Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-147762

Unbound has disabled TLS 1.2 in default configuration

Linking RHIVOS CVEs to...Migration: Automation ...Sync from "Extern...XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done
    • Icon: Undefined Undefined
    • None
    • rhel-9.8, rhel-10.2
    • unbound
    • None
    • Important
    • rhel-net-perf
    • None
    • False
    • False
    • Hide

      None

      Show
      None
    • None
    • None
    • None
    • None
    • Unspecified
    • Unspecified
    • Unspecified
    • None

      What were you trying to do that didn't work?

      Listening TLS socket does not allow TLS 1.2 clients after recent rebase.

      What is the impact of this issue to you?

      It might create regression to clients with no support for TLS 1.3 yet. Expect there is something.

      Please provide the package NVR for which the bug is seen:

      unbound-1.24.2-3.el10

      How reproducible is this bug?:

      should be Reliable, no exact reproducer yet however.

      Steps to reproduce

      1. Check TLS 1.2 client can connect to server, if crypto-policy allows it
      2.  
      3.  

      Expected results

      If TLS allowed clients before the rebase, it should allow them even after the rebase.

      Actual results

      TLS 1.2 clients are not accepted.

              pemensik@redhat.com Petr Mensik
              pemensik@redhat.com Petr Mensik
              Petr Mensik Petr Mensik
              NetPerfServicesQe Bot NetPerfServicesQe Bot
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Created:
                Updated:
                Resolved: