JDK-8313229 : DHEKeySizing.java should be modified to use TLS versions TLSv1, TLSv1.1, TLSv1.2
  • Type: Bug
  • Component: security-libs
  • Sub-Component: javax.net.ssl
  • Affected Version:
    8u391,11.0.21,11.0.21-oracle,17.0.9,17.0.9-oracle,21 8u391,11.0.21,11.0.21-oracle,17.0.9,17.0.9-oracle,21
  • Priority: P3
  • Status: Resolved
  • Resolution: Fixed
  • Submitted: 2023-07-27
  • Updated: 2024-02-20
  • Resolved: 2023-09-21
The Version table provides details related to the release that this issue/RFE will be addressed.

Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.

To download the current JDK release, click here.
JDK 21 JDK 22
21.0.3-oracleFixed 22 b17Fixed
Related Reports
Relates :  
JDK-8301700 - Increase the default TLS Diffie-Hellman group size from 1024-bit to 2048-bit
Comments
A pull request was submitted for review. URL: https://git.openjdk.org/jdk21u-dev/pull/18 Date: 2023-12-13 16:08:01 +0000
13-12-2023
Fix request [21u] Backporting this for parity with 21.0.3-oracle. Patch applies cleanly and the affected test passes. Additional testing: tier 1 with GHA.
11-12-2023
A pull request was submitted for review. URL: https://git.openjdk.org/jdk21u/pull/422 Date: 2023-12-08 17:56:44 +0000
08-12-2023
Changeset: c698b45a Author: Sean Mullan <mullan@openjdk.org> Date: 2023-09-21 17:31:46 +0000 URL: https://git.openjdk.org/jdk/commit/c698b45a7bcb0eedeed979d482f8ab15cf16baaa
21-09-2023
A pull request was submitted for review. URL: https://git.openjdk.org/jdk/pull/15846 Date: 2023-09-20 19:51:28 +0000
20-09-2023
Update: the current test is actually only testing TLS 1.0. See the getClientContextParameters and getServerContextParameters methods in the test which set the protocol to "TLSv1".
15-09-2023