TRKJ/EdgeCommon
2
0
Fork 0
mirror of https://github.com/TeaOSLab/EdgeCommon.git synced 2026-04-19 10:25:17 +08:00
Code Issues Packages Projects Releases Wiki Activity

修复客户端CA证书设置不起作用的Bug

Browse Source
This commit is contained in:
GoEdgeLab
2023-02-09 11:31:33 +08:00
parent f1d4087658
commit 3acd00befa
2 changed files with 14 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
pkg/serverconfigs/sslconfigs/ssl_cert_config.go
View File

@@ -35,6 +35,7 @@ type SSLCertConfig struct {
OCSPError string `yaml:"ocspError" json:"ocspError"`
cert *tls.Certificate
caCerts []*x509.Certificate
timeBegin time.Time
timeEnd time.Time
}
@@ -44,6 +45,8 @@ func (this *SSLCertConfig) Init() error {
var commonNames []string // 发行组织
var dnsNames []string // 域名
this.caCerts = []*x509.Certificate{}
// 分析证书
if this.IsCA { // CA证书
var data = this.CertData
@@ -68,6 +71,7 @@ func (this *SSLCertConfig) Init() error {
if c == nil {
return errors.New("no available certificates in file")
}
this.caCerts = append(this.caCerts, c)
for _, dnsName := range c.DNSNames {
if !lists.ContainsString(dnsNames, dnsName) {
@@ -141,6 +145,10 @@ func (this *SSLCertConfig) CertObject() *tls.Certificate {
return this.cert
}
func (this *SSLCertConfig) CACerts() []*x509.Certificate {
return this.caCerts
}
// TimeBegin 开始时间
func (this *SSLCertConfig) TimeBegin() time.Time {
return this.timeBegin