RFR: 8296820: Add implementation note to SSLContext.getInstance noting subsequent behavior if protocol is disabled
Xuelei Fan
xuelei.f at gmail.com
Wed Nov 16 01:20:43 UTC 2022
> The wording in this PR specifically refers to the protocol version that
was specified. It isn't covering other optional protocols that may be
supported.
Sorry, I may not make it clear. The protocol specified in
SSLContext.getInstance is not TLS protocol version. I think the protocol
disabled in security properties refers to protocol version. The new added
specification in this PR would better avoid the confusing. If you want the
specified protocol referring to TLS version, the handshake may still
success even the TLS version is disabled. If you means the specified
protocol as SSLContext algorithm, I am not sure if the current security
properties supporting disabling of SSLContext algorithm.
Hope it helps!
Xuelei
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mail.openjdk.org/pipermail/security-dev/attachments/20221115/6698b475/attachment-0001.htm>
More information about the security-dev
mailing list