aboutsummaryrefslogtreecommitdiffhomepage
path: root/modules/caddytls/values.go
diff options
context:
space:
mode:
Diffstat (limited to 'modules/caddytls/values.go')
-rw-r--r--modules/caddytls/values.go5
1 files changed, 5 insertions, 0 deletions
diff --git a/modules/caddytls/values.go b/modules/caddytls/values.go
index 4e8c1adc2..20fe45ff8 100644
--- a/modules/caddytls/values.go
+++ b/modules/caddytls/values.go
@@ -108,6 +108,11 @@ var supportedCertKeyTypes = map[string]certmagic.KeyType{
// implementation exists (e.g. P256). The latter ones can be
// found here:
// https://github.com/golang/go/tree/master/src/crypto/elliptic
+//
+// Temporily we ignore these default, to take advantage of X25519Kyber768
+// in Go's defaults (X25519Kyber768, X25519, P-256, P-384, P-521), which
+// isn't exported. See https://github.com/caddyserver/caddy/issues/6540
+// nolint:unused
var defaultCurves = []tls.CurveID{
tls.X25519,
tls.CurveP256,
generated by cgit v1.2.3 (git 2.39.1) at 2024-12-26 14:51:36 +0000