You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@ignite.apache.org by "Dmitry Sherstobitov (JIRA)" <ji...@apache.org> on 2018/10/29 11:27:00 UTC
[jira] [Commented] (IGNITE-6167) Ability to enabled TLS protocols
and cipher suites
[ https://issues.apache.org/jira/browse/IGNITE-6167?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16667039#comment-16667039 ]
Dmitry Sherstobitov commented on IGNITE-6167:
---------------------------------------------
Duplicate javadoc
{code:java}
/**
* Gets enabled cipher suites
* @return enabled cipher suites
*/
public String[] getCipherSuites() {
return cipherSuites;
}
/**
* Gets enabled cipher suites
* @return enabled cipher suites
*/
public String[] getProtocols() {
return protocols;
}
{code}
> Ability to enabled TLS protocols and cipher suites
> --------------------------------------------------
>
> Key: IGNITE-6167
> URL: https://issues.apache.org/jira/browse/IGNITE-6167
> Project: Ignite
> Issue Type: Wish
> Components: security
> Affects Versions: 2.1
> Reporter: Jens Borgland
> Assignee: Mikhail Cherkasov
> Priority: Major
> Fix For: 2.7
>
>
> It would be very useful to be able to, in addition to the {{javax.net.ssl.SSLContext}}, either specify a custom {{javax.net.ssl.SSLServerSocketFactory}} and a custom {{javax.net.ssl.SSLSocketFactory}}, or to be able to at least specify the enabled TLS protocols and cipher suites.
> I have noticed that the {{org.apache.ignite.internal.util.nio.ssl.GridNioSslFilter}} has support for the latter but I cannot find a way of getting a reference to the filter instance. The {{GridNioSslFilter}} also isn't used by {{TcpDiscoverySpi}} as far as I can tell.
> Currently (as far as I can tell) there is no way of specifying the enabled cipher suites and protocols used by Ignite, without doing it globally for the JRE.
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)