Project

General

Profile

Scénario #28809

Passer EoleSSO en TLS 1.2 sur EOLE 2.7

Added by Joël Cuissinat 6 months ago. Updated about 1 month ago.

Status:
Terminé (Sprint)
Priority:
Normal
Assigned To:
Category:
-
Start date:
01/07/2020
Due date:
01/17/2020
% Done:

100%

Story points:
2.0
Remaining (hours):
0.00 hour
Velocity based estimate:
Release:
Release relationship:
Auto

Description

L'évolution a été effectuée pour Zéphir et l'EAD2 (cf. #27153) malheureusement EoleSSO utilise M2Crypto au lieu de python OpenSSL et nos premières investigations n'ont rien donné !
Pour mémoire, pour EoleSSO, le point d'entrée est dans /usr/lib/python2.7/dist-packages/eolesso/libsecure.py


Subtasks

Tâche #29436: Utiliser le protocole par défautFerméJoël Cuissinat


Related issues

Related to Zéphir - Scénario #27153: EOLE 2.7 devrait supporter TLS 1.1 voire 1.2 Terminé (Sprint) 07/18/2019 08/30/2019

History

#1 Updated by Joël Cuissinat 6 months ago

  • Related to Scénario #27153: EOLE 2.7 devrait supporter TLS 1.1 voire 1.2 added

#2 Updated by Joël Cuissinat 6 months ago

Pour mémoire #702 ;)

#3 Updated by Joël Cuissinat 6 months ago

  • Target version changed from sprint 2019 36-38 Equipe MENSR to sprint 2019 39-41 Equipe MENSR

#4 Updated by Joël Cuissinat 5 months ago

  • Project changed from Distribution EOLE to EoleSSO

#5 Updated by Joël Cuissinat 4 months ago

  • Target version changed from sprint 2019 39-41 Equipe MENSR to sprint 2019 42-44 Equipe MENSR

#6 Updated by Joël Cuissinat 4 months ago

Sur bionic (python-m2crypto 0.27.0-5)

>>> from M2Crypto import m2
>>> for m in dir(m2):
...     if m.endswith('_method'):
...         print m
... 
sslv23_method
tlsv1_method

Idem avec le paquet eoan : 0.31.0-6

#7 Updated by Joël Cuissinat 4 months ago

  • Release changed from EOLE 2.7.1.1 to EOLE 2.7.1.2

#8 Updated by Joël Cuissinat 3 months ago

  • Due date deleted (09/20/2019)
  • Target version deleted (sprint 2019 42-44 Equipe MENSR)
  • Start date deleted (08/20/2019)
  • Release changed from EOLE 2.7.1.2 to Carnet de produit (Cadoles)

#9 Updated by Joël Cuissinat 3 months ago

  • Release changed from Carnet de produit (Cadoles) to EOLE 2.7.2

#10 Updated by Joël Cuissinat 3 months ago

Une piste très sérieuse ^^ découverte ici : https://bugzilla.redhat.com/show_bug.cgi?id=1412552#c1

The latest findings show that we can use tlsv1.2 using m2crypto when setting sslv23 as protocol.

Ça semble confirmé par : https://gitlab.com/m2crypto/m2crypto/issues/24

#11 Updated by Joël Cuissinat about 2 months ago

  • Story points changed from 4.0 to 2.0

#12 Updated by Joël Cuissinat about 2 months ago

  • Due date set to 01/17/2020
  • Target version set to sprint 2019 51-03 Equipe MENSR
  • Start date set to 12/16/2019

#13 Updated by Joël Cuissinat about 2 months ago

  • Assigned To set to Joël Cuissinat

#14 Updated by Joël Cuissinat about 1 month ago

  • Status changed from Nouveau to Terminé (Sprint)

Also available in: Atom PDF