Details
-
Type:
Sub-task
-
Status: Closed
-
Priority:
P3
-
Resolution: Delivered
-
Affects Version/s: 11.0.8-oracle, 14.0.2, 15
-
Fix Version/s: 15
-
Component/s: security-libs
-
Labels:
-
Subcomponent:
-
Verification:Verified
Backports
Issue | Fix Version | Assignee | Priority | Status | Resolution | Resolved In Build |
---|---|---|---|---|---|---|
JDK-8245663 | 14.0.2 | Clifford Wayne | P3 | Resolved | Delivered | |
JDK-8245662 | 11.0.8-oracle | Clifford Wayne | P3 | Resolved | Delivered | |
JDK-8245661 | 8u261 | Clifford Wayne | P3 | Resolved | Withdrawn |
Description
In JDK 11 and later, `javax.net.ssl.SSLEngine` by default used client mode when handshaking. As a result, the set of default enabled protocols may differ to what is expected. `SSLEngine` would usually be used in server mode. From this JDK release onwards, `SSLEngine` will default to server mode. The `javax.net.ssl.SSLEngine.setUseClientMode​(boolean mode)` method may be used to configure the mode.
Attachments
Issue Links
- backported by
-
JDK-8245661 Release Note: Default SSLEngine Should Create in Server Role
-
- Resolved
-
-
JDK-8245662 Release Note: Default SSLEngine Should Create in Server Role
-
- Resolved
-
-
JDK-8245663 Release Note: Default SSLEngine Should Create in Server Role
-
- Resolved
-