JBoss EAP 6.4 CP10 and later Natives Upgraded to OpenSSL 1.0.2h

Updated 28 Jun 2017

Red Hat JBoss EAP 6.4 Natives have been upgraded to openssl-1.0.2h. There is added support of TLSv1.2 and new ciphers. This is because openssl 0.9.8 is end of life and no longer supported. Also, SSLv2 and SSLv3 and some unsafe ciphers have been removed.

How to Install

Installation instructions are here: How to install JBoss Native components in EAP 6

Will My Existing Applications Continue To Work?

Unsafe ciphers have been removed so there may be a need to test applications that depended on older versions of SSL to verify they still work. If Internet Explorer is in use then perform sandbox testing to confirm functionality is preserved.

RHEL OpenSSL Contrast

The OpenSSL 1.0.2h provided by the Red Hat JBoss EAP 6.4 Natives upgrade is a different version than the one available on standard RHEL. RHEL 6 and 7 ship with openssl-1.0.1e. After installing the Red Hat JBoss EAP 6.4 Natives upgrade, RHEL and other packages dependent on RHEL's openssl package will continue to use it unless configured otherwise. JBoss EAP 6.4 will start using OpenSSL 1.0.2h after following the "How to Install" instructions above.

Product(s)

Red Hat JBoss Enterprise Application Platform

Category

Configure

Components

openssl

Article Type

General