mirrors/utls
1
0
Fork 0
mirror of https://github.com/refraction-networking/utls.git synced 2025-04-05 13:07:36 +03:00
Code Issues Projects Releases Packages Wiki Activity

[dev.boringcrypto] all: merge master into dev.boringcrypto

Browse source 
Change-Id: I61d6a6d4959fdea8339b9d666385bf6b4ed49d03
This commit is contained in:
Dmitri Shuralyov 2020-07-09 21:23:49 -04:00
commit 48caaacb3c
5 changed files with 12 additions and 12 deletions
Download patch file Download diff file Expand all files Collapse all files

12
common.go
View file

@ -600,12 +600,12 @@ type Config struct {
// by the policy in ClientAuth. // by the policy in ClientAuth.
ClientCAs *x509.CertPool ClientCAs *x509.CertPool
// InsecureSkipVerify controls whether a client verifies the // InsecureSkipVerify controls whether a client verifies the server's
// server's certificate chain and host name. // certificate chain and host name. If InsecureSkipVerify is true, crypto/tls
// If InsecureSkipVerify is true, TLS accepts any certificate // accepts any certificate presented by the server and any host name in that
// presented by the server and any host name in that certificate. // certificate. In this mode, TLS is susceptible to machine-in-the-middle
// In this mode, TLS is susceptible to machine-in-the-middle attacks. // attacks unless custom verification is used. This should be used only for
// This should be used only for testing. // testing or in combination with VerifyConnection or VerifyPeerCertificate.
InsecureSkipVerify bool InsecureSkipVerify bool
// CipherSuites is a list of supported cipher suites for TLS versions up to // CipherSuites is a list of supported cipher suites for TLS versions up to