Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Adding TLS negotiation support for older versions of .NET #254

Merged
merged 2 commits into from
May 10, 2018
Merged

Adding TLS negotiation support for older versions of .NET #254

merged 2 commits into from
May 10, 2018

Conversation

andy-dufour
Copy link
Contributor

This should allow older verisons of .NET that are on operating systems forced to negotiate TLS 1.2 to successfully download our software using mixlib-install.

Corrects #253

@andy-dufour andy-dufour requested a review from a team as a code owner April 17, 2018 15:47
@andy-dufour
Copy link
Contributor Author

@tas50 @thommay Could I get someone to take a look at this one? I don't think the change is responsible for Travis failing, but I stand to be corrected ;)

@andy-dufour
Copy link
Contributor Author

Pinged the wrong people! @schisamo can you help find someone to review this?

@stuartpreston
Copy link

@andy-dufour I'm testing this out on a couple of platforms and then should be in a position to approve! Stand by!

stuartpreston
stuartpreston approved these changes May 1, 2018
View reviewed changes
Copy link

@stuartpreston stuartpreston left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Works on a stock Windows 7 and Windows 2008 R2 machine, pre WMF 4.0.

@jaymalasinha jaymalasinha requested a review from rhass May 8, 2018 16:02
rhass
rhass suggested changes May 8, 2018
View reviewed changes
lib/mixlib/install/generator/powershell/scripts/helpers.ps1.erb Outdated
@@ -1,4 +1,5 @@
[Console]::OutputEncoding = New-Object -typename System.Text.ASCIIEncoding
[System.Net.ServicePointManager]::SecurityProtocol = [System.Net.SecurityProtocolType]'Ssl3,Tls,Tls11,Tls12'
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I am not sure if older versions of Windows natively support TLS 1.2 or not... but if they do, it should be the only TLS version we use. At the very least we should disable SSLv3, and possibly TLS 1.0.

andy-dufour added 2 commits May 10, 2018 19:16
@schisamo schisamo merged commit 351ca20 into chef:master May 10, 2018
@andy-dufour andy-dufour mentioned this pull request May 11, 2018
Closed
@tas50 tas50 added Expeditor: Bump Version Minor Used by github.minor_bump_labels to bump the Minor version number. and removed Expeditor: Bump Minor Version labels Jan 2, 2019
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@schisamo schisamo schisamo approved these changes

@rhass rhass rhass approved these changes

@stuartpreston stuartpreston stuartpreston approved these changes

Assignees
No one assigned
Labels
Expeditor: Bump Version Minor Used by github.minor_bump_labels to bump the Minor version number.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@andy-dufour @stuartpreston @schisamo @rhass @tas50