drew/smtprelay
1
0
Fork 1
mirror of https://github.com/decke/smtprelay.git synced 2026-01-17 06:39:24 -07:00
Code Issues Packages Projects Releases Wiki Activity

Client certificate for relay

Browse Source
This commit is contained in:
Bert Proesmans
2025-12-14 00:08:03 +00:00
committed by Bernhard Fröhlich
parent 42d1721751
commit 0e352a9bb6
4 changed files with 79 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

16
smtp.go
View File

@@ -340,6 +340,14 @@ func SendMail(r *Remote, from string, to []string, msg []byte) error {
ServerName: r.Hostname,
InsecureSkipVerify: r.SkipVerify,
}
// Load client certificate on-demand, just before connection
if r.ClientCertPath != "" && r.ClientKeyPath != "" {
cert, err := tls.LoadX509KeyPair(r.ClientCertPath, r.ClientKeyPath)
if err != nil {
return err
}
config.Certificates = []tls.Certificate{cert}
}
conn, err := tls.Dial("tcp", r.Addr, config)
if err != nil {
return err
@@ -366,6 +374,14 @@ func SendMail(r *Remote, from string, to []string, msg []byte) error {
ServerName: c.serverName,
InsecureSkipVerify: r.SkipVerify,
}
// Load client certificate on-demand, just before use
if r.ClientCertPath != "" && r.ClientKeyPath != "" {
cert, err := tls.LoadX509KeyPair(r.ClientCertPath, r.ClientKeyPath)
if err != nil {
return err
}
config.Certificates = []tls.Certificate{cert}
}
if testHookStartTLS != nil {
testHookStartTLS(config)
}