Uploaded image for project: 'JBoss Enterprise Application Platform'
  1. JBoss Enterprise Application Platform
  2. JBEAP-8673

In Elytron, is OpenSSL intended as default TLS?

XMLWordPrintable

    • Not Required

      When I look into elytron default configuration I see.

              <subsystem xmlns="urn:wildfly:elytron:1.0" initial-providers="combined-providers">
                  <providers>
                      <provider-loader name="elytron" module="org.wildfly.security.elytron"/>
                      <provider-loader name="openssl" module="org.wildfly.openssl"/>
                      <aggregate-providers name="combined-providers">
                          <providers name="elytron"/>
                          <providers name="openssl"/>
                      </aggregate-providers>
                  </providers>
      

      From that configuration I would assume initial-providers is setting additional security providers before globally registered providers (registered in java.security). So that mean openssl provider should be used first when it comes to TLS creation. But it seems to me JSSE TLS is used by default.

      What am I missing?

            darran.lofthouse@redhat.com Darran Lofthouse
            mchoma@redhat.com Martin Choma
            Darran Lofthouse
            Votes:
            0 Vote for this issue
            Watchers:
            7 Start watching this issue

              Created:
              Updated:
              Resolved: