summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorBrad Fitzpatrick <bradfitz@golang.org>2019-10-10 15:52:04 +0000
committerBrad Fitzpatrick <bradfitz@golang.org>2019-11-08 17:45:45 +0000
commit380dde419d290c41960e262a7fbcbc059d70c4e3 (patch)
tree763096c6cac5c498b4c849ea1d05b5cdccc46181
parent7e6e90b9ea8824b29cbeee76d03ef838c9187418 (diff)
downloadnet-380dde419d290c41960e262a7fbcbc059d70c4e3.tar.xz
http2: make CipherSuites validation error more verbose
Fixes golang/go#34776 Change-Id: Ib76e687780781d9cc59346f722d0ea4ec033ce77 Reviewed-on: https://go-review.googlesource.com/c/net/+/200317 Reviewed-by: Bryan C. Mills <bcmills@google.com>
-rw-r--r--http2/server.go2
1 files changed, 1 insertions, 1 deletions
diff --git a/http2/server.go b/http2/server.go
index d2ba820..de31d72 100644
--- a/http2/server.go
+++ b/http2/server.go
@@ -252,7 +252,7 @@ func ConfigureServer(s *http.Server, conf *Server) error {
}
}
if !haveRequired {
- return fmt.Errorf("http2: TLSConfig.CipherSuites is missing an HTTP/2-required AES_128_GCM_SHA256 cipher.")
+ return fmt.Errorf("http2: TLSConfig.CipherSuites is missing an HTTP/2-required AES_128_GCM_SHA256 cipher (need at least one of TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 or TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256).")
}
}