From 159d88e894d7a9ca2ac45a213b70dc402534b7b6 Mon Sep 17 00:00:00 2001
From: adnano <me@adnano.co>
Date: Fri, 5 Mar 2021 23:29:53 -0500
Subject: [PATCH] certificate.Store: Make 100 years the default duration

---
 certificate/store.go | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/certificate/store.go b/certificate/store.go
index f5847b4..7d51ec3 100644
--- a/certificate/store.go
+++ b/certificate/store.go
@@ -101,7 +101,7 @@ func (s *Store) write(scope string, cert tls.Certificate) error {
 // If no matching scope has been registered, Get returns an error.
 // Get generates new certificates as needed and rotates expired certificates.
 // It calls CreateCertificate to create a new certificate if it is not nil,
-// otherwise it creates certificates with a duration of 250 years.
+// otherwise it creates certificates with a duration of 100 years.
 //
 // Get is suitable for use in a gemini.Server's GetCertificate field.
 func (s *Store) Get(hostname string) (*tls.Certificate, error) {
@@ -173,7 +173,7 @@ func (s *Store) createCertificate(scope string) (tls.Certificate, error) {
 		Subject: pkix.Name{
 			CommonName: scope,
 		},
-		Duration: 250 * 365 * 24 * time.Hour,
+		Duration: 100 * 365 * 24 * time.Hour,
 	})
 }