnType};
2+
3+
pub fn lexe_distinguished_name_prefix() -> DistinguishedName {
4+
let mut name = DistinguishedName::new();
5+
name.push(DnType::CountryName, "US");
6+
name.push(DnType::StateOrProvinceName, "CA");
7+
name.push(DnType::OrganizationName, "lexe-tech");
8+
name
9+
}

common/src/lib.rs

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -12,7 +12,7 @@ pub mod api;
1212
pub mod attest;
1313
pub mod cli;
1414
pub mod client;
15-
pub mod client_node_certs;
15+
pub mod constants;
1616
pub mod ed25519;
1717
pub mod enclave;
1818
pub mod hex;

0 commit comments

Comments
 (0)