projects
/
prosody.git
/ blobdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
raw
| inline |
side by side
certmanager: Limit certificate chain depth to 9
[prosody.git]
/
core
/
certmanager.lua
diff --git
a/core/certmanager.lua
b/core/certmanager.lua
index d92e5fc1dbdb65de020115390f98bc87ddf76681..9a0c3deb6d5457dda44db14883fb7a4c5f182bb4 100644
(file)
--- a/
core/certmanager.lua
+++ b/
core/certmanager.lua
@@
-53,6
+53,7
@@
local global_ssl_config = configmanager.get("*", "ssl");
-- Built-in defaults
local core_defaults = {
capath = "/etc/ssl/certs";
+ depth = 9;
protocol = "tlsv1+";
verify = (ssl_x509 and { "peer", "client_once", }) or "none";
options = {
projects / prosody.git / blobdiff