Uploaded image for project: 'WildFly'
  1. WildFly
  2. WFLY-3253

CXF should not be installing BouncyCastle

    XMLWordPrintable

Details

    • Bug
    • Resolution: Done
    • Critical
    • 9.0.0.Beta1
    • None
    • Web Services
    • None

    Description

      CXF installs a BouncyCastle provider globally into the security providers list. This is causes performance and other problems when this provider gets chosen for whatever reason to be the system crypto provider for e.g. TLS.

      The list of globally installed security providers should be a user concern only. If CXF requires a specific provider for a specific purpose, it should be selecting that provider when constructing the crytpo API object, though generally this is to be discouraged.

      Ultimately we want to introduce a configuration in the app server that allows the list of security providers to be specified in some way, without interference from any frameworks that we happen to have installed.

      Attachments

        Issue Links

          is blocked by

          Feature Request - Feature requests from customers and/or users JBWS-3817 Avoid globally installing BouncyCastle

          • Major - To be worked after higher priority work items are addressed. When the severity is high and the effort to change it is low to moderate, this term is chosen. Issues in this category likely have an existing workaround but implementation or execution may be non-trivial.
          • Closed
          is related to

          Bug - A problem that impairs or prevents the functions of the product. WFLY-3331 Https: ArrayIndexOutOfBoundsException when rendering a resulting JSF page

          • Blocker - To be worked above all other priorities. This term is chosen when the severity of the issue is very high, has no workaround, or the effort for the change is comparatively low. Issues that may be very publicly visible and could generate significant media attention may also drive a higher priority.
          • Closed
          links to

          Web Link CXF-5905

          Web Link WSS-507

          Activity

            People

              rhn-support-asoldano Alessio Soldano
              dlloyd@redhat.com David Lloyd
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: