Collectives™ on Stack Overflow
Find centralized, trusted content and collaborate around the technologies you use most.
Learn more about Collectives
Teams
Q&A for work
Connect and share knowledge within a single location that is structured and easy to search.
Learn more about Teams
It may depend upon a few things. For example:
1) What version of java are you using and are you using Netty as a client or server?
Java 1.7 enables TLS 1.2 in server mode but disables it in client mode by default. See
https://blogs.oracle.com/java-platform-group/entry/java_8_will_use_tls
for reference.
2) Are you using the Java or OpenSSL JNI providers?
That java provider will have the typical java configuration but the OpenSSL provider will depend upon the version of OpenSSL you link in.
3) What version of Netty are you using?
I am not too familiar with the 3.9x branches so you will have to investigate if they are consistent with 4.x and 5.0.
For a common use case (Java 8, Netty Server, Java ssl providers, netty 4.x or 5.x) Netty will support TLS 1.0, 1.1, 1.2 as defined
here
if they are supported by the SSLEngine you configure in your pipeline.
Netty uses Java SSL engine internally as follows inside it's handler chain.
pipeline.addLast("ssl", new SslHandler(sslEngine));
So the TLS version it supports depends on the JDK version you use.
For an example if you sre using JDK 1.6, it supports TLSv1 where as JDK 1.7 supports, TLSv1,TLSv1.1,TLSv1.2.
Regards,
Ravindra.
Thanks for contributing an answer to Stack Overflow!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
