RFR: 8256660: Disable DTLS 1.0
Sean Mullan
mullan at openjdk.org
Fri Oct 28 17:11:28 UTC 2022
Disable DTLS 1.0 by default. This version of DTLS has weakened over time and lacks support for stronger cipher suites. DTLS 1.0 correlates with version 1.1 of TLS which has already been disabled by default in JDK 16. The IETF has deprecated this version of DTLS (along with TLS 1.0 and 1.1) in RFC 8996: https://www.rfc-editor.org/rfc/rfc8996.html.
CSR: https://bugs.openjdk.org/browse/JDK-8280507
-------------
Commit messages:
- More test changes.
- Merge
- Merge branch 'master' into JDK-8256660
- Fix code so that DTLSv1.0 is removed from the enabled list of
- Initial revision.
Changes: https://git.openjdk.org/jdk/pull/10905/files
Webrev: https://webrevs.openjdk.org/?repo=jdk&pr=10905&range=00
Issue: https://bugs.openjdk.org/browse/JDK-8256660
Stats: 56 lines in 3 files changed: 27 ins; 5 del; 24 mod
Patch: https://git.openjdk.org/jdk/pull/10905.diff
Fetch: git fetch https://git.openjdk.org/jdk pull/10905/head:pull/10905
PR: https://git.openjdk.org/jdk/pull/10905
More information about the security-dev
mailing list