vendor/github.com/coreos/etcd/pkg/tlsutil/tlsutil.go - cloudstack-kubernetes-provider - Git at Google

 // Copyright 2016 The etcd Authors
 //
 // Licensed under the Apache License, Version 2.0 (the "License");
 // you may not use this file except in compliance with the License.
 // You may obtain a copy of the License at
 //
 //     http://www.apache.org/licenses/LICENSE-2.0
 //
 // Unless required by applicable law or agreed to in writing, software
 // distributed under the License is distributed on an "AS IS" BASIS,
 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 // See the License for the specific language governing permissions and
 // limitations under the License.

 package tlsutil

 import (
 	"crypto/tls"
 	"crypto/x509"
 	"encoding/pem"
 	"io/ioutil"
 )

 // NewCertPool creates x509 certPool with provided CA files.
 func NewCertPool(CAFiles []string) (*x509.CertPool, error) {
 	certPool := x509.NewCertPool()

 	for _, CAFile := range CAFiles {
 		pemByte, err := ioutil.ReadFile(CAFile)
 		if err != nil {
 			return nil, err
 		}

 		for {
 			var block *pem.Block
 			block, pemByte = pem.Decode(pemByte)
 			if block == nil {
 				break
 			}
 			cert, err := x509.ParseCertificate(block.Bytes)
 			if err != nil {
 				return nil, err
 			}
 			certPool.AddCert(cert)
 		}
 	}

 	return certPool, nil
 }

 // NewCert generates TLS cert by using the given cert,key and parse function.
 func NewCert(certfile, keyfile string, parseFunc func([]byte, []byte) (tls.Certificate, error)) (*tls.Certificate, error) {
 	cert, err := ioutil.ReadFile(certfile)
 	if err != nil {
 		return nil, err
 	}

 	key, err := ioutil.ReadFile(keyfile)
 	if err != nil {
 		return nil, err
 	}

 	if parseFunc == nil {
 		parseFunc = tls.X509KeyPair
 	}

 	tlsCert, err := parseFunc(cert, key)
 	if err != nil {
 		return nil, err
 	}
 	return &tlsCert, nil
 }
	// Copyright 2016 The etcd Authors
	//
	// Licensed under the Apache License, Version 2.0 (the "License");
	// you may not use this file except in compliance with the License.
	// You may obtain a copy of the License at
	//
	// http://www.apache.org/licenses/LICENSE-2.0
	//
	// Unless required by applicable law or agreed to in writing, software
	// distributed under the License is distributed on an "AS IS" BASIS,
	// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
	// See the License for the specific language governing permissions and
	// limitations under the License.

	package tlsutil

	import (
	"crypto/tls"
	"crypto/x509"
	"encoding/pem"
	"io/ioutil"
	)

	// NewCertPool creates x509 certPool with provided CA files.
	func NewCertPool(CAFiles []string) (*x509.CertPool, error) {
	certPool := x509.NewCertPool()

	for _, CAFile := range CAFiles {
	pemByte, err := ioutil.ReadFile(CAFile)
	if err != nil {
	return nil, err
	}

	for {
	var block *pem.Block
	block, pemByte = pem.Decode(pemByte)
	if block == nil {
	break
	}
	cert, err := x509.ParseCertificate(block.Bytes)
	if err != nil {
	return nil, err
	}
	certPool.AddCert(cert)
	}
	}

	return certPool, nil
	}

	// NewCert generates TLS cert by using the given cert,key and parse function.
	func NewCert(certfile, keyfile string, parseFunc func([]byte, []byte) (tls.Certificate, error)) (*tls.Certificate, error) {
	cert, err := ioutil.ReadFile(certfile)
	if err != nil {
	return nil, err
	}

	key, err := ioutil.ReadFile(keyfile)
	if err != nil {
	return nil, err
	}

	if parseFunc == nil {
	parseFunc = tls.X509KeyPair
	}

	tlsCert, err := parseFunc(cert, key)
	if err != nil {
	return nil, err
	}
	return &tlsCert, nil
	}