Enable TLS 1.3 in gRPC core #22304

jiangtaoli2016 · 2020-03-11T15:25:34Z

Currently gRPC core uses TLS 1.2 by default.
We shall enable use of TLS 1.3.
Will also set TLS min version to 1.2 to avoid downgrade attack.

jiangtaoli2016 · 2020-03-11T15:28:54Z

@matthewstevenson88 @cesarghali

stale · 2020-05-06T03:23:45Z

This issue/PR has been automatically marked as stale because it has not had any update (including commits, comments, labels, milestones, etc) for 30 days. It will be closed automatically if no further update occurs in 7 day. Thank you for your contributions!

dilipnd · 2020-09-20T12:15:35Z

Could you please share the steps to force using TLS 1.3

jiangtaoli2016 · 2020-09-21T02:41:31Z

Currently, gRPC core can support TLS 1.2 and 1.3. There is no API exposed for user to choose yet. @ZhenLian is working expose that API in grpc/proposal#205. It will be available shortly.

jiangtaoli2016 added kind/enhancement area/core area/security priority/P2 labels Mar 11, 2020

jiangtaoli2016 assigned karthikravis and jiangtaoli2016 and unassigned karthikravis Mar 11, 2020

jiangtaoli2016 mentioned this issue Mar 17, 2020

Use TLS_method() instead TLSv1_2_method() #22375

Closed

stale bot added the disposition/stale label May 6, 2020

stale bot closed this as completed May 13, 2020

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Enable TLS 1.3 in gRPC core #22304

Enable TLS 1.3 in gRPC core #22304

jiangtaoli2016 commented Mar 11, 2020

jiangtaoli2016 commented Mar 11, 2020

stale bot commented May 6, 2020

dilipnd commented Sep 20, 2020

jiangtaoli2016 commented Sep 21, 2020

Enable TLS 1.3 in gRPC core #22304

Enable TLS 1.3 in gRPC core #22304

Comments

jiangtaoli2016 commented Mar 11, 2020

jiangtaoli2016 commented Mar 11, 2020

stale bot commented May 6, 2020

dilipnd commented Sep 20, 2020

jiangtaoli2016 commented Sep 21, 2020