[CAMEL-11784] Could not disable the tlsv1 and tlsv1.1 - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Major
Resolution: Invalid
Affects Version/s: None
Fix Version/s: None
Component/s: camel-jetty
Labels:
None

Estimated Complexity:
Unknown

Description

Hi,

I tried to use below code to disable the weak TLS version, such as TLSv1.1 TLSv1 and SSLv3, only left TLSv1.2, but it does not work

        JettyHttpComponent jettyComponent =
            getContext().getComponent("jetty", JettyHttpComponent.class);
        SslSelectChannelConnector sslConnector = new SslSelectChannelConnector();
        SslContextFactory sslFactory = sslConnector.getSslContextFactory();
         ..........

        SSLContextParameters sslContextParameters = new SSLContextParameters();
        SecureSocketProtocolsParameters secureSocketProtocols = new SecureSocketProtocolsParameters();
        secureSocketProtocols.getSecureSocketProtocol().add("TLSv1.2");
        sslContextParameters.setSecureSocketProtocols(secureSocketProtocols);

        jettyComponent.setSslContextParameters(sslContextParameters);
        jettyComponent.setSslSocketConnectors(connectors);
        from("jetty:https://0.0.0.0:343/eastweb/")

Could you help to have a support? thanks!

Attachments

Activity

People

Assignee:: Unassigned

Reporter:: East

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 19/Sep/17 02:57

Updated:: 19/Sep/17 03:53

Resolved:: 19/Sep/17 03:53