0 Replies Latest reply on Mar 3, 2017 3:30 PM by milspec

    How to hack around ELY-438 and update MechanismDatabase.properties ? (cannot use ibm jsse with wildfly)

    milspec

      Hi all,

       

      Issues w/ the IBM JDK caused me to post this question:

      wildfly 10.1 ssl misconfigured: browser handshake error. Where the error?

       

      It turns out the root cause lay here (Elytron issue w/ ibm jsse)

      [ELY-438] There is not possibility to use alternative JSSE Cipher Suite Names for IBM JDK - JBoss Issue Tracker

       

      Reviewing the "MechanismDatabase.properties" , I figured I could (somewhat easily) update this file, add the "SSL_" entries , repackage the jar, and restart:

       

      TLS_RSA_WITH_NULL_SHA256            = NULL-SHA256,RSA,RSA,NULL,SHA256,TLSv1.2,false,NONE,true,0,0
      SSL_RSA_WITH_NULL_SHA256            = NULL-SHA256,RSA,RSA,NULL,SHA256,TLSv1.2,false,NONE,true,0,0

       

      However it did not work.

       

      A caveat: generally I avoid whacking on complex subsytems whose details I grasp dimly.

       

       

      Build failed due to maven dependences

      On another note, building the elytron 1.0.2 failed as maven could not download depdnecnies.

       

      [ERROR] Failed to execute goal on project wildfly-elytron: Could not resolve dependencies for project org.wildfly.security:wildfly-elytron:jar:1.0.2.Final: The following artifacts could not be resolved: org.kohsuke.metainf-services:metainf-services:jar:1.5-jboss-1, org.jboss.slf4j:slf4j-jboss-logmanager:jar:1.0.3.GA: Could not find artifact org.kohsuke.metainf-services:metainf-services:jar:1.5-jboss-1 in central (https://repo.maven.apache.org/maven2) -> [Help 1]

      [ERROR]

       

      Questions

       

      • How can I update MechanismDatabase.properties to allow wildfly ssl to  work w/ IBM jdk?
      • How can I build elytron 1.0.2 in light of the maven download error

       

      thanks in advance