Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Cleanup OpenSSL implementation #941

Merged
merged 2 commits into from
Oct 17, 2022
Merged

Cleanup OpenSSL implementation #941

merged 2 commits into from
Oct 17, 2022

Conversation

quinnj
Copy link
Member

@quinnj quinnj commented Oct 17, 2022

Fixes #937.

There's a corresponding OpenSSL PR that fixes the actual verification bug, but I noticed some cleanup needed along the way.

Notably:

  • Fix issue if you were using OpenSSL w/ a proxy, we would try to do the proxy upgrade still using MbedTLS
  • Create a default global OpenSSL.SSLContext that gets reused for every individual connection (as intended by the library)

@quinnj
Cleanup OpenSSL implementation
a08aa6d 
Fixes #937.

There's a corresponding [OpenSSL PR](JuliaWeb/OpenSSL.jl#5)
that fixes the actual verification bug, but I noticed some cleanup needed along the way.

Notably:
  * Fix issue if you were using OpenSSL w/ a proxy, we would try to do the proxy upgrade
    still using MbedTLS
  * Create a default global `OpenSSL.SSLContext` that gets reused for every individual
    connection (as intended by the library)
@quinnj
bump OpenSSL compat
637f434
@quinnj quinnj merged commit a9dab42 into master Oct 17, 2022
@quinnj quinnj deleted the jq/openssl_cleanup branch October 17, 2022 20:14
gustafsson added a commit to gustafsson/HTTP.jl that referenced this pull request Oct 18, 2022
@gustafsson
connectionlayer: sslupgrade(socket_type_tls) fixup (JuliaWeb#941)
868bdfd 
The sockettype for ConnectionPool.sslupgrade should depend on target_url 
rather than url. These are not necessarily on the same schema. I.e if 
"https_proxy=http://..."
quinnj pushed a commit that referenced this pull request Oct 18, 2022
@gustafsson
connectionlayer: sslupgrade(socket_type_tls) fixup (#941) (#943)
447533a 
The sockettype for ConnectionPool.sslupgrade should depend on target_url 
rather than url. These are not necessarily on the same schema. I.e if 
"https_proxy=http://..."
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

using OpenSSL disables certificate checks by default?
1 participant
@quinnj