https://bugs.openldap.org/show_bug.cgi?id=9521
Issue ID: 9521 Summary: libldap doesn't configure TLS1.3 ciphersuites for OpenSSL Product: OpenLDAP Version: 2.4.58 Hardware: All OS: All Status: UNCONFIRMED Severity: normal Priority: --- Component: libraries Assignee: bugs@openldap.org Reporter: hyc@openldap.org Target Milestone: ---
OpenSSL 1.1 uses a separate API for configuring TLSv1.3 cipher suites. The current code in libldap doesn't call this API so those suites are always left at their compiled-in default.
https://bugs.openldap.org/show_bug.cgi?id=9521
Howard Chu hyc@openldap.org changed:
What |Removed |Added ---------------------------------------------------------------------------- Resolution|--- |TEST Status|UNCONFIRMED |RESOLVED
--- Comment #1 from Howard Chu hyc@openldap.org --- fixed in master
https://bugs.openldap.org/show_bug.cgi?id=9521
Quanah Gibson-Mount quanah@openldap.org changed:
What |Removed |Added ---------------------------------------------------------------------------- Target Milestone|--- |2.4.59
--- Comment #2 from Quanah Gibson-Mount quanah@openldap.org --- Commits: • b72bce24 by Howard Chu at 2021-04-09T15:59:22+01:00 ITS#9521 Set TLSv1.3 cipher suites for OpenSSL 1.1
https://bugs.openldap.org/show_bug.cgi?id=9521
Quanah Gibson-Mount quanah@openldap.org changed:
What |Removed |Added ---------------------------------------------------------------------------- See Also| |https://bugs.openldap.org/s | |how_bug.cgi?id=9518
https://bugs.openldap.org/show_bug.cgi?id=9521
--- Comment #3 from Quanah Gibson-Mount quanah@openldap.org --- RE24:
Commits: • a48267c2 by Howard Chu at 2021-04-09T18:37:15+00:00 ITS#9521 Set TLSv1.3 cipher suites for OpenSSL 1.1.1
https://bugs.openldap.org/show_bug.cgi?id=9521
Quanah Gibson-Mount quanah@openldap.org changed:
What |Removed |Added ---------------------------------------------------------------------------- Status|RESOLVED |VERIFIED Resolution|TEST |FIXED
-
openldap-its@openldap.org