You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@qpid.apache.org by "Alex Rudyy (JIRA)" <ji...@apache.org> on 2019/07/31 09:45:00 UTC

[jira] [Created] (QPID-8353) [Broker-J][JMS AMQP 0-x] Add support for TLSv1.3

Alex Rudyy created QPID-8353:
--------------------------------

             Summary: [Broker-J][JMS AMQP 0-x] Add support for TLSv1.3
                 Key: QPID-8353
                 URL: https://issues.apache.org/jira/browse/QPID-8353
             Project: Qpid
          Issue Type: Improvement
          Components: Broker-J, JMS AMQP 0-x
            Reporter: Alex Rudyy
             Fix For: qpid-java-broker-8.0.0, qpid-java-broker-7.1.4


As part of QPID-7056 the functionality for establishing TLS connectivity in Qpid Broker-J and JMS client for AMQP 0-x have been changed to enforce creation of SSLContext with a hard-coded sub-set of TLS protocols (TLSv1.2, TLSv1.1, TLS, TLSv1).  See {{SSLUtil#tryGetSSLContext()}}. As result, both broker and client might not be able to establish TLSv1.3 connections when JDK 11 or above is used unless TLSv1.2, TLSv1.1 are explicitly blacklisted. The code needs to be improved to allow TLSv1.3. 



--
This message was sent by Atlassian JIRA
(v7.6.14#76016)

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@qpid.apache.org
For additional commands, e-mail: dev-help@qpid.apache.org