Mark,
On 10/10/21 13:47, Mark Thomas wrote:
On 10/10/2021 13:00, Christopher Schultz wrote:
On 10/9/21 04:52, Mark Thomas wrote:
<snip/>
If the user is using e.g. BouncyCastle, IBM's JRE, Corretto, etc.
those ciphers might be available in those environments. (It looks like
BC supports this cipher suite, but I couldn't find any information on
IBM or Corretto stating one way or the other).
We have supported cipher lists from at least some of those in the
test suite checking for missing mappings. There is always the scope
to [add] additional supported cipher lists from other JVMs and/or
JSSE providers.
+1
Will them being missing from the Ciphers enum prevent them from being
used at all? OR will it only prevent them from being aliases of each
other?
Looking at the source, my reading is a cipher needs to be in Ciphers to
used.
I'll note that in that case it is a DSA based cipher suite so I'd be
surprised to find it in use in a production scenario.
It's ECDSA, which is what you'd naturally be using if you were to be
using EC keys. Not everyone uses RSA, though it still has most of the
market-share. Let's Encrypt will use ECDSA if requested.
-chris
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
