...

Package tlsutil

import "helm.sh/helm/v3/internal/tlsutil"
Overview
Index

Overview ▾

func CertFromFilePair

func CertFromFilePair(certFile, keyFile string) (*tls.Certificate, error)

CertFromFilePair returns an tls.Certificate containing the certificates public/private key pair from a pair of given PEM-encoded files. Returns an error if the file could not be read, a certificate could not be parsed, or if the file does not contain any certificates

func CertPoolFromFile

func CertPoolFromFile(filename string) (*x509.CertPool, error)

CertPoolFromFile returns an x509.CertPool containing the certificates in the given PEM-encoded file. Returns an error if the file could not be read, a certificate could not be parsed, or if the file does not contain any certificates

func ClientConfig

func ClientConfig(opts Options) (cfg *tls.Config, err error)

ClientConfig returns a TLS configuration for use by a Helm client.

func NewClientTLS

func NewClientTLS(certFile, keyFile, caFile string, insecureSkipTLSverify bool) (*tls.Config, error)

NewClientTLS returns tls.Config appropriate for client auth.

type Options

Options represents configurable options used to create client and server TLS configurations.

type Options struct {
    CaCertFile string
    // If either the KeyFile or CertFile is empty, ClientConfig() will not load them.
    KeyFile  string
    CertFile string
    // Client-only options
    InsecureSkipVerify bool
}