How to use ECDSA certs and have a custom config?

[Darkspirit]

Could you please make an example how to

• use P-384 ECDSA certificates (they are not PKCS#1 (BEGIN RSA PRIVATE KEY), everything other than this fails (BEGIN PRIVATE KEY))
• restrict the cipherlist to e.g. TLS13-CHACHA20-POLY1305-SHA256:TLS13-AES-256-GCM-SHA384
• set the min/max TLS version, e.g. TLS 1.3-only
• set the curve list, e.g. X25519:secp384r1:secp521r1; (would be nice if this is only for the key exchange and the curve from the certificate hasn't to be in the list, then i would set X448:X25519 in the future)

All snippets I can find about this topic in rustls are really big and seem to not fit into this.

There had been https_with_context() or https_using_context in hyper, but they say
hyperium/hyper#887 (comment)

With the release of 0.10, hyper no longer bundles a default SslClient, and instead proposes use of pluggable crates to provide it. So I'm going to close this.

Iron/hyper feels like a cool mini nginx in rust.
I think it would go too far if I ask you how to use SNI (different context per domain) on the same port with hyper, so I won't ask this.

How would that be done with your example server?
https://github.com/ctz/hyper-rustls/blob/master/examples/server.rs

Thank you, I love Rust <3

Edit: I see, it's better to use hyper master from git and use rusttls' server example because they have massively changed how things #work.
If ECDSA certs and defining a curve lists work I will close this issue. Have to test first.

[Darkspirit]

I see, ECDSA is on your rustls todo list and maybe you introduce an ability to set a custom curve list then. ❤️