[
https://issues.apache.org/jira/browse/QPID-7063?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15212168#comment-15212168
]
ASF subversion and git services commented on QPID-7063:
-------------------------------------------------------
Commit 1736623 from [email protected] in branch 'java/trunk'
[ https://svn.apache.org/r1736623 ]
QPID-7063: Fix potential cause for NullPointerException
> [Java Broker] SimpleLdap Authentication Provider should be able to override
> enabled cipher suites and TLS protocols from context variables for TLS
> connections to LDAP servers
> ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------
>
> Key: QPID-7063
> URL: https://issues.apache.org/jira/browse/QPID-7063
> Project: Qpid
> Issue Type: Improvement
> Components: Java Broker
> Affects Versions: qpid-java-6.0, qpid-java-6.1
> Reporter: Alex Rudyy
> Assignee: Alex Rudyy
> Fix For: qpid-java-6.1
>
> Attachments:
> 0001-QPID-7063-Java-Broker-Allow-TLS-protocols-cipher-sui.patch
>
>
> At the moment, required TLS protocols and cipher suites can not be set in
> SSLConetextFactory created in SampleLdap Authentication Provider for TLS
> connections. As result, Qpid users cannot override TLS protocols and cipher
> suites to use in TLS connections to LDAP servers which might cause a
> selection of weaker cipher suites during TLS negotiation or even can prevent
> establishing of TLS connections in JVM implementations not supporting
> downgrade of TLS protocol
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
