forked from OneOfOne/gserv
/
tls_go19.go
46 lines (36 loc) · 928 Bytes
/
tls_go19.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
//go:build go1.9
// +build go1.9
package gserv
import (
"context"
"crypto/tls"
"crypto/x509"
"fmt"
"net"
)
// RunTLS starts the server on the specific address, using tls
func (s *Server) RunTLS(addr string, certPairs []CertPair) error {
cfg := tls.Config{RootCAs: x509.NewCertPool()}
cfg.Certificates = make([]tls.Certificate, 0, len(certPairs))
for _, cp := range certPairs {
cert, err := tls.LoadX509KeyPair(cp.CertFile, cp.KeyFile)
if err != nil {
return fmt.Errorf("%s: %v", cp.CertFile, err)
}
cfg.Certificates = append(cfg.Certificates, cert)
}
cfg.BuildNameToCertificate()
if addr == "" {
addr = ":https"
}
ln, err := net.Listen("tcp", addr)
if err != nil {
return err
}
srv := s.newHTTPServer(context.Background(), ln.Addr().String(), false)
srv.TLSConfig = &cfg
s.serversMux.Lock()
s.servers = append(s.servers, srv)
s.serversMux.Unlock()
return srv.ServeTLS(ln, "", "")
}