Remove whitelisting of AES-CBC ciphers

author: Bjørn Christian Seime <bjorncs@oath.com> 2018-12-05 19:11:35 +0100
committer: Bjørn Christian Seime <bjorncs@oath.com> 2018-12-05 19:11:35 +0100
commit: 38437ab8f6af54dc4b23cb2c205f920a1926b3ed (patch)
tree: e637872ea65d231ae8a13d26f611f17d593d6b75 /security-utils
parent: 6a33af1752ef731a368e4947f2afb123e8151c58 (diff)
1 files changed, 1 insertions, 5 deletions
diff --git a/security-utils/src/main/java/com/yahoo/security/tls/DefaultTlsContext.java b/security-utils/src/main/java/com/yahoo/security/tls/DefaultTlsContext.java
index dcf3a4162ee..b49228b163e 100644
--- a/security-utils/src/main/java/com/yahoo/security/tls/DefaultTlsContext.java
+++ b/security-utils/src/main/java/com/yahoo/security/tls/DefaultTlsContext.java
@@ -28,11 +28,7 @@ public class DefaultTlsContext implements TlsContext {
             "TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256",
             "TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256",
             "TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256",
-            "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256",
-            "TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384",
-            "TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384",
-            "TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256",
-            "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256");
+            "TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256");
 
     private static final Logger log = Logger.getLogger(DefaultTlsContext.class.getName());
author	Bjørn Christian Seime <bjorncs@oath.com>	2018-12-05 19:11:35 +0100
committer	Bjørn Christian Seime <bjorncs@oath.com>	2018-12-05 19:11:35 +0100
commit	38437ab8f6af54dc4b23cb2c205f920a1926b3ed (patch)
tree	e637872ea65d231ae8a13d26f611f17d593d6b75 /security-utils
parent	6a33af1752ef731a368e4947f2afb123e8151c58 (diff)