From 366be283256fd944cc13fb260f4176e957edcc7d Mon Sep 17 00:00:00 2001
From: NI <nirui@gmx.com>
Date: Thu, 23 Dec 2021 12:34:21 +0800
Subject: [PATCH] Revert 5d4c3873fdbf369f4d2f7fc4528f25d5ff4631cd due to issue
 #70 on GitHub. Lock the min TLS version to 1.2 instead

---
 application/server/server.go | 7 +------
 1 file changed, 1 insertion(+), 6 deletions(-)

diff --git a/application/server/server.go b/application/server/server.go
index f3678c10..38f7ffa2 100644
--- a/application/server/server.go
+++ b/application/server/server.go
@@ -88,15 +88,10 @@ func (s Server) Serve(
 	ssCfg := serverCfg.WithDefault()
 	l := s.logger.Context(
 		"Server (%s:%d)", ssCfg.ListenInterface, ssCfg.ListenPort)
-	cipherSuites := tls.CipherSuites() // only return secure ciphers
-	selectedCipherSuites := make([]uint16, 0, len(cipherSuites))
-	for _, s := range cipherSuites {
-		selectedCipherSuites = append(selectedCipherSuites, s.ID)
-	}
 	ss := &Serving{
 		server: http.Server{
 			Handler:           handlerBuilder(commonCfg, ssCfg, l),
-			TLSConfig:         &tls.Config{CipherSuites: selectedCipherSuites},
+			TLSConfig:         &tls.Config{MinVersion: tls.VersionTLS12},
 			ReadTimeout:       ssCfg.ReadTimeout,
 			ReadHeaderTimeout: ssCfg.InitialTimeout,
 			WriteTimeout:      ssCfg.WriteTimeout,