[FIXED] TLS: default ciphers not set when tls enabled from command line #2167

kozlovic · 2021-04-29T20:57:47Z

If running the server with command lines:

nats-server --tlsverify --tlscert "cert.pem" --tlskey "key.pem"

the default ciphers would not be set, however, they would using this
equivalent config:

tls: {
   verify: true
   cert_file: "cert.pem"
   key_file: "key.pem"
}

Reported by @DavidSimner

Signed-off-by: Ivan Kozlovic ivan@synadia.com

@DavidSimner

If running the server with command lines: ``` nats-server --tlsverify --tlscert "cert.pem" --tlskey "key.pem" ``` the default ciphers would not be set, however, they would using this equivalent config: ``` tls: { verify: true cert_file: "cert.pem" key_file: "key.pem" } ``` Reported by @DavidSimner Signed-off-by: Ivan Kozlovic <ivan@synadia.com>

derekcollison

LGTM

kozlovic requested a review from derekcollison April 29, 2021 20:57

derekcollison approved these changes Apr 29, 2021

View reviewed changes

kozlovic merged commit 2fd8962 into master Apr 29, 2021

kozlovic deleted the fix_tls_cmdline_ciphers branch April 29, 2021 21:51

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[FIXED] TLS: default ciphers not set when tls enabled from command line #2167

[FIXED] TLS: default ciphers not set when tls enabled from command line #2167

kozlovic commented Apr 29, 2021

derekcollison left a comment

[FIXED] TLS: default ciphers not set when tls enabled from command line #2167

[FIXED] TLS: default ciphers not set when tls enabled from command line #2167

Conversation

kozlovic commented Apr 29, 2021

derekcollison left a comment

Choose a reason for hiding this comment