make ssl-insecure-skip-verify keep most DefaultTransport defaults

http.DefaultTransport is not a "zero" http.Transport, it has a bunch of default settings like timeouts and keepalives so just change the TLSClientConfig of the existing DefaultTransport instead of creating a whole new http.Transport
ploxiln · Feb 5, 2019 · 84305f7 · 84305f7
1 parent 09e8dbd
commit 84305f7
Showing 1 changed file with 7 additions and 4 deletions.
diff --git a/options.go b/options.go
@@ -127,15 +127,18 @@ func parseURL(to_parse string, urltype string, msgs []string) (*url.URL, []strin
 }
 
 func (o *Options) Validate() error {
+	msgs := make([]string, 0)
+
 	if o.SSLInsecureSkipVerify {
 		// TODO: Accept a certificate bundle.
-		insecureTransport := &http.Transport{
-			TLSClientConfig: &tls.Config{InsecureSkipVerify: true},
+		default_transport, ok := http.DefaultTransport.(*http.Transport)
+		if ok {
+			default_transport.TLSClientConfig = &tls.Config{InsecureSkipVerify: true}
+		} else {
+			msgs = append(msgs, "error setting insecure tls config: DefaultTransport is unexpected type")
 		}
-		http.DefaultTransport = insecureTransport
 	}
 
-	msgs := make([]string, 0)
 	if o.CookieSecret == "" {
 		msgs = append(msgs, "missing setting: cookie-secret")
 	}