Loading...

XML

Word

Printable

Type: Bug
Resolution: Won't Do
Priority: Minor
Fix Version/s: None
Affects Version/s: 1.1.0.GA
Component/s: CLI Tools, Qpid Dispatch Router
Labels:
None

Steps to Reproduce:
Hide

Setup ssl on Qpid-disaptch node (generate certificates).

Setup ssl profile without ciphers option in config for example:

router { id: router4 mode: interior allowUnsettledMulticast: True } listener { sslProfile: Test host: 0.0.0.0 port: 5672 role: normal sasl-mechanisms: ANONYMOUS authenticatePeer: no } sslProfile { name: Test certFile: /root/ca/intermediate/certs/router.cert.pem keyFile: /root/ca/intermediate/private/router.key.pem password: messaging }

Run qdmanage on qpid-dispatch node:

# qdmanage query ciphers []
Show
Setup ssl on Qpid-disaptch node (generate certificates). Setup ssl profile without ciphers option in config for example: router { id: router4 mode: interior allowUnsettledMulticast: True } listener { sslProfile: Test host: 0.0.0.0 port: 5672 role: normal sasl-mechanisms: ANONYMOUS authenticatePeer: no } sslProfile { name: Test certFile: /root/ca/intermediate/certs/router.cert.pem keyFile: /root/ca/intermediate/ private /router.key.pem password: messaging } Run qdmanage on qpid-dispatch node: # qdmanage query ciphers []

SFDC Cases Counter:
SFDC Cases Links:

Qdmanage doesn't chow default ciphers of sslProfile component in dispatch config file when ciphers aren't specified.

Example:

sslProfile {
    name: Test
    certFile: /root/ca/intermediate/certs/router.cert.pem
    keyFile: /root/ca/intermediate/private/router.key.pem
    password: messaging
}

relates to

ENTMQIC-1945 Make the set of allowed TLS versions and ciphers configurable

Closed

Assignee:: Ted Ross

Reporter:: Jakub Stejskal

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Created:: 2018/01/23 11:25 AM

Updated:: 2020/12/18 3:12 PM

Resolved:: 2018/01/26 9:01 AM

Details

Description

Attachments

Issue Links

Activity

People

Dates