Content-Length: 272260 | pFad | https://github.com/erlang/otp/pull/9001

6A ssl: Backport cert_auth exclusion option to pre TLS-1.3 by IngelaAndin · Pull Request #9001 · erlang/otp · GitHub
Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

ssl: Backport cert_auth exclusion option to pre TLS-1.3 #9001

Merged
merged 1 commit into from
Oct 31, 2024
Merged

ssl: Backport cert_auth exclusion option to pre TLS-1.3 #9001

merged 1 commit into from
Oct 31, 2024

Conversation

IngelaAndin
Copy link
Contributor

Backport certificate_authorities option to pre TLS-1.3 servers so that also they can choose to not send certificate authorities information in their certificate request.
This can be needed if pre-TLS-1.3 clients choose to be more strict about adhering to this information as required by TLS-1.3, when the TLS-1.3 extension, is used. So this gives the server the possibility to not send this information in case it has way to handle and verify client certificate chains that can not be determined to match this information at the client side.

@IngelaAndin IngelaAndin requested review from u3s and dgud and removed request for u3s October 29, 2024 09:00
@IngelaAndin IngelaAndin self-assigned this Oct 29, 2024
@IngelaAndin IngelaAndin added the team:PS Assigned to OTP team PS label Oct 29, 2024
@github-actions GitHub Actions
Copy link
Contributor

github-actions bot commented Oct 29, 2024
edited
Loading

CT Test Results

    2 files     66 suites   47m 36s ⏱️
  800 tests   755 ✅  45 💤 0 ❌
3 778 runs  2 983 ✅ 795 💤 0 ❌

Results for commit a09a14e.

♻️ This comment has been updated with latest results.

To speed up review, make sure that you have read Contributing to Erlang/OTP and that all checks pass.

See the TESTING and DEVELOPMENT HowTo guides for details about how to run test locally.

Artifacts

// Erlang/OTP Github Action Bot

@IngelaAndin IngelaAndin added the testing currently being tested, tag is used by OTP internal CI label Oct 29, 2024
u3s
u3s approved these changes Oct 30, 2024
View reviewed changes
lib/ssl/src/ssl.erl Outdated Show resolved Hide resolved
@IngelaAndin IngelaAndin force-pushed the ingela/ssl/TLS-1.2-cert_auths-cert-request/ERLERL-1147/OTP-19325 branch from 3174c08 to a09a14e Compare October 30, 2024 15:08
@IngelaAndin IngelaAndin merged commit bbac8ad into erlang:maint Oct 31, 2024
20 checks passed
garazdawi added a commit to garazdawi/otp that referenced this pull request Oct 31, 2024
@garazdawi
logger: Fix documentation equiv macro
b14849f 
closes erlang#9001
@garazdawi garazdawi mentioned this pull request Oct 31, 2024
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@u3s u3s u3s approved these changes

@dgud dgud dgud approved these changes

Assignees

@IngelaAndin IngelaAndin

Labels
team:PS Assigned to OTP team PS testing currently being tested, tag is used by OTP internal CI
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@IngelaAndin @dgud @u3s








ApplySandwichStrip

pFad - (p)hone/(F)rame/(a)nonymizer/(d)eclutterfier!      Saves Data!


--- a PPN by Garber Painting Akron. With Image Size Reduction included!

Fetched URL: https://github.com/erlang/otp/pull/9001

Alternative Proxies:

Alternative Proxy

pFad Proxy

pFad v3 Proxy

pFad v4 Proxy