[CASSANDRA-11164] Order and filter cipher suites correctly - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Low
Resolution: Fixed
Fix Version/s: 2.2.6, 3.0.4, 3.4
Component/s: None
Labels:
None

Severity:
Low

Description

As pointed out in https://issues.apache.org/jira/browse/CASSANDRA-10508, SSLFactory.filterCipherSuites() doesn't respect the ordering of desired ciphers in cassandra.yaml.

Also the fix that occurred for https://issues.apache.org/jira/browse/CASSANDRA-3278 is incomplete and needs to be applied to all locations where we create an SSLSocket so that JCE is not required out of the box or with additional configuration.

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

11164-2.2.txt
12/Feb/16 01:45
8 kB
Tom Petracca
11164-2.2_spod.patch
25/Feb/16 09:58
16 kB
Stefan Podkowinski

Issue Links

is related to

CASSANDRA-10508 Remove hard-coded SSL cipher suites and protocols

Resolved

Activity

People

Assignee:: Stefan Podkowinski

Reporter:: Tom Petracca

Authors:: Stefan Podkowinski

Reviewers:: Stefania Alborghetti

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Dates

Created:: 12/Feb/16 01:38

Updated:: 16/Apr/19 09:30

Resolved:: 29/Feb/16 17:22