andreacavalli/netty5
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
fd47554669
netty5/handler
History
Norman Maurer fd47554669
Only suppert TLSv1.3 when JDK does support it as well (#11604) 
Motivation:

We tightly integrate the TrustManger and KeyManager into our native SSL implementation which means that both of them need to support TLSv1.3 as protocol. This is not always the case and so can produce runtime exceptions.

As TLSv1.3 support was backported to Java8 quite some time now we should be a bit more conservative and only enable TLSv1.3 for our native implementation if the JDK implementation supports it as well. This also allows us to remove some hacks we had in place to be able to support it before in Java8.

Modifications:

- Only enable TLSv1.3 support for our native SSL implementation when the JDK supports it as well
- Remove OpenSslTlsv13X509ExtendedTrustManager as its not needed anymore

Result:

Fixes https://github.com/netty/netty/issues/11589
2021-08-20 11:41:52 +02:00
..
src Only suppert TLSv1.3 when JDK does support it as well (#11604) 2021-08-20 11:41:52 +02:00
pom.xml [maven-release-plugin] prepare for next development iteration 2021-08-16 08:23:23 +00:00