Documentation
¶
Index ¶
- Constants
- Variables
- func GetClientTLSConfig(caClient *x509.CertPool, provider CertProviderFunc, protos []string) *tls.Config
- func GetGatewayTLSConfig(provider CertProviderFunc, protos []string) *tls.Config
- func GetPeerTLSConfig(ca *x509.CertPool, node tls.Certificate, protos []string) *tls.Config
- type CertProvider
- type CertProviderFunc
- type OnHandshakeFunc
Constants ¶
View Source
const (
CertCA = certmagic.LetsEncryptProductionCA
)
Variables ¶
View Source
var (
H3Protos = []string{http3.NextProtoH3}
)
Functions ¶
func GetClientTLSConfig ¶
func GetGatewayTLSConfig ¶
func GetGatewayTLSConfig(provider CertProviderFunc, protos []string) *tls.Config
our acme cert generation uses ECDSA (P-256), thus we will skip ciphers that do not do elliptic curve DH
func GetPeerTLSConfig ¶
we will require the use of ECDSA certificates for Chord
Types ¶
type CertProvider ¶
type CertProvider interface {
Initialize(ctx context.Context) error
GetCertificate(*tls.ClientHelloInfo) (*tls.Certificate, error)
OnHandshake(OnHandshakeFunc)
}
type CertProviderFunc ¶
type CertProviderFunc func(*tls.ClientHelloInfo) (*tls.Certificate, error)
type OnHandshakeFunc ¶
type OnHandshakeFunc func(sni string)
Source Files
Click to show internal directories.
Click to hide internal directories.