7x31/anylink
1
0
Fork 0
mirror of https://github.com/bjdgyc/anylink.git synced 2025-08-08 17:42:50 +08:00
Code Issues Packages Projects Releases Wiki Activity

兼容不支持SNI的情况

Browse Source
This commit is contained in:
bjdgyc
2023-04-21 15:57:12 +08:00
parent c05ec9ab36
commit 91ce4752f3
3 changed files with 40 additions and 25 deletions
Download Patch File Download Diff File Expand all files Collapse all files

15
server/dbdata/cert.go
View File

@@ -33,9 +33,12 @@ import (
"github.com/go-acme/lego/v4/registration"
)
var nameToCertificate = make(map[string]*tls.Certificate)
var tempCert *tls.Certificate
var (
// nameToCertificate mutex
ntcMux sync.RWMutex
nameToCertificate = make(map[string]*tls.Certificate)
tempCert *tls.Certificate
)
func init() {
c, _ := selfsign.GenerateSelfSignedWithDNS("localhost")
@@ -342,6 +345,9 @@ func getTempCertificate() (*tls.Certificate, error) {
}
func GetCertificateBySNI(commonName string) (*tls.Certificate, error) {
ntcMux.RLock()
defer ntcMux.RUnlock()
// Copy from tls.Config getCertificate()
name := strings.ToLower(commonName)
if cert, ok := nameToCertificate[name]; ok {
@@ -369,6 +375,9 @@ func LoadCertificate(cert *tls.Certificate) {
// Copy from tls.Config BuildNameToCertificate()
func buildNameToCertificate(cert *tls.Certificate) {
ntcMux.Lock()
defer ntcMux.Unlock()
// TODO 设置默认证书
nameToCertificate["default"] = cert