Page MenuHomeFreeBSD

Remove support for SSLv3 from fetch(3)
AcceptedPublic

Authored by jkim on Thu, May 21, 9:44 PM.

Details

Reviewers
des
cem
bjk
emaste
philip
Group Reviewers
manpages
Summary

We want to disable SSLv3 support from FreeBSD 13. Please see D24945.

Diff Detail

Repository
rS FreeBSD src repository
Lint
Lint Skipped
Unit
Unit Tests Skipped
Build Status
Buildable 31223

Event Timeline

jkim created this revision.Thu, May 21, 9:44 PM
jkim requested review of this revision.Thu, May 21, 9:44 PM
cem accepted this revision.Thu, May 21, 9:48 PM
cem added a subscriber: cem.

Maybe TLS 1.0/1.1 should switch to being opt-in, like SSL2/3 before? Not a requirement for this change.

This revision is now accepted and ready to land.Thu, May 21, 9:48 PM
bjk accepted this revision.Thu, May 21, 9:54 PM
bjk added a subscriber: bjk.

I agree with Conrad (but it should be a separate review); TLS 1.0 and 1.1's days are numbered, and I should really get around to progressing https://tools.ietf.org/html/draft-ietf-tls-oldversions-deprecate-06

emaste accepted this revision.Thu, May 21, 10:08 PM
philip accepted this revision.Fri, May 22, 3:30 AM