diff options
author | Bjørn Christian Seime <bjorncs@verizonmedia.com> | 2019-10-03 16:00:51 +0200 |
---|---|---|
committer | Bjørn Christian Seime <bjorncs@verizonmedia.com> | 2019-10-03 16:04:01 +0200 |
commit | 32eb834cb08a7646e295794010ef483ad354bc42 (patch) | |
tree | 153add7d39d4fe44d0369d9c53d9ed911fb63376 /security-utils | |
parent | 4f8280c6285adafd95a8059f7440b25aa6494ac0 (diff) |
Create SSLContext that supports all TLS versions
- Previous value "TLSv1.2" also enabled older SSL/TLS versions
- The actual versions enabled must be restricted on the SSLSocket/SSLEngine
instance (using a SSLParameters object).
Diffstat (limited to 'security-utils')
-rw-r--r-- | security-utils/src/main/java/com/yahoo/security/SslContextBuilder.java | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/security-utils/src/main/java/com/yahoo/security/SslContextBuilder.java b/security-utils/src/main/java/com/yahoo/security/SslContextBuilder.java index 4f8919cdd5e..08ebba1670d 100644 --- a/security-utils/src/main/java/com/yahoo/security/SslContextBuilder.java +++ b/security-utils/src/main/java/com/yahoo/security/SslContextBuilder.java @@ -122,7 +122,7 @@ public class SslContextBuilder { public SSLContext build() { try { - SSLContext sslContext = SSLContext.getInstance("TLSv1.2"); + SSLContext sslContext = SSLContext.getInstance("TLS"); TrustManager[] trustManagers = new TrustManager[] { trustManagerFactory.createTrustManager(trustStoreSupplier.get()) }; X509ExtendedKeyManager keyManager = this.keyManager != null ? this.keyManager |