[jboss-jira] [JBoss JIRA] (ELY-1690) JDK11 unknow cipher suites
Farah Juma (Jira)
issues at jboss.org
Fri Feb 15 11:09:01 EST 2019
[ https://issues.jboss.org/browse/ELY-1690?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13696118#comment-13696118 ]
Farah Juma commented on ELY-1690:
---------------------------------
Going to close this one since adding the unknown TLS 1.3 cipher suites will be done as part of ELY-1706. Note that TLS_EMPTY_RENEGOTIATION_INFO_SCSV won't need to be added since it is not a true cipher suite (see https://tools.ietf.org/html/rfc5746#section-3.3 for details).
> JDK11 unknow cipher suites
> ---------------------------
>
> Key: ELY-1690
> URL: https://issues.jboss.org/browse/ELY-1690
> Project: WildFly Elytron
> Issue Type: Bug
> Components: SSL
> Affects Versions: 1.7.0.CR2
> Reporter: Martin Choma
> Assignee: Farah Juma
> Priority: Critical
> Labels: Java11
> Fix For: 1.8.0.CR3
>
>
> I have compared jdk supported ciphersuites with Elytron Mechanism Database. Here are cipher suites which does not match:
> * TLS_AES_128_GCM_SHA256
> * TLS_AES_256_GCM_SHA384
> * TLS_EMPTY_RENEGOTIATION_INFO_SCSV
> Especially first two seems important as are mentioned in TLS 1.3 rfc [1]
> [1] https://tools.ietf.org/html/draft-ietf-tls-tls13-28
--
This message was sent by Atlassian Jira
(v7.12.1#712002)
More information about the jboss-jira
mailing list