Matthew Holt 4a07a5d41e caddyfile: tls: Ensure there is always a catch-all conn policy (#3005) ... If user provides their own certs or makes any hostname-specific TLS connection policy, it means that no TLS connection would be served for any other hostnames, even though you'd expect that TLS is enabled for them, too. So now we append a catch-all conn policy if none exist, which allows all ClientHellos to be matched and served. We also fix the consolidation of automation policies, which previously gobbled up automation policies without hosts in favor of automation policies with hosts. Instead of a host-specific policy eating up an identical catch-all policy, the catch-all policy eats up the identical host-specific policy, ensuring that the policy is applied to all hosts which need it. See also: https://caddy.community/t/v2-automatic-https-certificate-errors/6847/9?u=matt		2020-02-06 13:00:41 -07:00
..
addresses_fuzz.go	fuzz: introduce continuous fuzzing for Caddy (#2723)	2019-10-25 18:52:16 -06:00
addresses_test.go	httpcaddyfile: Fix address parsing; don't infer port at parse-time	2020-01-19 11:51:17 -07:00
addresses.go	httpcaddyfile: Fix address parsing; don't infer port at parse-time	2020-01-19 11:51:17 -07:00
builtins.go	caddyfile: tls: Tag manual certificates (#2588)	2020-02-06 12:55:26 -07:00
directives.go	httpcaddyfile: Rename 'headers' directive to 'header'	2020-01-22 09:33:53 -07:00
httptype_test.go	httpcaddyfile: Fix nested blocks; add handle directive; refactor	2020-01-16 17:08:52 -07:00
httptype.go	caddyfile: tls: Ensure there is always a catch-all conn policy (#3005)	2020-02-06 13:00:41 -07:00
options.go	httpcaddyfile: Replace 'handler_order' option with 'order'	2020-01-16 12:09:54 -07:00
parser_test.go	v2: Implement Caddyfile enhancements (breaking changes) (#2960)	2020-01-09 14:00:32 -07:00