Home Explore Help
Sign In
wytfy
/
v2ray-core
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 954587cdc9
Branches Tags
v2ray-core
/
transport
/
internet
/
tls
/
config.go

config.go 954 B
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344 
  1. package tls
    2. 

  2. 

  3. import (
    4. 

  4. 	"crypto/tls"
    5. 

  5. 

  6. 	"v2ray.com/core/app/log"
    7. 

  7. 	"v2ray.com/core/common/errors"
    8. 

  8. )
    9. 

  9. 

  10. var (
    11. 

  11. 	globalSessionCache = tls.NewLRUClientSessionCache(128)
    12. 

  12. )
    13. 

  13. 

  14. func (v *Config) BuildCertificates() []tls.Certificate {
    15. 

  15. 	certs := make([]tls.Certificate, 0, len(v.Certificate))
    16. 

  16. 	for _, entry := range v.Certificate {
    17. 

  17. 		keyPair, err := tls.X509KeyPair(entry.Certificate, entry.Key)
    18. 

  18. 		if err != nil {
    19. 

  19. 			log.Trace(errors.New("TLS: ignoring invalid X509 key pair").Base(err).AtWarning())
    20. 

  20. 			continue
    21. 

  21. 		}
    22. 

  22. 		certs = append(certs, keyPair)
    23. 

  23. 	}
    24. 

  24. 	return certs
    25. 

  25. }
    26. 

  26. 

  27. func (v *Config) GetTLSConfig() *tls.Config {
    28. 

  28. 	config := &tls.Config{
    29. 

  29. 		ClientSessionCache: globalSessionCache,
    30. 

  30. 		NextProtos:         []string{"http/1.1"},
    31. 

  31. 	}
    32. 

  32. 	if v == nil {
    33. 

  33. 		return config
    34. 

  34. 	}
    35. 

  35. 

  36. 	config.InsecureSkipVerify = v.AllowInsecure
    37. 

  37. 	config.Certificates = v.BuildCertificates()
    38. 

  38. 	config.BuildNameToCertificate()
    39. 

  39. 	if len(v.ServerName) > 0 {
    40. 

  40. 		config.ServerName = v.ServerName
    41. 

  41. 	}
    42. 

  42. 

  43. 	return config
    44. 

  44. }
    45.