github-mirror/caddy
2
0
Fork 0
mirror of https://github.com/caddyserver/caddy.git synced 2025-05-31 16:39:06 +08:00
Code Issues Actions Packages Projects Releases Wiki Activity

Created app package, and better TLS compatibility with HTTP/2

Browse Source
This commit is contained in:
Matthew Holt
2015-05-21 00:06:53 -06:00
parent ea9607302a
commit 5f72b7438a
6 changed files with 242 additions and 135 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
server/server.go
View File

@ -132,17 +132,11 @@ func ListenAndServeTLSWithSNI(srv *http.Server, tlsConfigs []TLSConfig) error {
}
config.BuildNameToCertificate()
// Here we change some crypto/tls defaults based on caddyfile
// If no config provided, we set defaults focused in security
// Add a session cache LRU algorithm
// Customize our TLS configuration
config.ClientSessionCache = tls.NewLRUClientSessionCache(tlsConfigs[0].CacheSize)
config.MinVersion = tlsConfigs[0].ProtocolMinVersion
config.MaxVersion = tlsConfigs[0].ProtocolMaxVersion
config.CipherSuites = tlsConfigs[0].Ciphers
// Server ciphers have priority over client ciphers
config.PreferServerCipherSuites = true
conn, err := net.Listen("tcp", addr)