Documentation
¶
Overview ¶
Package tls provides primitives to retrieve secure-enough TLS configurations for both clients and servers. It is a copy https://github.com/docker/go-connections to avoid bringing dependencies. As a reminder from https://golang.org/pkg/crypto/tls/#Config:
A Config structure is used to configure a TLS client or server. After one has been passed to a TLS function it must not be modified. A Config may be reused; the tls package will also not modify it.
Index ¶
Constants ¶
This section is empty.
Variables ¶
View Source
var DefaultServerAcceptedCiphers = append(clientCipherSuites, acceptedCBCCiphers...)
DefaultServerAcceptedCiphers should be uses by code which already has a crypto/tls options struct but wants to use a commonly accepted set of TLS cipher suites, with known weak algorithms removed.
Functions ¶
Types ¶
type Options ¶
type Options struct {
CAFile string
// If either CertFile or KeyFile is empty, Client() will not load them
// preventing the client from authenticating to the server.
// However, Server() requires them and will error out if they are empty.
CertFile string
KeyFile string
// client-only option
InsecureSkipVerify bool
// server-only option
ClientAuth tls.ClientAuthType
}
Options represents the information needed to create client and server TLS configurations.
Source Files
Click to show internal directories.
Click to hide internal directories.