Skip to content

Enforce the minimum TLS version to 1.3#93

Merged
openshift-merge-bot[bot] merged 1 commit into
openstack-lightspeed:mainfrom
umago:min-tls-1.3
Mar 11, 2026
Merged

Enforce the minimum TLS version to 1.3#93
openshift-merge-bot[bot] merged 1 commit into
openstack-lightspeed:mainfrom
umago:min-tls-1.3

Conversation

@umago

@umago umago commented Mar 10, 2026

Copy link
Copy Markdown
Contributor

Based on the QPC analysis tool we should enforce the minimum version of TLS to 1.3 as older TLS versions are vulnerable to quantum attacks.

@openshift-ci openshift-ci Bot requested review from Akrog and lpiwowar March 10, 2026 13:31
@umago umago marked this pull request as draft March 10, 2026 13:31
@umago umago marked this pull request as ready for review March 10, 2026 13:33
@umago umago marked this pull request as draft March 10, 2026 13:57
@umago
Enforce the minimum TLS version to 1.3
377a935 
Based on the QPC analysis tool we should enforce the minimum version of
TLS to 1.3 as older TLS versions are vulnerable to quantum attacks.

Signed-off-by: Lucas Alvares Gomes <lucasagomes@gmail.com>
@umago umago marked this pull request as ready for review March 10, 2026 14:01
lpiwowar
lpiwowar approved these changes Mar 11, 2026
View reviewed changes

@lpiwowar lpiwowar left a comment

Copy link
Copy Markdown
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

/lgtm

Thank you!

Note: IIUC we are using self-signed certs both for the metrics server and the webhook (not deployed at the moment). Maybe something to change later?

@openshift-ci openshift-ci Bot added the lgtm label Mar 11, 2026
@openshift-ci

openshift-ci Bot commented Mar 11, 2026

Copy link
Copy Markdown

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: lpiwowar, umago

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Details Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@openshift-merge-bot openshift-merge-bot Bot merged commit 55ffb15 into openstack-lightspeed:main Mar 11, 2026
7 checks passed
@umago umago deleted the min-tls-1.3 branch March 28, 2026 08:44
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@lpiwowar lpiwowar lpiwowar approved these changes

@Akrog Akrog Awaiting requested review from Akrog

Assignees

@lpiwowar lpiwowar

Labels

approved lgtm

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@umago @lpiwowar