[JBoss JIRA] (ELY-1690) JDK11 unknow cipher suites

Friday, 15 February 2019

    [
https://issues.jboss.org/browse/ELY-1690?page=com.atlassian.jira.plugin.s...
] 

Farah Juma commented on ELY-1690:
---------------------------------

Going to close this one since adding the unknown TLS 1.3 cipher suites will be done as
part of ELY-1706. Note that TLS_EMPTY_RENEGOTIATION_INFO_SCSV won't need to be added
since it is not a true cipher suite (see https://tools.ietf.org/html/rfc5746#section-3.3
for details).

...
 JDK11 unknow cipher suites 
 ---------------------------

                 Key: ELY-1690
                 URL: https://issues.jboss.org/browse/ELY-1690
             Project: WildFly Elytron
          Issue Type: Bug
          Components: SSL
    Affects Versions: 1.7.0.CR2
            Reporter: Martin Choma
            Assignee: Farah Juma
            Priority: Critical
              Labels: Java11
             Fix For: 1.8.0.CR3

 I have compared jdk supported ciphersuites with Elytron Mechanism Database. Here are
cipher suites which does not match:
 * TLS_AES_128_GCM_SHA256
 * TLS_AES_256_GCM_SHA384 
 * TLS_EMPTY_RENEGOTIATION_INFO_SCSV
 Especially first two seems important as are mentioned in TLS 1.3 rfc [1]
 [1] https://tools.ietf.org/html/draft-ietf-tls-tls13-28 

--
This message was sent by Atlassian Jira
(v7.12.1#712002)

2026

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006