Vendoring with Glide and delete function handler

2025-06-22 14:53:25 +00:00 · 2017-04-26 19:13:42 +01:00
parent 1eaf13c6c8
commit 78af82021f
7137 changed files with 1688302 additions and 19 deletions
--- a/gateway/vendor/github.com/docker/libtrust/tlsdemo/client.go
+++ b/gateway/vendor/github.com/docker/libtrust/tlsdemo/client.go
@ -0,0 +1,89 @@
+package main
+
+import (
+	"crypto/tls"
+	"fmt"
+	"io/ioutil"
+	"log"
+	"net"
+	"net/http"
+
+	"github.com/docker/libtrust"
+)
+
+var (
+	serverAddress        = "localhost:8888"
+	privateKeyFilename   = "client_data/private_key.pem"
+	trustedHostsFilename = "client_data/trusted_hosts.pem"
+)
+
+func main() {
+	// Load Client Key.
+	clientKey, err := libtrust.LoadKeyFile(privateKeyFilename)
+	if err != nil {
+		log.Fatal(err)
+	}
+
+	// Generate Client Certificate.
+	selfSignedClientCert, err := libtrust.GenerateSelfSignedClientCert(clientKey)
+	if err != nil {
+		log.Fatal(err)
+	}
+
+	// Load trusted host keys.
+	hostKeys, err := libtrust.LoadKeySetFile(trustedHostsFilename)
+	if err != nil {
+		log.Fatal(err)
+	}
+
+	// Ensure the host we want to connect to is trusted!
+	host, _, err := net.SplitHostPort(serverAddress)
+	if err != nil {
+		log.Fatal(err)
+	}
+	serverKeys, err := libtrust.FilterByHosts(hostKeys, host, false)
+	if err != nil {
+		log.Fatalf("%q is not a known and trusted host", host)
+	}
+
+	// Generate a CA pool with the trusted host's key.
+	caPool, err := libtrust.GenerateCACertPool(clientKey, serverKeys)
+	if err != nil {
+		log.Fatal(err)
+	}
+
+	// Create HTTP Client.
+	client := &http.Client{
+		Transport: &http.Transport{
+			TLSClientConfig: &tls.Config{
+				Certificates: []tls.Certificate{
+					tls.Certificate{
+						Certificate: [][]byte{selfSignedClientCert.Raw},
+						PrivateKey:  clientKey.CryptoPrivateKey(),
+						Leaf:        selfSignedClientCert,
+					},
+				},
+				RootCAs: caPool,
+			},
+		},
+	}
+
+	var makeRequest = func(url string) {
+		resp, err := client.Get(url)
+		if err != nil {
+			log.Fatal(err)
+		}
+		defer resp.Body.Close()
+
+		body, err := ioutil.ReadAll(resp.Body)
+		if err != nil {
+			log.Fatal(err)
+		}
+
+		log.Println(resp.Status)
+		log.Println(string(body))
+	}
+
+	// Make the request to the trusted server!
+	makeRequest(fmt.Sprintf("https://%s", serverAddress))
+}