-
-
Notifications
You must be signed in to change notification settings - Fork 248
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
TLS 1.3 support for Java 8 #1254
Comments
To add support using Azul's OpenJSSE lib:
|
According to this page: https://java.com/en/jre-jdk-cryptoroadmap.html 2020-07-14 | 8u261 b12 | TLS 1.3 | Added support for TLS 1.3 |
That's about Oracle JDK. Reading https://bugs.openjdk.java.net/browse/JDK-8245466, the backport is proposed at OpenJDK but not yet implemented. But maybe I'm missing something. |
TLS 1.3 should have landed in 8u and is targeted for release in October: It should appear in one of the next nightly builds if it hasn't already. |
Fixes #10335 ### Motivation See #10335. TLSv1.3 support has been introduced in the JDK since [JDK 8 since 8u261](adoptium/temurin-build#1254 (comment)). TLS protocol TLSv1.1 and TLSv1 aren't considered secure. ### Modifications - change default TLS protocols to TLSv1.3,TLSv1.2 - update tests, docs & config files to reflect the change
Hi @aahlenst running public static void main(String[] args) throws NoSuchAlgorithmException, KeyManagementException {
SSLContext context = SSLContext.getInstance("TLS");
context.init(null, null, null);
String[] supportedProtocols = context.getDefaultSSLParameters().getProtocols();
System.out.println(Arrays.toString(supportedProtocols));
} Prints, But my Java version should have TLSv1.3, any ideas what's wrong please?
|
…e#10598) Fixes apache#10335 ### Motivation See apache#10335. TLSv1.3 support has been introduced in the JDK since [JDK 8 since 8u261](adoptium/temurin-build#1254 (comment)). TLS protocol TLSv1.1 and TLSv1 aren't considered secure. ### Modifications - change default TLS protocols to TLSv1.3,TLSv1.2 - update tests, docs & config files to reflect the change
Oracle released support for TLS 1.3 in Java 11 only: http://openjdk.java.net/jeps/332
Some JDK distributions like Azul have TLS 1.3 support:
https://www.azul.com/press_release/azul-systems-brings-updated-transport-layer-security-to-java-se-8/
Maybe this project maintained by Azul Systems can be used: https://github.com/openjsse/openjsse
Maven: https://search.maven.org/search?q=g:org.openjsse
The text was updated successfully, but these errors were encountered: