etcd/transport at bfd5f38af3e4fc783967e8cb034c242c73cbcedf - etcd

mirror of https://github.com/etcd-io/etcd.git synced 2024-09-27 06:25:44 +00:00

History

Anthony Romano 05582ad5b2 transport: resolve DNSNames when SAN checking

The current transport client TLS checking will pass an IP address into
VerifyHostnames if there is DNSNames SAN. However, the go runtime will
not resolve the DNS names to match the client IP. Intead, resolve the
names when checking.

2017-04-18 13:21:26 -07:00

doc.go

pkg: update LICENSE header

2016-05-12 20:48:53 -07:00

keepalive_listener_test.go

transport: use actual certs for listener tests

2017-04-12 13:41:33 -07:00

keepalive_listener.go

pkg: update LICENSE header

2016-05-12 20:48:53 -07:00

limit_listen.go

pkg: update LICENSE header

2016-05-12 20:48:53 -07:00

listener_test.go

Merge pull request #7687 from heyitsanthony/deny-tls-ipsan

2017-04-13 15:03:25 -07:00

listener_tls.go

transport: resolve DNSNames when SAN checking

2017-04-18 13:21:26 -07:00

listener.go

*: use '*tls.Config.Clone' in Go 1.8

2017-04-17 20:08:27 -07:00

timeout_conn.go

pkg: update LICENSE header

2016-05-12 20:48:53 -07:00

timeout_dialer_test.go

pkg/transport: bump wait time in TestReadWriteTimeoutDialer for write deadline

2016-08-22 15:30:44 -07:00

timeout_dialer.go

pkg: update LICENSE header

2016-05-12 20:48:53 -07:00

timeout_listener_test.go

pkg: update LICENSE header

2016-05-12 20:48:53 -07:00

timeout_listener.go

*: deny incoming peer certs with wrong IP SAN

2017-04-12 13:41:33 -07:00

timeout_transport_test.go

pkg: update LICENSE header

2016-05-12 20:48:53 -07:00

timeout_transport.go

pkg/transport: fix minor typo

2016-08-04 16:00:18 -07:00

tls.go

transport: add ServerName to TLSConfig and add ValidateSecureEndpoints

2016-08-03 22:28:03 -07:00

transport.go

pkg/transport: update scheme to unix copying URL

2016-08-03 10:35:28 -07:00

unix_listener.go

*: fix a bug in handling unix socket urls

2017-04-05 14:33:13 +08:00