Documentation
¶
Index ¶
Constants ¶
This section is empty.
Variables ¶
View Source
var DefaultCipherSuites = []uint16{ tls.TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256, tls.TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384, tls.TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, tls.TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384, tls.TLS_RSA_WITH_AES_128_GCM_SHA256, tls.TLS_RSA_WITH_AES_256_GCM_SHA384, }
DefaultCipherSuites is a set of strong TLS cipher suites
Functions ¶
func GetClientTLSConfig ¶
func GetClientTLSConfig(cfg *ClientTLSConfig, csp core.CryptoSuite) (*tls.Config, error)
GetClientTLSConfig creates a tls.Config object from certs and roots
Types ¶
type ClientTLSConfig ¶
type ClientTLSConfig struct {
Enabled bool `skip:"true"`
CertFiles [][]byte `help:"A list of comma-separated PEM-encoded trusted certificate bytes"`
Client KeyCertFiles
TlsCertPool *x509.CertPool
}
ClientTLSConfig defines the key material for a TLS client
type KeyCertFiles ¶
type KeyCertFiles struct {
KeyFile []byte `help:"PEM-encoded key bytes when mutual authentication is enabled"`
CertFile []byte `help:"PEM-encoded certificate bytes when mutual authenticate is enabled"`
}
KeyCertFiles defines the files need for client on TLS
Source Files
Click to show internal directories.
Click to hide internal directories.