changeset 1891:a43ed0d28918

mod_tls_policy: Change the FS shortcut to match on ciphers with (EC)DHE (produces nicer stream error)
author Kim Alvefur <zash@zash.se>
date Fri, 02 Oct 2015 03:53:34 +0200
parents 2eac15ab605e
children 981143617dcf
files mod_tls_policy/mod_tls_policy.lua
diffstat 1 files changed, 1 insertions(+), 1 deletions(-) [+]
line wrap: on
line diff
--- a/mod_tls_policy/mod_tls_policy.lua	Thu Oct 01 20:59:35 2015 +0200
+++ b/mod_tls_policy/mod_tls_policy.lua	Fri Oct 02 03:53:34 2015 +0200
@@ -4,7 +4,7 @@
 local function hook(event_name, typ, policy)
 	if not policy then return end
 	if policy == "FS" then
-		policy = { key = "DH$" };
+		policy = { cipher = "^E?C?DHE%-" };
 	elseif type(policy) == "string" then
 		policy = { cipher = policy };
 	end