ignite-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Ilya Kasnacheev (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (IGNITE-6167) Ability to enabled TLS protocols and cipher suites
Date Wed, 15 Aug 2018 14:00:00 GMT

    [ https://issues.apache.org/jira/browse/IGNITE-6167?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16581109#comment-16581109
] 

Ilya Kasnacheev commented on IGNITE-6167:
-----------------------------------------

Looks good to me!

> Ability to enabled TLS protocols and cipher suites
> --------------------------------------------------
>
>                 Key: IGNITE-6167
>                 URL: https://issues.apache.org/jira/browse/IGNITE-6167
>             Project: Ignite
>          Issue Type: Wish
>          Components: security
>    Affects Versions: 2.1
>            Reporter: Jens Borgland
>            Assignee: Mikhail Cherkasov
>            Priority: Major
>
> It would be very useful to be able to, in addition to the {{javax.net.ssl.SSLContext}},
either specify a custom {{javax.net.ssl.SSLServerSocketFactory}} and a custom {{javax.net.ssl.SSLSocketFactory}},
or to be able to at least specify the enabled TLS protocols and cipher suites.
> I have noticed that the {{org.apache.ignite.internal.util.nio.ssl.GridNioSslFilter}}
has support for the latter but I cannot find a way of getting a reference to the filter instance.
The {{GridNioSslFilter}} also isn't used by {{TcpDiscoverySpi}} as far as I can tell.
> Currently (as far as I can tell) there is no way of specifying the enabled cipher suites
and protocols used by Ignite, without doing it globally for the JRE.



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

Mime
View raw message