[CDRIVER-2853] Support TLSv1.3 with LibreSSL Created: 11/Oct/18  Updated: 10/Feb/23

Status: Backlog
Project: C Driver
Component/s: libmongoc, tls
Affects Version/s: None
Fix Version/s: None

Type: New Feature Priority: Major - P3
Reporter: A. Jesse Jiryu Davis Assignee: Unassigned
Resolution: Unresolved Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Issue Links:
Related
is related to CDRIVER-2846 OpenSSL 1.1.1 compatibility Closed
Epic Link: CDRIVER-4575

 Description   

When LibreSSL supports TLSv1.3 (https://github.com/libressl-portable/portable/issues/228 we'll need to fix TLS reads for LibreSSL the same way we did for OpenSSL 1.1.1 (CDRIVER-2846). I think we have to add a should_retry boolean field to mongoc_stream_tls_libressl_t. The field is set to false before a handshake, read, or write. The field is set to true after an operation that returns TLS_WANT_POLLIN or TLS_WANT_POLLOUT. _mongoc_stream_tls_libressl_should_retry returns true if the field is set or if mongoc_stream_should_retry (tls->base_stream).


Generated at Wed Feb 07 21:16:32 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.