[
https://issues.apache.org/jira/browse/ARTEMIS-3038?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17262704#comment-17262704
]
Robbie Gemmell commented on ARTEMIS-3038:
-----------------------------------------
I believe the ciphers are still there in JDK8 (or were when the TLS 1.3
backport work was done mid last year, for release later in the year) per the
JIRA, and its just that at some point they were disabled by default, i.e a
SSLEngine will probably have them listed as supported-protocols but not
enabled-procotols, unless explicitly enabled. JDK11 did absolutely remove them
though though so they are long gone from that perspective either way, and were
not recommended even in eary JDK8. I'd delete the test and forget it existed.
> Investigate
> CoreClientOverOneWaySSLKerb5Test#testOneWaySSLWithGoodClientCipherSuite
> -----------------------------------------------------------------------------------
>
> Key: ARTEMIS-3038
> URL: https://issues.apache.org/jira/browse/ARTEMIS-3038
> Project: ActiveMQ Artemis
> Issue Type: Task
> Reporter: Clebert Suconic
> Assignee: Gary Tully
> Priority: Major
>
> CoreClientOverOneWaySSLKerb5Test#testOneWaySSLWithGoodClientCipherSuite is
> failing because of:
>
> [https://www.oracle.com/security-alerts/poodlecve-2014-3566.html]
>
> I set the test with an ignore .. until we investigate what we should do.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
