Skip to content

Commit

Permalink
reverseproxy: Adjust new TLS Caddyfile directive names (#4872)
Browse files Browse the repository at this point in the history
  • Loading branch information
@francislavoie
francislavoie committed Jul 8, 2022
1 parent c0f76e9 commit 54d1923
Show file tree
Hide file tree
Showing 2 changed files with 33 additions and 30 deletions.
5 changes: 3 additions & 2 deletions caddytest/integration/caddyfile_adapt/reverse_proxy_options.txt
View file
Expand Up @@ -24,8 +24,9 @@ https://example.com {
max_conns_per_host 5
keepalive_idle_conns_per_host 2
keepalive_interval 30s
renegotiation freely
except_ports 8181 8182

tls_renegotiation freely
tls_except_ports 8181 8182
}
}
}
Expand Down
58 changes: 30 additions & 28 deletions modules/caddyhttp/reverseproxy/caddyfile.go
View file
Expand Up @@ -814,6 +814,8 @@ func (h *Handler) FinalizeUnmarshalCaddyfile(helper httpcaddyfile.Helper) error
// tls_timeout <duration>
// tls_trusted_ca_certs <cert_files...>
// tls_server_name <sni>
// tls_renegotiation <level>
// tls_except_ports <ports...>
// keepalive [off|<duration>]
// keepalive_interval <interval>
// keepalive_idle_conns <max_count>
Expand Down Expand Up @@ -907,6 +909,11 @@ func (h *HTTPTransport) UnmarshalCaddyfile(d *caddyfile.Dispenser) error {
return d.Errf("must specify at least one resolver address")
}

case "tls":
if h.TLS == nil {
h.TLS = new(TLSConfig)
}

case "tls_client_auth":
if h.TLS == nil {
h.TLS = new(TLSConfig)
Expand All @@ -922,25 +929,6 @@ func (h *HTTPTransport) UnmarshalCaddyfile(d *caddyfile.Dispenser) error {
return d.ArgErr()
}

case "renegotiation":
if h.TLS == nil {
h.TLS = new(TLSConfig)
}
if !d.NextArg() {
return d.ArgErr()
}
switch renegotiation := d.Val(); renegotiation {
case "never", "once", "freely":
h.TLS.Renegotiation = renegotiation
default:
return d.ArgErr()
}

case "tls":
if h.TLS == nil {
h.TLS = new(TLSConfig)
}

case "tls_insecure_skip_verify":
if d.NextArg() {
return d.ArgErr()
Expand Down Expand Up @@ -982,6 +970,29 @@ func (h *HTTPTransport) UnmarshalCaddyfile(d *caddyfile.Dispenser) error {
}
h.TLS.ServerName = d.Val()

case "tls_renegotiation":
if h.TLS == nil {
h.TLS = new(TLSConfig)
}
if !d.NextArg() {
return d.ArgErr()
}
switch renegotiation := d.Val(); renegotiation {
case "never", "once", "freely":
h.TLS.Renegotiation = renegotiation
default:
return d.ArgErr()
}

case "tls_except_ports":
if h.TLS == nil {
h.TLS = new(TLSConfig)
}
h.TLS.ExceptPorts = d.RemainingArgs()
if len(h.TLS.ExceptPorts) == 0 {
return d.ArgErr()
}

case "keepalive":
if !d.NextArg() {
return d.ArgErr()
Expand Down Expand Up @@ -1063,15 +1074,6 @@ func (h *HTTPTransport) UnmarshalCaddyfile(d *caddyfile.Dispenser) error {
}
h.MaxConnsPerHost = num

case "except_ports":
if h.TLS == nil {
h.TLS = new(TLSConfig)
}
h.TLS.ExceptPorts = d.RemainingArgs()
if len(h.TLS.ExceptPorts) == 0 {
return d.ArgErr()
}

default:
return d.Errf("unrecognized subdirective %s", d.Val())
}
Expand Down

0 comments on commit 54d1923

Please sign in to comment.