github-mirror/caddy
2
0
Fork 0
mirror of https://github.com/caddyserver/caddy.git synced 2025-05-29 23:25:50 +08:00
Code Issues Actions Packages Projects Releases Wiki Activity

caddytls: Update cipher suite names and curve names

Browse Source 
Now using IANA-compliant names and Go 1.14's CipherSuites() function so
we don't have to maintain our own mapping of currently-secure cipher
suites.
This commit is contained in:
Matthew Holt
2020-04-01 14:09:29 -06:00
parent 581f1defcb
commit ce3ca541d8
4 changed files with 33 additions and 40 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
modules/caddyhttp/reverseproxy/fastcgi/fastcgi.go
View File

@ -274,9 +274,9 @@ func (t Transport) buildEnv(r *http.Request) (map[string]string, error) {
env["SSL_PROTOCOL"] = v
}
// and pass the cipher suite in a manner compatible with apache's mod_ssl
for k, v := range caddytls.SupportedCipherSuites {
if v == r.TLS.CipherSuite {
env["SSL_CIPHER"] = k
for _, cs := range caddytls.SupportedCipherSuites() {
if cs.ID == r.TLS.CipherSuite {
env["SSL_CIPHER"] = cs.Name
break
}
}