transport: include InsecureSkipVerify in TLSInfo

Some functions take a TLSInfo to generate a tls.Config and there was no way to force the InsecureSkipVerify flag.
etcd-io · Jul 18, 2017 · caae11e · caae11e
1 parent 9ca8572
commit caae11e
Showing 1 changed file with 8 additions and 6 deletions.
diff --git a/pkg/transport/listener.go b/pkg/transport/listener.go
@@ -56,12 +56,13 @@ func wrapTLS(addr, scheme string, tlsinfo *TLSInfo, l net.Listener) (net.Listene
 }
 
 type TLSInfo struct {
-	CertFile       string
-	KeyFile        string
-	CAFile         string
-	TrustedCAFile  string
-	ClientCertAuth bool
-	CRLFile        string
+	CertFile           string
+	KeyFile            string
+	CAFile             string
+	TrustedCAFile      string
+	ClientCertAuth     bool
+	CRLFile            string
+	InsecureSkipVerify bool
 
 	// ServerName ensures the cert matches the given host in case of discovery / virtual hosting
 	ServerName string
@@ -236,6 +237,7 @@ func (info TLSInfo) ClientConfig() (*tls.Config, error) {
 	} else {
 		cfg = &tls.Config{ServerName: info.ServerName}
 	}
+	cfg.InsecureSkipVerify = info.InsecureSkipVerify
 
 	CAFiles := info.cafiles()
 	if len(CAFiles) > 0 {