sashakoshka/go-gemini
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Make CertificateDir safe for concurrent use by multiple goroutines

Browse Source
This commit is contained in:
Adnan Maolood 2020-12-17 16:52:08 -05:00
parent e687a05170
commit aeafd57956
1 changed files with 13 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
cert.go
View File

@ -23,15 +23,20 @@ type CertificateStore map[string]tls.Certificate
// CertificateDir represents a certificate store optionally loaded from a directory. // CertificateDir represents a certificate store optionally loaded from a directory.
// The zero value of CertificateDir is an empty store ready to use. // The zero value of CertificateDir is an empty store ready to use.
//
// CertificateDir is safe for concurrent use by multiple goroutines.
type CertificateDir struct { type CertificateDir struct {
CertificateStore CertificateStore
dir bool dir bool
path string path string
mu sync.Mutex
} }
// Add adds a certificate for the given scope to the store. // Add adds a certificate for the given scope to the store.
// It tries to parse the certificate if it is not already parsed. // It tries to parse the certificate if it is not already parsed.
func (c *CertificateDir) Add(scope string, cert tls.Certificate) { func (c *CertificateDir) Add(scope string, cert tls.Certificate) {
c.mu.Lock()
defer c.mu.Unlock()
if c.CertificateStore == nil { if c.CertificateStore == nil {
c.CertificateStore = CertificateStore{} c.CertificateStore = CertificateStore{}
} }
@ -47,6 +52,8 @@ func (c *CertificateDir) Add(scope string, cert tls.Certificate) {
// Write writes the provided certificate to the certificate directory. // Write writes the provided certificate to the certificate directory.
func (c *CertificateDir) Write(scope string, cert tls.Certificate) error { func (c *CertificateDir) Write(scope string, cert tls.Certificate) error {
c.mu.RLock()
defer c.mu.RUnlock()
if c.dir { if c.dir {
// Escape slash character // Escape slash character
scope = strings.ReplaceAll(scope, "/", ":") scope = strings.ReplaceAll(scope, "/", ":")
@ -61,6 +68,8 @@ func (c *CertificateDir) Write(scope string, cert tls.Certificate) error {
// Lookup returns the certificate for the given scope. // Lookup returns the certificate for the given scope.
func (c *CertificateDir) Lookup(scope string) (tls.Certificate, bool) { func (c *CertificateDir) Lookup(scope string) (tls.Certificate, bool) {
c.mu.RLock()
defer c.mu.RUnlock()
cert, ok := c.CertificateStore[scope] cert, ok := c.CertificateStore[scope]
return cert, ok return cert, ok
} }
@ -72,6 +81,8 @@ func (c *CertificateDir) Lookup(scope string) (tls.Certificate, bool) {
// localhost.crt (certificate) and localhost.key (private key). // localhost.crt (certificate) and localhost.key (private key).
// New certificates will be written to this directory. // New certificates will be written to this directory.
func (c *CertificateDir) Load(path string) error { func (c *CertificateDir) Load(path string) error {
c.mu.Lock()
defer c.mu.Unlock()
matches, err := filepath.Glob(filepath.Join(path, "*.crt")) matches, err := filepath.Glob(filepath.Join(path, "*.crt"))
if err != nil { if err != nil {
return err return err
@ -94,6 +105,8 @@ func (c *CertificateDir) Load(path string) error {
// SetDir sets the directory that new certificates will be written to. // SetDir sets the directory that new certificates will be written to.
func (c *CertificateDir) SetDir(path string) { func (c *CertificateDir) SetDir(path string) {
c.mu.Lock()
defer c.mu.Unlock()
c.dir = true c.dir = true
c.path = path c.path = path
} }