TrueCloudLab/distribution
14
0
Fork 3
Code Issues 2 Pull requests Projects Releases 2 Packages Wiki Activity Actions
distribution/registry
History
David Luu cc341b0110 Added flag for user configurable cipher suites 
Configuration of list of cipher suites allows a user to disable use
of weak ciphers or continue to support them for legacy usage if they
so choose.

List of available cipher suites at:
https://golang.org/pkg/crypto/tls/#pkg-constants

Default cipher suites have been updated to:
- TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
- TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
- TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305
- TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305
- TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
- TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
- TLS_AES_128_GCM_SHA256
- TLS_CHACHA20_POLY1305_SHA256
- TLS_AES_256_GCM_SHA384

MinimumTLS has also been updated to include TLS 1.3 as an option
and now defaults to TLS 1.2 since 1.0 and 1.1 have been deprecated.

Signed-off-by: David Luu <david@davidluu.info>
2021-03-23 18:42:12 +08:00
..
api Enable struct check 2018-08-06 13:55:43 -07:00
auth default autoredirect to false 2019-01-04 13:47:17 -08:00
client Remove empty Content-Type header 2020-11-16 11:15:10 +01:00
handlers Merge pull request #2711 from davidswu/autoredirect 2018-11-27 15:48:25 -08:00
listener [Server] Listen and serve on a unix socket 2015-05-11 16:00:14 +03:00
middleware context: remove definition of Context 2017-08-11 15:53:31 -07:00
proxy typo fix from existant to existent 2018-09-13 19:37:13 +08:00
storage close the io.ReadCloser from storage driver 2021-02-23 18:48:00 +08:00
doc.go Move initialization code from main.go to the registry package 2015-09-09 14:39:31 -07:00
registry.go Added flag for user configurable cipher suites 2021-03-23 18:42:12 +08:00
registry_test.go Added flag for user configurable cipher suites 2021-03-23 18:42:12 +08:00
root.go add possibility to clean untagged manifests 2018-01-05 12:20:01 +02:00