Halaman utama Jelajahi Bantuan
Daftar Masuk
github.com2
/
gocql_gocql
0
0
Fork 0
Berkas Masalah 0 Permintaan Tarik 0 Wiki
Jelajahi Sumber

Do not require a client certificate in SslOptions

The Certificates field in a tls.Config can be empty for a client;
this allows that configuration to work for SslOptions.
Maciek Sakrejda 10 tahun lalu
induk
bac7de282c
melakukan
8ab3de65a3
1 mengubah file dengan 8 tambahan dan 4 penghapusan
Tampilan Split Tampilkan Statistik Diff
  1. 8 4
      connectionpool.go

+ 8 - 4
connectionpool.go
Tampilan Berkas 

@@ -153,13 +153,17 @@ func setupTLSConfig(sslOpts *SslOptions) (*tls.Config, error) {
 
 		}
 
 	}
 
 
-	mycert, err := tls.LoadX509KeyPair(sslOpts.CertPath, sslOpts.KeyPath)
 
-	if err != nil {
 
-		return nil, fmt.Errorf("connectionpool: unable to load X509 key pair: %v", err)
 
+	mycerts := make([]tls.Certificate, 0)
 
+	if sslOpts.CertPath != "" || sslOpts.KeyPath != "" {
 
+		mycert, err := tls.LoadX509KeyPair(sslOpts.CertPath, sslOpts.KeyPath)
 
+		if err != nil {
 
+			return nil, fmt.Errorf("connectionpool: unable to load X509 key pair: %v", err)
 
+		}
 
+		mycerts = append(mycerts, mycert)
 
 	}
 
 
 	config := &tls.Config{
 
-		Certificates: []tls.Certificate{mycert},
 
+		Certificates: mycerts,
 
 		RootCAs:      certPool,
 
 	}