Add mutual aTLS support (#176)

Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2025-07-30 10:38:46 -04:00 · 2022-05-24 16:33:44 +02:00 · 2022-05-24 16:33:44 +02:00 · 869448c3e1
commit 869448c3e1
parent 5d7bf86b30
19 changed files with 354 additions and 146 deletions
--- a/coordinator/coordinator_test.go
+++ b/coordinator/coordinator_test.go
@ -225,7 +225,7 @@ func spawnPeer(require *require.Assertions, logger *zap.Logger, netDialer *testd

 	papi := pubapi.New(logger, cor, dialer, vapiServer, getPublicAddr, nil)

-	tlsConfig, err := atls.CreateAttestationServerTLSConfig(&core.MockIssuer{})
+	tlsConfig, err := atls.CreateAttestationServerTLSConfig(&core.MockIssuer{}, nil)
 	require.NoError(err)
 	server := grpc.NewServer(grpc.Creds(credentials.NewTLS(tlsConfig)))
 	pubproto.RegisterAPIServer(server, papi)
@ -263,7 +263,7 @@ func activateCoordinator(require *require.Assertions, dialer netDialer, coordina
 }

 func dialGRPC(ctx context.Context, dialer netDialer, target string) (*grpc.ClientConn, error) {
-	tlsConfig, err := atls.CreateAttestationClientTLSConfig([]atls.Validator{&core.MockValidator{}})
+	tlsConfig, err := atls.CreateAttestationClientTLSConfig(nil, []atls.Validator{&core.MockValidator{}})
 	if err != nil {
 		return nil, err
 	}