mirrors/redoctober
1
0
Fork 0
mirror of https://github.com/cloudflare/redoctober.git synced 2026-01-10 07:58:03 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Merge pull request #101 from cloudflare/jkroll/add-sni

Browse Source 
Add a NameToCertificate map.
This commit is contained in:
jkroll-cf
2015-11-02 16:53:37 -08:00
parent f3d13da29b bdd83dee7c
commit 9f7d323706
1 changed files with 2 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
redoctober.go
View File

@@ -87,6 +87,7 @@ func queueRequest(process chan<- userRequest, requestType string, w http.Respons
func NewServer(process chan<- userRequest, staticPath, addr, caPath string, certPaths, keyPaths []string, useSystemdSocket bool) (*http.Server, *net.Listener, error) {
config := &tls.Config{
PreferServerCipherSuites: true,
SessionTicketsDisabled: true,
}
for i, certPath := range certPaths {
cert, err := tls.LoadX509KeyPair(certPath, keyPaths[i])
@@ -95,6 +96,7 @@ func NewServer(process chan<- userRequest, staticPath, addr, caPath string, cert
}
config.Certificates = append(config.Certificates, cert)
}
config.BuildNameToCertificate()
// If a caPath has been specified then a local CA is being used
// and not the system configuration.