func initTLSClient(cfg tlsutil.ClientCertConfig, caCert *x509.Certificate, caKey *rsa.PrivateKey, keyPath, certPath string) error { key, err := tlsutil.NewPrivateKey() if err != nil { return err } cert, err := tlsutil.NewSignedClientCertificate(cfg, key, caCert, caKey) if err != nil { return err } if err := writeKey(keyPath, key); err != nil { return err } if err := writeCert(certPath, cert); err != nil { return err } return nil }
func initTLSCA(cfg tlsutil.CACertConfig, keyPath, certPath string) (*rsa.PrivateKey, *x509.Certificate, error) { key, err := tlsutil.NewPrivateKey() if err != nil { return nil, nil, err } cert, err := tlsutil.NewSelfSignedCACertificate(cfg, key) if err != nil { return nil, nil, err } if err := writeKey(keyPath, key); err != nil { return nil, nil, err } if err := writeCert(certPath, cert); err != nil { return nil, nil, err } return key, cert, nil }