TheArchive/tailscale
1
0
Fork 0
mirror of https://github.com/tailscale/tailscale.git synced 2025-08-13 06:07:34 +00:00
Code Issues Packages Projects Releases Wiki Activity

net/tlsdial: add memory-optimized TLS cert verification path for iOS

Browse Source 
Behind a build tag for now.
This commit is contained in:
Brad Fitzpatrick
2020-04-25 13:55:51 -07:00
parent b6fa5a69be
commit 6fcbd4c4d4
3 changed files with 70 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
control/controlclient/direct.go
View File

@@ -16,6 +16,7 @@ import (
"io/ioutil"
"log"
"net/http"
"net/url"
"os"
"reflect"
"strconv"
@@ -114,6 +115,10 @@ func NewDirect(opts Options) (*Direct, error) {
return nil, errors.New("controlclient.New: no server URL specified")
}
opts.ServerURL = strings.TrimRight(opts.ServerURL, "/")
serverURL, err := url.Parse(opts.ServerURL)
if err != nil {
return nil, err
}
if opts.TimeNow == nil {
opts.TimeNow = time.Now
}
@@ -125,7 +130,7 @@ func NewDirect(opts Options) (*Direct, error) {
tr := http.DefaultTransport.(*http.Transport).Clone()
tr.ForceAttemptHTTP2 = true
tr.TLSClientConfig = tlsdial.Config("", tr.TLSClientConfig)
tr.TLSClientConfig = tlsdial.Config(serverURL.Host, tr.TLSClientConfig)
httpc := &http.Client{Transport: tr}
c := &Direct{