gaborgsomogyi commented on code in PR #27514:
URL: https://github.com/apache/flink/pull/27514#discussion_r2765042701
##########
docs/content/release-notes/flink-1.20.md:
##########
@@ -431,3 +431,17 @@ The following option has been moved from
`org.apache.flink.table.planner.plan.ru
to `org.apache.flink.table.api.config.OptimizerConfigOptions` and promoted to
`@PublicEvolving`
- `table.optimizer.incremental-agg-enabled`
+
Review Comment:
I think this is not the proper place. We've intended to release 2.3, right?
##########
docs/content/docs/deployment/security/security-ssl.md:
##########
@@ -165,6 +165,11 @@ If these cipher suites are not supported on your setup,
you will see that Flink
{{< /hint >}}
+The JDK update [JDK-8245545](https://bugs.openjdk.org/browse/JDK-8245545)
(affecting JDK 11.0.30+, 17.0.18+, 21.0.10+, and 24+) disabled `TLS_RSA_*`
cipher suites to support forward-secrecy (RFC 9325) and comply with the IETF
Draft *Deprecating Obsolete Key Exchange Methods in TLS*.
Review Comment:
I think the actual cipher suite description is not valid anymore:
https://nightlies.apache.org/flink/flink-docs-stable/docs/deployment/security/security-ssl/#cipher-suites
Maybe there are other areas, we can look for any cipher suite related
entries and handle things as a whole.
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: [email protected]
For queries about this service, please contact Infrastructure at:
[email protected]
