|
|
@@ -162,15 +162,14 @@ func (info TLSInfo) baseConfig() (*tls.Config, error) {
|
|
|
return nil, fmt.Errorf("KeyFile and CertFile must both be present[key: %v, cert: %v]", info.KeyFile, info.CertFile)
|
|
|
}
|
|
|
|
|
|
- tlsCert, err := tlsutil.NewCert(info.CertFile, info.KeyFile, info.parseFunc)
|
|
|
+ _, err := tlsutil.NewCert(info.CertFile, info.KeyFile, info.parseFunc)
|
|
|
if err != nil {
|
|
|
return nil, err
|
|
|
}
|
|
|
|
|
|
cfg := &tls.Config{
|
|
|
- Certificates: []tls.Certificate{*tlsCert},
|
|
|
- MinVersion: tls.VersionTLS12,
|
|
|
- ServerName: info.ServerName,
|
|
|
+ MinVersion: tls.VersionTLS12,
|
|
|
+ ServerName: info.ServerName,
|
|
|
}
|
|
|
// this only reloads certs when there's a client request
|
|
|
// TODO: support server-side refresh (e.g. inotify, SIGHUP), caching
|
rob boll