var (
ErrClientHandshakeNop = errors.New(
"boulder/grpc/creds: Client-side handshakes are not implemented with " +
"serverTransportCredentials")
ErrServerHandshakeNop = errors.New(
"boulder/grpc/creds: Server-side handshakes are not implemented with " +
"clientTransportCredentials")
ErrOverrideServerNameNop = errors.New(
"boulder/grpc/creds: OverrideServerName() is not implemented")
ErrNilServerConfig = errors.New(
"boulder/grpc/creds: `serverConfig` must not be nil")
ErrEmptyPeerCerts = errors.New(
"boulder/grpc/creds: validateClient given state with empty PeerCertificates")
)
func NewClientCredentials(rootCAs *x509.CertPool, clientCerts []tls.Certificate, hostOverride string) credentials.TransportCredentials
NewClientCredentials returns a new initialized grpc/credentials.TransportCredentials for client usage
func NewServerCredentials(serverConfig *tls.Config, acceptedSANs map[string]struct{}) (credentials.TransportCredentials, error)
NewServerCredentials returns a new initialized grpc/credentials.TransportCredentials for server usage
type ErrSANNotAccepted struct {
// contains filtered or unexported fields
}
func (e ErrSANNotAccepted) Error() string