Implement custom cert selection policies; optimize matching for SNI

author: Matthew Holt <mholt@users.noreply.github.com> 2019-05-24 13:18:45 -0600
committer: Matthew Holt <mholt@users.noreply.github.com> 2019-05-24 13:18:45 -0600
commit: 210d0cf7f1040c1372a79869b8b279a92a52baf5 (patch)
tree: 584d37fc0eae87f6262c0ec73d9e59c6990fb4e0 /modules/caddytls/tls.go
parent: 5a4a1421de9cc3a9d5aba9e48c195030cc24f576 (diff)
1 files changed, 8 insertions, 0 deletions
diff --git a/modules/caddytls/tls.go b/modules/caddytls/tls.go
index 4e21ade..174d3e4 100644
--- a/modules/caddytls/tls.go
+++ b/modules/caddytls/tls.go
@@ -2,6 +2,7 @@ package caddytls
 
 import (
 	"crypto/tls"
+	"crypto/x509"
 	"encoding/json"
 	"fmt"
 	"net/http"
@@ -316,4 +317,11 @@ var supportedProtocols = map[string]uint16{
 	"tls1.3": tls.VersionTLS13,
 }
 
+// publicKeyAlgorithms is the map of supported public key algorithms.
+var publicKeyAlgorithms = map[string]pkAlgorithm{
+	"rsa":   pkAlgorithm(x509.RSA),
+	"dsa":   pkAlgorithm(x509.DSA),
+	"ecdsa": pkAlgorithm(x509.ECDSA),
+}
+
 const automateKey = "automate"
author	Matthew Holt <mholt@users.noreply.github.com>	2019-05-24 13:18:45 -0600
committer	Matthew Holt <mholt@users.noreply.github.com>	2019-05-24 13:18:45 -0600
commit	210d0cf7f1040c1372a79869b8b279a92a52baf5 (patch)
tree	584d37fc0eae87f6262c0ec73d9e59c6990fb4e0 /modules/caddytls/tls.go
parent	5a4a1421de9cc3a9d5aba9e48c195030cc24f576 (diff)