Dropwizard excluded ciphers on IBM i server

[Glenrock_oz]

Hi there,

I'm trying to port an existing dropwizard application to an IBM i server (running IBM J9 VM (build 2,9, JRE 1.8.0)

I have the http connector working perfectly but cannot get the https connect to work. 

Error in the browser is ERR_SSL_VERSION_OR_CIPHER_MISMATCH

Errors in the java console:

dw-42, fatal error: 40: no cipher suites in common              

javax.net.ssl.SSLHandshakeException: no cipher suites in common 

I believe the issue is caused by Jetty excluding the SSL* ciphers (all IBM ciphers are named SSL*).

I have tried specifying an excludedCipherSuites value in my config.yml but it doesn't appear to replace the Jetty default exclusions.

And I have also tried supportedCipherSuites with no luck.

I am using the -Dcom.ibm.jsse2.overrideDefaultTLS=true property but it doesn't help with the incoming requests.

Is there a way to override the jetty exclusion at the dropwizard config level?

Has anyone successfully been able to get https working on an IBM i server?

Thanks in advance for your help.

[Glenrock_oz]

Sorry forgot to mention I'm using dropwizard version 1.3.13