Select a rustls_certified_key from the list that matches the cryptographic
parameters of a TLS client hello. Note that this does not do any SNI matching.
The input certificates should already have been filtered to ones matching the
SNI from the client hello.
This is intended for servers that are configured with several keys for the
same domain name(s), for example ECDSA and RSA types. The presented keys are
inspected in the order given and keys first in the list are given preference,
all else being equal. However rustls is free to choose whichever it considers
to be the best key with its knowledge about security issues and possible future
extensions of the protocol.
Return RUSTLS_RESULT_OK if a key was selected and RUSTLS_RESULT_NOT_FOUND
if none was suitable.
Select a rustls_certified_key from the list that matches the cryptographic parameters of a TLS client hello. Note that this does not do any SNI matching. The input certificates should already have been filtered to ones matching the SNI from the client hello.
This is intended for servers that are configured with several keys for the same domain name(s), for example ECDSA and RSA types. The presented keys are inspected in the order given and keys first in the list are given preference, all else being equal. However rustls is free to choose whichever it considers to be the best key with its knowledge about security issues and possible future extensions of the protocol.
Return RUSTLS_RESULT_OK if a key was selected and RUSTLS_RESULT_NOT_FOUND if none was suitable.