serv/caddy
1
0
Fork 0
mirror of https://github.com/caddyserver/caddy.git synced 2024-12-26 13:43:47 +03:00
Code Issues Projects Releases Packages Wiki Activity Actions

caddytls: Remove PreferServerCipherSuites

Browse source 
It has been deprecated by Go
This commit is contained in:
Matthew Holt 2022-07-28 14:50:51 -06:00
parent ea8df6ff11
commit 1bdd451913
No known key found for this signature in database
GPG key ID: 2A349DD577D586A5
1 changed files with 1 additions and 4 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
modules/caddytls/connpolicy.go
View file

@ -172,8 +172,7 @@ func (p *ConnectionPolicy) buildStandardTLSConfig(ctx caddy.Context) error {
// so the user-provided config can fill them in; then we will
// fill in a default config at the end if they are still unset
cfg := &tls.Config{
NextProtos: p.ALPN,
PreferServerCipherSuites: true,
NextProtos: p.ALPN,
GetCertificate: func(hello *tls.ClientHelloInfo) (*tls.Certificate, error) {
// TODO: I don't love how this works: we pre-build certmagic configs
// so that handshakes are faster. Unfortunately, certmagic configs are
@ -475,8 +474,6 @@ func setDefaultTLSParams(cfg *tls.Config) {
if cfg.MaxVersion == 0 {
cfg.MaxVersion = tls.VersionTLS13
}
cfg.PreferServerCipherSuites = true
}
// LeafCertClientAuth verifies the client's leaf certificate.