Grasscutters/mitmproxy
3
0
Fork 0
mirror of https://github.com/Grasscutters/mitmproxy.git synced 2025-02-02 08:15:22 +00:00
Code Issues Projects Releases Wiki Activity

reduce leaf certificate lifetime to one year

Browse Source 
Safari will, later this year, no longer accept new HTTPS certificates that expire more than 13 months from their creation date.
This commit is contained in:
Maximilian Hils 2020-04-08 08:04:44 +02:00 committed by GitHub
parent fbe296aaba
commit ab79bb0313
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
mitmproxy/certs.py
View File

@ -15,8 +15,8 @@ import OpenSSL
from mitmproxy.coretypes import serializable from mitmproxy.coretypes import serializable
# Default expiry must not be too long: https://github.com/mitmproxy/mitmproxy/issues/815 # Default expiry must not be too long: https://github.com/mitmproxy/mitmproxy/issues/815
DEFAULT_EXP = 94608000 # = 24 * 60 * 60 * 365 * 3 DEFAULT_EXP = 94608000 # = 60 * 60 * 24 * 365 * 3 = 3 years
DEFAULT_EXP_DUMMY_CERT = 63072000 # = 2 years DEFAULT_EXP_DUMMY_CERT = 31536000 # = 60 * 60 * 24 * 365 = 1 year
# Generated with "openssl dhparam". It's too slow to generate this on startup. # Generated with "openssl dhparam". It's too slow to generate this on startup.
DEFAULT_DHPARAM = b""" DEFAULT_DHPARAM = b"""