mirror of
https://github.com/opencloud-eu/opencloud.git
synced 2026-01-04 11:19:39 -06:00
4623b6c8e7
* use tls for nats connections * add config options for nats client tls config * add nats tls config to CI * add function to create a certpool * add option to provide a rootCA to validate the server's TLS certificate * add option to provide a rootCA to validate the server's TLS certificate * add option to provide a rootCA to validate the server's TLS certificate * add option to provide a rootCA to validate the server's TLS certificate * configure nats clients in reva to use tls
29 lines
642 B
Go
29 lines
642 B
Go
// Package crypto implements utility functions for handling crypto related files.
|
|
package crypto
|
|
|
|
import (
|
|
"bytes"
|
|
"crypto/x509"
|
|
"errors"
|
|
"io"
|
|
)
|
|
|
|
// NewCertPoolFromPEM reads certificates from io.Reader and returns a x509.CertPool
|
|
// containing those certificates.
|
|
func NewCertPoolFromPEM(crts ...io.Reader) (*x509.CertPool, error) {
|
|
certPool := x509.NewCertPool()
|
|
|
|
var buf bytes.Buffer
|
|
for _, c := range crts {
|
|
if _, err := io.Copy(&buf, c); err != nil {
|
|
return nil, err
|
|
}
|
|
if !certPool.AppendCertsFromPEM(buf.Bytes()) {
|
|
return nil, errors.New("failed to append cert from PEM")
|
|
}
|
|
buf.Reset()
|
|
}
|
|
|
|
return certPool, nil
|
|
}
|