Jean-Frederic Clere wrote:
In any case, OpenSSL configuration seems pretty different from JSSE. It might make sense to have separate element types. For example Remoting doesn't support OpenSSL (yet), so it would only take a JSSE configuration.
Thoughts on that?
How does JSSE works with sslengines (boxes that do the encrypt/decrypt)?
Well we can start without OpenSSL and add it later.
You configure the SSLContext the same, then on the SSLEngine you can set the enabled protocols and cipher suites, specify client auth, client mode, and whether you want to allow session creation.
I have push a new version in my stuff.
The ssl has now a a Type and I have added a ssls to group all the ssl definitions.
Can you pull from upstream and then push the merged content back out to your github repo? Looking at the diff I'd get by merging your stuff, there's a ton of changes that seem unrelated to what you were working on.