Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Provide TLS 1.3 support for 3.5. #15436

Closed
ramses opened this issue Mar 9, 2023 · 4 comments · Fixed by #15553
Closed

Provide TLS 1.3 support for 3.5. #15436

ramses opened this issue Mar 9, 2023 · 4 comments · Fixed by #15553
Assignees
@jmhbnz
Labels
help wanted type/feature

Comments

@ramses
Copy link

ramses commented Mar 9, 2023
edited
Loading

What would you like to be added?

TLS 1.3 support was (re-)added to the main branch in #15156

... thus resolving #13506

However, organizations running etcd 3.4 and 3.5 are starting to require TLS 1.3 for security compliance.

The "3.4 version" analogue issue: #15437

Why is this needed?

As stated above, organizations running etcd 3.4 and 3.5 are starting to require TLS 1.3 for security compliance. Also, waiting for etcd 3.6 is not compatible with their timelines.
@serathius
Copy link
Member

LGTM
cc @ptabor @spzala @ahrtr

@ramses ramses changed the title Provide TLS 1.3 support for 3.5 and 3.4 branches Provide TLS 1.3 support for 3.5. Mar 9, 2023
@ramses ramses mentioned this issue Mar 9, 2023
Closed
@ahrtr
Copy link
Member

ahrtr commented Mar 9, 2023

Makes sense to me. Please feel free to deliver a PR, thx

@jmhbnz jmhbnz mentioned this issue Mar 14, 2023
Merged
@jmhbnz
Copy link
Member

jmhbnz commented Mar 16, 2023

Initial backport pr merged and docs pr open here etcd-io/website#650.

I will raise pr for 3.5.8 changelog shortly, quick question @ahrtr the change touches several aspects of the codebase, do you want just one section updated in the changelog, or under all impacted?

/assign
/remove help

@ahrtr
Copy link
Member

ahrtr commented Mar 16, 2023

I will raise pr for 3.5.8 changelog shortly, quick question @ahrtr the change touches several aspects of the codebase, do you want just one section updated in the changelog, or under all impacted?

NO strong opinion on this. Only adding changelog item for etcdserver seems OK to me. Please backport the PR to 3.4 as well if you have bandwitdh, and after changelog for both 3.5 and 3.4 afterwards. thx.

@jmhbnz jmhbnz mentioned this issue Mar 23, 2023
Merged
@serathius serathius mentioned this issue Mar 30, 2023
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@jmhbnz jmhbnz

Labels
help wanted type/feature
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

CHANGELOG: Add new tls configuration options jmhbnz/etcd
4 participants
@ramses @serathius @ahrtr @jmhbnz