TyleoDvDelaware3217/GoDoxy
1
0
Fork 0
mirror of https://github.com/yusing/godoxy.git synced 2025-06-01 01:22:34 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions 2

tweak: use ecdsa p-256 for autocert

Browse source
This commit is contained in:
yusing 2025-05-24 07:29:11 +08:00
parent 1cf18657b6
commit 6a5cd1266b
1 changed files with 2 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
internal/autocert/config.go
View file

@ -100,8 +100,7 @@ func (cfg *Config) GetLegoConfig() (*User, *lego.Config, gperr.Error) {
if cfg.Provider != ProviderLocal && cfg.Provider != ProviderPseudo {
if privKey, err = cfg.LoadACMEKey(); err != nil {
log.Info().Err(err).Msg("load ACME private key failed")
log.Info().Msg("generate new ACME private key")
log.Info().Err(err).Msg("failed to load ACME private key, generating a now one")
privKey, err = ecdsa.GenerateKey(elliptic.P256(), rand.Reader)
if err != nil {
return nil, nil, gperr.New("generate ACME private key").With(err)
@ -118,7 +117,7 @@ func (cfg *Config) GetLegoConfig() (*User, *lego.Config, gperr.Error) {
}
legoCfg := lego.NewConfig(user)
legoCfg.Certificate.KeyType = certcrypto.RSA2048
legoCfg.Certificate.KeyType = certcrypto.EC256
return user, legoCfg, nil
}