vbump to v2.7.5HEAD caddy-cgi

author: Tom Barrett <tom@tombarrett.xyz> 2023-11-01 17:57:48 +0100
committer: Tom Barrett <tom@tombarrett.xyz> 2023-11-01 18:11:33 +0100
commit: 240c3d1338415e5d82ef7ca0e52c4284be6441bd (patch)
tree: 4b0ee5d208c2cdffa78d65f1b0abe0ec85f15652 /modules/caddytls/cf.go
parent: 73e78ab226f21e6c6c68961af88c4ab9c746f4f4 (diff)
parent: 0e204b730aa2b1fa0835336b1117eff8c420f713 (diff)
1 files changed, 24 insertions, 0 deletions
diff --git a/modules/caddytls/cf.go b/modules/caddytls/cf.go
new file mode 100644
index 0000000..e61a59c
--- /dev/null
+++ b/modules/caddytls/cf.go
@@ -0,0 +1,24 @@
+//go:build cfgo
+
+package caddytls
+
+// This file adds support for X25519Kyber768Draft00, a post-quantum
+// key agreement that is currently being rolled out by Chrome [1]
+// and Cloudflare [2,3]. For more context, see the PR [4].
+//
+// [1] https://blog.chromium.org/2023/08/protecting-chrome-traffic-with-hybrid.html
+// [2] https://blog.cloudflare.com/post-quantum-for-all/
+// [3] https://blog.cloudflare.com/post-quantum-to-origins/
+// [4] https://github.com/caddyserver/caddy/pull/5852
+
+import (
+	"crypto/tls"
+)
+
+func init() {
+	SupportedCurves["X25519Kyber768Draft00"] = tls.X25519Kyber768Draft00
+	defaultCurves = append(
+		[]tls.CurveID{tls.X25519Kyber768Draft00},
+		defaultCurves...,
+	)
+}
author	Tom Barrett <tom@tombarrett.xyz>	2023-11-01 17:57:48 +0100
committer	Tom Barrett <tom@tombarrett.xyz>	2023-11-01 18:11:33 +0100
commit	240c3d1338415e5d82ef7ca0e52c4284be6441bd (patch)
tree	4b0ee5d208c2cdffa78d65f1b0abe0ec85f15652 /modules/caddytls/cf.go
parent	73e78ab226f21e6c6c68961af88c4ab9c746f4f4 (diff)
parent	0e204b730aa2b1fa0835336b1117eff8c420f713 (diff)