Andrea Cosentino created CAMEL-23182:
----------------------------------------
Summary: Post-Quantum Cryptography (PQC) readiness: camel-mongodb:
Add SSLContextParameters support and fix hardcoded TLS version
Key: CAMEL-23182
URL: https://issues.apache.org/jira/browse/CAMEL-23182
Project: Camel
Issue Type: Improvement
Components: camel-mongodb
Reporter: Andrea Cosentino
Assignee: Andrea Cosentino
Fix For: 4.19.0
The camel-mongodb component has two TLS-related issues:
1. {{SslAwareMongoClient}} hardcodes {{SSLContext.getInstance("TLSv1.2")}},
which prevents the JVM from negotiating TLS 1.3 and blocks PQC (Post-Quantum
Cryptography) key exchange mechanisms that require TLS 1.3.
2. There is no {{SSLContextParameters}} support in camel-mongodb. Users cannot
configure named groups, signature schemes, cipher suites, or custom
truststores/keystores for the TLS connection to MongoDB using Camel's standard
SSL configuration API.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
