forked from elastic/beats
-
Notifications
You must be signed in to change notification settings - Fork 7
/
tls.go
45 lines (38 loc) · 855 Bytes
/
tls.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
package transport
import (
"crypto/tls"
"fmt"
"net"
"time"
)
func TLSDialer(tlscfg *tls.Config, timeout time.Duration, forward Dialer) Dialer {
if tlscfg == nil {
return forward
}
return DialerFunc(func(network, address string) (net.Conn, error) {
switch network {
case "tcp", "tcp4", "tcp6":
default:
return nil, fmt.Errorf("unsupported network type %v", network)
}
socket, err := forward.Dial(network, address)
if err != nil {
return nil, err
}
host, _, err := net.SplitHostPort(address)
if err != nil {
return nil, err
}
tlscfg.ServerName = host
conn := tls.Client(socket, tlscfg)
if err := conn.SetDeadline(time.Now().Add(timeout)); err != nil {
_ = conn.Close()
return nil, err
}
if err := conn.Handshake(); err != nil {
_ = conn.Close()
return nil, err
}
return conn, nil
})
}