[Bug 54690] HTTPS BIO/NIO connector does not enable TLS 1.1 and TLS 1.2 by default

bugzilla Wed, 13 Mar 2013 10:12:06 -0700

https://issues.apache.org/bugzilla/show_bug.cgi?id=54690


--- Comment #1 from Ognjen Blagojevic <ognjen.d.blagoje...@gmail.com> ---
Here is a simple class to demonstrate Oracle JDK 7 behavior:

import java.net.ServerSocket;
import java.util.Arrays;

import javax.net.ssl.SSLContext;
import javax.net.ssl.SSLServerSocket;
import javax.net.ssl.SSLServerSocketFactory;

public class SSLProtocolsTest {

    public static void main(String[] args) throws Exception {
        SSLContext context = SSLContext.getInstance("TLS");
        context.init(null, null, null);

        SSLServerSocketFactory sslProxy = context.getServerSocketFactory();
        ServerSocket ssocket = sslProxy.createServerSocket(443);

        SSLServerSocket socket = (SSLServerSocket) ssocket;
        // Prints: [SSLv2Hello, SSLv3, TLSv1, TLSv1.1, TLSv1.2]
        System.out.println(" Socket enabled protocols: " +
Arrays.asList(socket.getEnabledProtocols()));

       
socket.setEnabledProtocols(context.getDefaultSSLParameters().getProtocols());
        // Prints: [SSLv3, TLSv1]
        System.out.println("Default enabled protocols: " +
Arrays.asList(socket.getEnabledProtocols()));
    }

}

-- 
You are receiving this mail because:
You are the assignee for the bug.

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org
For additional commands, e-mail: dev-h...@tomcat.apache.org

[Bug 54690] HTTPS BIO/NIO connector does not enable TLS 1.1 and TLS 1.2 by default

Reply via email to