Come to think of it, it looks like this fix won't require changes in core. All the relevant code appears to live in the client (specifically the `AbstractClientTlsStrategy` hierarchy).
On Thu, Sep 26, 2019 at 2:09 PM Ryan Schmitt <rschm...@apache.org> wrote: > I'm working on it now. Relaxing the blacklisting behavior is a trivial > change. Verifying the chosen cipher suite after negotiation is not. > > On Thu, Sep 26, 2019 at 2:07 PM Oleg Kalnichevski <ol...@apache.org> > wrote: > >> On Thu, 2019-09-26 at 14:03 -0700, Ryan Schmitt wrote: >> > I'd like to do another beta release: beta9 for core, and beta6 for >> > client. >> > Which bugs need to get fixed before the next release? >> >> I was going to propose 5.0-beta9 release for core tomorrow. There are >> no known bugs at the moment that need fixing. The question is whether >> or not you want to make the cipher black-listing changes before 5.0- >> beta9 or after. >> >> Oleg >> >> >> --------------------------------------------------------------------- >> To unsubscribe, e-mail: dev-unsubscr...@hc.apache.org >> For additional commands, e-mail: dev-h...@hc.apache.org >> >>
