Skip to content

Add TLS cipher configuration to coturn Helm chart [SQPIT-1512]#2924

Merged
sysvinit merged 3 commits intodevelopfrom
sysvinit/coturn-tls-ciphers
Jan 9, 2023
Merged

Add TLS cipher configuration to coturn Helm chart [SQPIT-1512]#2924
sysvinit merged 3 commits intodevelopfrom
sysvinit/coturn-tls-ciphers

Conversation

@sysvinit
Copy link
Contributor

This PR introduces a configuration option in the coturn Helm chart to allow operators to set the list of ciphers permitted for TLS connections, with the defaults set for compliance with BSI TR-02102-2. Based on this coturn PR, it's likely that TLS 1.3 ciphersuite configuration will reuse the same configuration option for TLS 1.2 and below cipher list configuration, so we can provide the configuration strings for both versions concatenated together.

Checklist

  • Add a new entry in an appropriate subdirectory of changelog.d
  • Read and follow the PR guidelines

@zebot zebot added the ok-to-test Approved for running tests in CI, overrides not-ok-to-test if both labels exist label Dec 13, 2022
@sysvinit sysvinit temporarily deployed to cachix December 14, 2022 09:13 — with GitHub Actions Inactive
@sysvinit sysvinit temporarily deployed to cachix December 14, 2022 09:13 — with GitHub Actions Inactive
@sysvinit sysvinit merged commit e7994b0 into develop Jan 9, 2023
@sysvinit sysvinit deleted the sysvinit/coturn-tls-ciphers branch January 9, 2023 13:30
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

ok-to-test Approved for running tests in CI, overrides not-ok-to-test if both labels exist

Projects

None yet

Development

Successfully merging this pull request may close these issues.

3 participants