Oracle Java 8 problems due to TLS policy change
Andrew Azores
aazores at redhat.com
Fri Apr 11 18:29:52 UTC 2014
On 04/11/2014 02:19 PM, Andrew Hughes wrote:
>
> ----- Original Message -----
>> Ping?
>>
>> On Fri, Apr 4, 2014 at 11:03 AM, helpcrypto helpcrypto <helpcrypto at gmail.com
>>> wrote:
>>> According to
>>> http://docs.oracle.com/javase/8/docs/technotes/guides/security/enhancements-8.htmlOracle
>>> Java 8 now uses TLS1.1 and TLS1.2 (both enabled by default on
>>> Control Panel).
>>>
>>> This seems to be causing an error in our applet loading. Problem seems
>>> solved if both unchecked. Funny thing is our server only supports TLS1.0.
>>>
>>> Is icedtea8 following the same TLS policy? (switching to TLS1.1 and TLS1.2)
>>> If so, i should check if the same error appears.
>>>
> I'm not sure what you're referring to here. There is no control panel in
> IcedTea/OpenJDK 6, 7 or 8. I seem to remember TLS 1.2 support being added
> as part of 7 (it was one of the reasons for the addition of an explicit
> ECC provider).
>
> If this is related to deployment tools, then you need to be looking at IcedTea-Web,
> which is separate for any individual JDK.
Maybe Jiri can chime in here?
>
>>> BTW: I have noticed latest Ubuntu pkg doesnt work anymore with our
>>> applet...so there must be a JSObject regression in the last...year? I'll
>>> let you know after tests.
> I guess you'd need to consult the packagers about this to start with and then
> they can forward the bug upstream if necessary. I don't know the individual
> versions etc. packaged by Ubuntu, or about any local changes they make.
I think the bug report he filed [0] was about this 'BTW' part. If so,
that problem has been resolved.
[0] http://icedtea.classpath.org/bugzilla/show_bug.cgi?id=1731
Thanks,
--
Andrew A
More information about the distro-pkg-dev
mailing list