caddytls: Remove PreferServerCipherSuites

It has been deprecated by Go
This commit is contained in:
Matthew Holt 2022-07-28 14:50:51 -06:00
parent ea8df6ff11
commit 1bdd451913
No known key found for this signature in database
GPG key ID: 2A349DD577D586A5

View file

@ -173,7 +173,6 @@ func (p *ConnectionPolicy) buildStandardTLSConfig(ctx caddy.Context) error {
// fill in a default config at the end if they are still unset // fill in a default config at the end if they are still unset
cfg := &tls.Config{ cfg := &tls.Config{
NextProtos: p.ALPN, NextProtos: p.ALPN,
PreferServerCipherSuites: true,
GetCertificate: func(hello *tls.ClientHelloInfo) (*tls.Certificate, error) { GetCertificate: func(hello *tls.ClientHelloInfo) (*tls.Certificate, error) {
// TODO: I don't love how this works: we pre-build certmagic configs // TODO: I don't love how this works: we pre-build certmagic configs
// so that handshakes are faster. Unfortunately, certmagic configs are // so that handshakes are faster. Unfortunately, certmagic configs are
@ -475,8 +474,6 @@ func setDefaultTLSParams(cfg *tls.Config) {
if cfg.MaxVersion == 0 { if cfg.MaxVersion == 0 {
cfg.MaxVersion = tls.VersionTLS13 cfg.MaxVersion = tls.VersionTLS13
} }
cfg.PreferServerCipherSuites = true
} }
// LeafCertClientAuth verifies the client's leaf certificate. // LeafCertClientAuth verifies the client's leaf certificate.