Uploaded image for project: 'EAP Documentation'
  1. EAP Documentation
  2. EAPDOC-2955

SSLContext to support delegation to alternate instances based on peer information.

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Unresolved
    • Icon: Major Major
    • None
    • 8.2.0.GA
    • Documentation
    • None
    • False
    • Hide

      None

      Show
      None
    • False

      As an SSLEngine is created the host and port information is available at the time the engine is requested: -

      https://download.java.net/java/early_access/jdk11/docs/api/java.base/javax/net/ssl/SSLContext.html#createSSLEngine(java.lang.String,int)

      We could make use of this information to dynamically select alternative configurations.

      This would also be a natural follow up to EAP7-1096 so the registered SSLContext could delegate to different configurations based on destination.

       

      Elytron PR: https://github.com/wildfly-security/wildfly-elytron/pull/1382

      WildFly Core PR: https://github.com/wildfly/wildfly-core/pull/4311

      WildFly PR with smoke test: https://github.com/wildfly/wildfly/pull/13687

      WildFly PR with community docs: https://github.com/wildfly/wildfly/pull/13687

      Merge Request 479

      WildFly PR 14333

              dfenness@redhat.com Darren Fennessy
              dfenness@redhat.com Darren Fennessy
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Created:
                Updated: