Open bcollard opened 2 years ago
The real ask is to support OpenSSL. Related issue https://github.com/envoyproxy/envoy-openssl
The real ask is to support OpenSSL. Related issue https://github.com/envoyproxy/envoy-openssl
Red Hat is using OpenSSL in one of their envoy-based products: https://maistra.io/docs/ossm-vs-community.html#ossm-openssl_ossm-vs-istio
This issue has been marked as stale because of no activity in the last 180 days. It will be closed in the next 180 days unless it is tagged "no stalebot" or other activity occurs.
Is your feature request related to a problem? Please describe. For backward compatibility reasons, some users want to support deprecated ciphers, like these ones:
Describe the solution you'd like Being able to enable them in
sslParameters
(downstream and upstream) Check if we need a special build of BoringSSL and Envoy to support them.Describe alternatives you've considered adding another TLS proxy in front of Envoy