ignite-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Ilya Kasnacheev (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (IGNITE-6167) Ability to enabled TLS protocols and cipher suites
Date Wed, 15 Aug 2018 14:00:00 GMT

    [ https://issues.apache.org/jira/browse/IGNITE-6167?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16581109#comment-16581109

Ilya Kasnacheev commented on IGNITE-6167:

Looks good to me!

> Ability to enabled TLS protocols and cipher suites
> --------------------------------------------------
>                 Key: IGNITE-6167
>                 URL: https://issues.apache.org/jira/browse/IGNITE-6167
>             Project: Ignite
>          Issue Type: Wish
>          Components: security
>    Affects Versions: 2.1
>            Reporter: Jens Borgland
>            Assignee: Mikhail Cherkasov
>            Priority: Major
> It would be very useful to be able to, in addition to the {{javax.net.ssl.SSLContext}},
either specify a custom {{javax.net.ssl.SSLServerSocketFactory}} and a custom {{javax.net.ssl.SSLSocketFactory}},
or to be able to at least specify the enabled TLS protocols and cipher suites.
> I have noticed that the {{org.apache.ignite.internal.util.nio.ssl.GridNioSslFilter}}
has support for the latter but I cannot find a way of getting a reference to the filter instance.
The {{GridNioSslFilter}} also isn't used by {{TcpDiscoverySpi}} as far as I can tell.
> Currently (as far as I can tell) there is no way of specifying the enabled cipher suites
and protocols used by Ignite, without doing it globally for the JRE.

This message was sent by Atlassian JIRA

View raw message