Details
-
Bug
-
Resolution: Duplicate
-
P3
-
None
-
6u21, 7
-
generic, sparc
-
generic, solaris_10
Description
TLS specification (RFC 5246) requires that no matter initial handshake or session resumption, ClientHello.client_version SHOULD be the latest version supported by the client:
client_version
The version of the TLS protocol by which the client wishes to
communicate during this session. This SHOULD be the latest
(highest valued) version supported by the client. For this
version of the specification, the version will be 3.3 (see
Appendix E for details about backward compatibility).
However, for abbreviated handshake(session resumption), SunJSSE use the negotiated protocol version. Need to evaluate the interoperability and necessities about whether we should switch to use the latest version supported in abbreviated handshakes.
See: http://www.ietf.org/mail-archive/web/tls/current/msg06842.html
client_version
The version of the TLS protocol by which the client wishes to
communicate during this session. This SHOULD be the latest
(highest valued) version supported by the client. For this
version of the specification, the version will be 3.3 (see
Appendix E for details about backward compatibility).
However, for abbreviated handshake(session resumption), SunJSSE use the negotiated protocol version. Need to evaluate the interoperability and necessities about whether we should switch to use the latest version supported in abbreviated handshakes.
See: http://www.ietf.org/mail-archive/web/tls/current/msg06842.html
Attachments
Issue Links
- duplicates
-
-
- Closed
-
- relates to
-
JDK-4873188 Support TLS 1.1
-
- Closed
-
-
-
- Closed
-