mirror of
https://github.com/minio/minio.git
synced 2024-12-25 06:35:56 -05:00
Add support of TLS session tickets with KES server (#14577)
Reduce overhead for communication between MinIO server and KES server.
This commit is contained in:
parent
61eb9d4e29
commit
b20ecc7b54
@ -27,6 +27,10 @@ import (
|
|||||||
"github.com/minio/kes"
|
"github.com/minio/kes"
|
||||||
)
|
)
|
||||||
|
|
||||||
|
const (
|
||||||
|
tlsClientSessionCacheSize = 100
|
||||||
|
)
|
||||||
|
|
||||||
// Config contains various KMS-related configuration
|
// Config contains various KMS-related configuration
|
||||||
// parameters - like KMS endpoints or authentication
|
// parameters - like KMS endpoints or authentication
|
||||||
// credentials.
|
// credentials.
|
||||||
@ -62,6 +66,7 @@ func NewWithConfig(config Config) (KMS, error) {
|
|||||||
MinVersion: tls.VersionTLS12,
|
MinVersion: tls.VersionTLS12,
|
||||||
Certificates: []tls.Certificate{config.Certificate},
|
Certificates: []tls.Certificate{config.Certificate},
|
||||||
RootCAs: config.RootCAs,
|
RootCAs: config.RootCAs,
|
||||||
|
ClientSessionCache: tls.NewLRUClientSessionCache(tlsClientSessionCacheSize),
|
||||||
})
|
})
|
||||||
client.Endpoints = endpoints
|
client.Endpoints = endpoints
|
||||||
return &kesClient{
|
return &kesClient{
|
||||||
|
Loading…
Reference in New Issue
Block a user