Domovská stránka Prehľadávať Pomoc
Registrovať Prihlásiť sa
xinstitute
/
quorum-code
2
0
Fork 0
Súbory Issues 0 Pull requesty 0 Wiki
Branch: master
Branche Tagy
quorum-code
/
common
/
http
/
transport.go

transport.go 1.6 KB
Permanentný odkaz História Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455 
  1. package http
    2. 

  2. 

  3. import (
    4. 

  4. 	"crypto/tls"
    5. 

  5. 	"fmt"
    6. 

  6. 	"net/http"
    7. 

  7. 	"path/filepath"
    8. 

  8. 	"time"
    9. 

  9. 

  10. 	"github.com/tv42/httpunix"
    11. 

  11. )
    12. 

  12. 

  13. func unixTransport(cfg Config) *httpunix.Transport {
    14. 

  14. 	// Note that clientTimeout doesn't work when using httpunix.Transport, so we set ResponseHeaderTimeout instead
    15. 

  15. 	t := &httpunix.Transport{
    16. 

  16. 		DialTimeout:           time.Duration(cfg.DialTimeout) * time.Second,
    17. 

  17. 		RequestTimeout:        5 * time.Second,
    18. 

  18. 		ResponseHeaderTimeout: time.Duration(cfg.Timeout) * time.Second,
    19. 

  19. 	}
    20. 

  20. 	t.RegisterLocation("c", filepath.Join(cfg.WorkDir, cfg.Socket))
    21. 

  21. 	return t
    22. 

  22. }
    23. 

  23. 

  24. func httpTransport(cfg Config) *http.Transport {
    25. 

  25. 	t := &http.Transport{
    26. 

  26. 		IdleConnTimeout: time.Duration(cfg.HttpIdleConnTimeout) * time.Second,
    27. 

  27. 		WriteBufferSize: cfg.HttpWriteBufferSize,
    28. 

  28. 		ReadBufferSize:  cfg.HttpReadBufferSize,
    29. 

  29. 	}
    30. 

  30. 	return t
    31. 

  31. }
    32. 

  32. 

  33. func newTLSConfig(cfg Config) (*tls.Config, error) {
    34. 

  34. 	rootCAPool, err := loadRootCaCerts(cfg.TlsRootCA)
    35. 

  35. 	if err != nil {
    36. 

  36. 		return nil, err
    37. 

  37. 	}
    38. 

  38. 

  39. 	var getClientCertFunc func(*tls.CertificateRequestInfo) (*tls.Certificate, error) = nil
    40. 

  40. 	if len(cfg.TlsClientCert) != 0 && len(cfg.TlsClientKey) != 0 {
    41. 

  41. 		getClientCertFunc = func(info *tls.CertificateRequestInfo) (certificate *tls.Certificate, e error) {
    42. 

  42. 			c, err := tls.LoadX509KeyPair(cfg.TlsClientCert, cfg.TlsClientKey)
    43. 

  43. 			if err != nil {
    44. 

  44. 				return nil, fmt.Errorf("failed to load client key pair from '%v', '%v': %v", cfg.TlsClientCert, cfg.TlsClientKey, err)
    45. 

  45. 			}
    46. 

  46. 			return &c, nil
    47. 

  47. 		}
    48. 

  48. 	}
    49. 

  49. 

  50. 	return &tls.Config{
    51. 

  51. 		RootCAs:              rootCAPool,
    52. 

  52. 		InsecureSkipVerify:   cfg.TlsInsecureSkipVerify,
    53. 

  53. 		GetClientCertificate: getClientCertFunc,
    54. 

  54. 	}, nil
    55. 

  55. }
    56.