netty5

History

Zhao Yang b002f1ffc1 Changed Netty JDK SSL to use default protocols instead of hardcoded supported (#9707 ) Motivation: Netty should respect JVM flags to control SSL protocols, eg. `-Djdk.tls.client.protocols` Modification: Changed `JdkSslContext` to use `SSLContext.getDefaultSSLParameters().getProtocols()` instead of `engine.getSupportedProtocols()` which is hardcoded as `SSLv2Hello, SSLv3, TLSv1, TLSv1.1, TLSv1.2`. Result: Without `-Djdk.tls.client.protocols`, `SSLContext.getDefaultSSLParameters().getProtocols()` returns `TLSv1, TLSv1.1, TLSv1.2`. With `-Djdk.tls.client.protocols=TLSv1.2`, `SSLContext.getDefaultSSLParameters().getProtocols()` returns `TLSv1.2`. Fixes #9706	2019-10-25 08:43:39 +02:00
..
src	Changed Netty JDK SSL to use default protocols instead of hardcoded supported (#9707 )	2019-10-25 08:43:39 +02:00
pom.xml	Add tests for using Amazon Corretto Crypto Provider with Netty (#9480 )	2019-08-20 14:56:03 +02:00

Zhao Yang b002f1ffc1 Changed Netty JDK SSL to use default protocols instead of hardcoded supported (#9707 )

Motivation:

Netty should respect JVM flags to control SSL protocols, eg. `-Djdk.tls.client.protocols`

Modification:

Changed `JdkSslContext` to use `SSLContext.getDefaultSSLParameters().getProtocols()` instead of `engine.getSupportedProtocols()` which is hardcoded as `SSLv2Hello, SSLv3, TLSv1, TLSv1.1, TLSv1.2`.

Result:

Without `-Djdk.tls.client.protocols`, `SSLContext.getDefaultSSLParameters().getProtocols()` returns `TLSv1, TLSv1.1, TLSv1.2`.

With `-Djdk.tls.client.protocols=TLSv1.2`, `SSLContext.getDefaultSSLParameters().getProtocols()` returns `TLSv1.2`.

Fixes #9706

2019-10-25 08:43:39 +02:00

src

Changed Netty JDK SSL to use default protocols instead of hardcoded supported (#9707 )

2019-10-25 08:43:39 +02:00

pom.xml

Add tests for using Amazon Corretto Crypto Provider with Netty (#9480 )

2019-08-20 14:56:03 +02:00