github.com/v2fly/v2ray-core/v4@v4.45.2/transport/internet/tls/config.proto (about)

     1  syntax = "proto3";
     2  
     3  package v2ray.core.transport.internet.tls;
     4  option csharp_namespace = "V2Ray.Core.Transport.Internet.Tls";
     5  option go_package = "github.com/v2fly/v2ray-core/v4/transport/internet/tls";
     6  option java_package = "com.v2ray.core.transport.internet.tls";
     7  option java_multiple_files = true;
     8  
     9  message Certificate {
    10    // TLS certificate in x509 format.
    11    bytes Certificate = 1;
    12  
    13    // TLS key in x509 format.
    14    bytes Key = 2;
    15  
    16    enum Usage {
    17      ENCIPHERMENT = 0;
    18      AUTHORITY_VERIFY = 1;
    19      AUTHORITY_ISSUE = 2;
    20      AUTHORITY_VERIFY_CLIENT = 3;
    21    }
    22  
    23    Usage usage = 3;
    24  }
    25  
    26  message Config {
    27    // Whether or not to allow self-signed certificates.
    28    bool allow_insecure = 1;
    29  
    30    // List of certificates to be served on server.
    31    repeated Certificate certificate = 2;
    32  
    33    // Override server name.
    34    string server_name = 3;
    35  
    36    // Lists of string as ALPN values.
    37    repeated string next_protocol = 4;
    38  
    39    // Whether or not to enable session (ticket) resumption.
    40    bool enable_session_resumption = 5;
    41  
    42    // If true, root certificates on the system will not be loaded for
    43    // verification.
    44    bool disable_system_root = 6;
    45  
    46    /* @Document A pinned certificate chain sha256 hash.
    47       @Document If the server's hash does not match this value, the connection will be aborted.
    48       @Document This value replace allow_insecure.
    49       @Critical
    50    */
    51    repeated bytes pinned_peer_certificate_chain_sha256 = 7;
    52  
    53    // If true, the client is required to present a certificate.
    54    bool verify_client_certificate = 8;
    55  }