From b1db0bec367062563a8991ee4ef1b2e2bfc02e32 Mon Sep 17 00:00:00 2001 From: Joel Hendrix Date: Mon, 17 Jul 2023 10:20:34 -0700 Subject: [PATCH] Enable TLS renegotiation (#21182) Some endpoints require TLS renegotiation. There is no change in behavior for endpoints that don't. --- sdk/azcore/CHANGELOG.md | 6 ++++++ sdk/azcore/internal/shared/constants.go | 2 +- sdk/azcore/runtime/transport_default_http_client.go | 3 ++- 3 files changed, 9 insertions(+), 2 deletions(-) diff --git a/sdk/azcore/CHANGELOG.md b/sdk/azcore/CHANGELOG.md index 8206a57c7735..cd7c0da31d00 100644 --- a/sdk/azcore/CHANGELOG.md +++ b/sdk/azcore/CHANGELOG.md @@ -1,5 +1,11 @@ # Release History +## 1.7.1 (2023-08-14) + +## Bugs Fixed + +* Enable TLS renegotiation in the default transport policy. + ## 1.7.0 (2023-07-12) ### Features Added diff --git a/sdk/azcore/internal/shared/constants.go b/sdk/azcore/internal/shared/constants.go index 53c8d353ad14..577435a49d97 100644 --- a/sdk/azcore/internal/shared/constants.go +++ b/sdk/azcore/internal/shared/constants.go @@ -32,5 +32,5 @@ const ( Module = "azcore" // Version is the semantic version (see http://semver.org) of this module. - Version = "v1.7.0" + Version = "v1.7.1" ) diff --git a/sdk/azcore/runtime/transport_default_http_client.go b/sdk/azcore/runtime/transport_default_http_client.go index 869bed511842..dbb9fa7f86c1 100644 --- a/sdk/azcore/runtime/transport_default_http_client.go +++ b/sdk/azcore/runtime/transport_default_http_client.go @@ -28,7 +28,8 @@ func init() { TLSHandshakeTimeout: 10 * time.Second, ExpectContinueTimeout: 1 * time.Second, TLSClientConfig: &tls.Config{ - MinVersion: tls.VersionTLS12, + MinVersion: tls.VersionTLS12, + Renegotiation: tls.RenegotiateFreelyAsClient, }, } defaultHTTPClient = &http.Client{