[jira] [Work logged] (TS-3216) Add HPKP (Public Key Pinning Extension for HTTP) support

Mon, 12 Sep 2016 10:46:57 -0700 

     [ 
https://issues.apache.org/jira/browse/TS-3216?focusedWorklogId=28832&page=com.atlassian.jira.plugin.system.issuetabpanels:worklog-tabpanel#worklog-28832
 ]

ASF GitHub Bot logged work on TS-3216:
--------------------------------------

                Author: ASF GitHub Bot
            Created on: 12/Sep/16 17:46
            Start Date: 12/Sep/16 17:46
    Worklog Time Spent: 10m 
      Work Description: Github user jpeach commented on a diff in the pull 
request:

    https://github.com/apache/trafficserver/pull/990#discussion_r78419692
  
    --- Diff: mgmt/RecordsConfig.cc ---
    @@ -1302,6 +1302,24 @@ static const RecordElement RecordsConfig[] =
     
       
//##############################################################################
       //#
    +  //# HPKP (Public Key Pinning Extension for HTTP) Configuration
    +  //#
    +  
//##############################################################################
    +  {RECT_CONFIG, "proxy.config.ssl.hpkp.enabled", RECD_INT, "0", 
RECU_DYNAMIC, RR_NULL, RECC_STR, "[0-1]", RECA_NULL}
    +  ,
    +  {RECT_CONFIG, "proxy.config.ssl.hpkp.report_only", RECD_INT, "0", 
RECU_DYNAMIC, RR_NULL, RECC_STR, "[0-1]", RECA_NULL}
    +  ,
    +  {RECT_CONFIG, "proxy.config.ssl.hpkp.include_subdomains", RECD_INT, "0", 
RECU_DYNAMIC, RR_NULL, RECC_INT, "[0-1]", RECA_NULL}
    +  ,
    +  {RECT_CONFIG, "proxy.config.ssl.hpkp.max_age", RECD_INT, "0", 
RECU_DYNAMIC, RR_NULL, RECC_STR, "^-?[0-9]+$", RECA_NULL}
    +  ,
    +  {RECT_CONFIG, "proxy.config.ssl.hpkp.pins", RECD_STRING, NULL, 
RECU_DYNAMIC, RR_NULL, RECC_NULL, NULL, RECA_NULL}
    +  ,
    +  {RECT_CONFIG, "proxy.config.ssl.hpkp.report_uri", RECD_STRING, NULL, 
RECU_DYNAMIC, RR_NULL, RECC_NULL, NULL, RECA_NULL}
    +  ,
    --- End diff --
    
    For these to actually be dynamic you need to register for updates to them, 
most likely in ``SSLCertificateConfig::startup()``.


Issue Time Tracking
-------------------

    Worklog Id:     (was: 28832)
    Time Spent: 3h 10m  (was: 3h)

> Add HPKP (Public Key Pinning Extension for HTTP) support
> --------------------------------------------------------
>
>                 Key: TS-3216
>                 URL: https://issues.apache.org/jira/browse/TS-3216
>             Project: Traffic Server
>          Issue Type: New Feature
>          Components: SSL
>            Reporter: Masaori Koshiba
>            Assignee: Masaori Koshiba
>              Labels: review
>             Fix For: 7.0.0
>
>         Attachments: hpkp-001.patch, hpkp-002.patch, hpkp-003.patch
>
>          Time Spent: 3h 10m
>  Remaining Estimate: 0h
>
> Add "Public Key Pinning Extension for HTTP" Support in Traffic Server.
> RFC 7469 Public Key Pinning Extension for HTTP
> - https://tools.ietf.org/html/rfc7469



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Reply via email to