RFR JDK-8239595/JDK-8239594 : ssl context version is not respected/jdk.tls.client.protocols is not respected
Daniel Fuchs
daniel.fuchs at oracle.com
Wed Apr 8 15:00:37 UTC 2020
Good work Rahul!
I am not sure whether that deserves a CSR (probably not) but we may
want to create some release note to explain that the HttpClient is no
longer overriding the default protocols selected by the SSLContext.
So HTTP 1.1 over TLSv1.1 might now get negotiated where previously
an handshake failure would have occurred. It might be worth mentioning
in a release note.
best regards,
-- daniel
On 08/04/2020 10:13, Rahul wrote:
> Updated patch after considering the impact of returning default parameters on the http client.
> TLS versions earlier limited to 1.2 and above by client, now will support all versions(wrt the scenarios for this bug).
>
> Issue:https://bugs.openjdk.java.net/browse/JDK-8239595
> Issue:https://bugs.openjdk.java.net/browse/JDK-8239594
>
> Webrev:http://cr.openjdk.java.net/~jboes/rayayada/webrevs/8239595/webrev.01/
>
> -- Rahul
More information about the security-dev
mailing list