Mercurial Mercurial > prosody > prosody / changeset
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
core.certmanager: Set a default curveslist [sic], fixes #879, #943, #951 if used along with luasec 0.7 and openssl 1.1
authorKim Alvefur <zash@zash.se>
Wed, 27 Sep 2017 15:45:07 +0200
changeset 8282 92cddfe65003
parent 8281 a349299038ff
child 8283 9ca0e3128b62
core.certmanager: Set a default curveslist [sic], fixes #879, #943, #951 if used along with luasec 0.7 and openssl 1.1
core/certmanager.lua file | annotate | diff | comparison | revisions 
--- a/core/certmanager.lua	Wed Sep 27 15:38:46 2017 +0200
+++ b/core/certmanager.lua	Wed Sep 27 15:45:07 2017 +0200
@@ -107,6 +107,12 @@
 	};
 	verifyext = { "lsec_continue", "lsec_ignore_purpose" };
 	curve = "secp384r1";
+	curveslist = {
+		"X25519",
+		"P-384",
+		"P-256",
+		"P-521",
+	};
 	ciphers = {      -- Enabled ciphers in order of preference:
 		"HIGH+kEDH",   -- Ephemeral Diffie-Hellman key exchange, if a 'dhparam' file is set
 		"HIGH+kEECDH", -- Ephemeral Elliptic curve Diffie-Hellman key exchange
prosody