Uploaded image for project: 'JBoss Enterprise Application Platform'
  1. JBoss Enterprise Application Platform
  2. JBEAP-8673

In Elytron, is OpenSSL intended as default TLS?

XMLWordPrintable

    • Not Required

      When I look into elytron default configuration I see.

              <subsystem xmlns="urn:wildfly:elytron:1.0" initial-providers="combined-providers">
                  <providers>
                      <provider-loader name="elytron" module="org.wildfly.security.elytron"/>
                      <provider-loader name="openssl" module="org.wildfly.openssl"/>
                      <aggregate-providers name="combined-providers">
                          <providers name="elytron"/>
                          <providers name="openssl"/>
                      </aggregate-providers>
                  </providers>
      

      From that configuration I would assume initial-providers is setting additional security providers before globally registered providers (registered in java.security). So that mean openssl provider should be used first when it comes to TLS creation. But it seems to me JSSE TLS is used by default.

      What am I missing?

              darran.lofthouse@redhat.com Darran Lofthouse
              mchoma@redhat.com Martin Choma
              Darran Lofthouse
              Votes:
              0 Vote for this issue
              Watchers:
              7 Start watching this issue

                Created:
                Updated:
                Resolved: