Add setting to force TLS 1.2 #751

jimmylewis · 2024-05-11T19:25:35Z

Per #711 (and #699 before it), some users need to force TLS 1.2 for libman to work.

This change adds a new user setting, "forcetls12", which will set libman to use TLS1.2 for any HttpClient it creates.

I verified via WireShark that the traffic to services (cdnjs, etc) that libman calls to switched from 1.3 (my system default) to 1.2 when this setting was in place, and returned to 1.3 by unsetting it. I could also see that other connections from within VS were still using TLS1.3 so we didn't affect other components on accident.

Resolves #711

Per aspnet#711 (and aspnet#699 before it), some users need to force TLS 1.2 for libman to work. This change adds a new user setting, "forcetls12", which will set libman to use TLS1.2 for any HttpClient it creates. I verified via WireShark that the traffic to services (cdnjs, etc) that libman calls to switched from 1.3 (my system default) to 1.2 when this setting was in place, and returned to 1.3 by unsetting it. I could also see that other connections from within VS were still using TLS1.3 so we didn't affect other components on accident.

jimmylewis marked this pull request as ready for review May 12, 2024 08:46

move magic string to constants

f7fa376

phil-allen-msft approved these changes May 14, 2024

View reviewed changes

phil-allen-msft merged commit 22dab05 into aspnet:main May 14, 2024
2 checks passed

jimmylewis deleted the tls12 branch July 17, 2024 06:59

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Add setting to force TLS 1.2 #751

Add setting to force TLS 1.2 #751

jimmylewis commented May 11, 2024

Add setting to force TLS 1.2 #751

Add setting to force TLS 1.2 #751

Conversation

jimmylewis commented May 11, 2024