Re: TLSv1.3 and 9.0.next

2018-10-15 Thread Mark Thomas
On 11/10/18 21:39, Mark Thomas wrote: > My plan going forwards is as follows: > > - give folks until early next week to review the native changes > - tag 1.2.18 early next week Just a heads up that I plan to tag 1.2.18 tomorrow. Mark > - hopefully release 1.2.18 late next week > - update

Re: TLSv1.3 and 9.0.next

2018-10-12 Thread Rémy Maucherat
On Fri, Oct 12, 2018 at 9:59 PM Rainer Jung wrote: > Am 12.10.2018 um 19:39 schrieb Mark Thomas: > > On 12/10/18 15:55, George Stanchev wrote: > >> Mark, > >> > >> Can you elaborate around the following: > >> > >> > >> All combinations support server initiated requests for client > certificates

Re: TLSv1.3 and 9.0.next

2018-10-12 Thread Rainer Jung
Am 12.10.2018 um 19:39 schrieb Mark Thomas: On 12/10/18 15:55, George Stanchev wrote: Mark, Can you elaborate around the following: All combinations support server initiated requests for client certificates apart from NIO[2]+JSSE on Java 11 as the Java 11 TLSv1.3 implementation does not

Re: TLSv1.3 and 9.0.next

2018-10-12 Thread Mark Thomas
On 12/10/18 19:08, Christopher Schultz wrote: > Mark, > > On 10/11/18 16:39, Mark Thomas wrote: >> Hi, > >> As you probably noticed I've been working on TLS 1.3 support, >> building on Chris's work in BZ 62748. > >> The current status is the Tomcat Native 1.2.x and Tomcat 9.0.x >> support

Re: TLSv1.3 and 9.0.next

2018-10-12 Thread Christopher Schultz
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Mark, On 10/11/18 16:39, Mark Thomas wrote: > Hi, > > As you probably noticed I've been working on TLS 1.3 support, > building on Chris's work in BZ 62748. > > The current status is the Tomcat Native 1.2.x and Tomcat 9.0.x > support TLSv1.3 in

Re: TLSv1.3 and 9.0.next

2018-10-12 Thread Mark Thomas
On 12/10/18 15:55, George Stanchev wrote: > Mark, > > Can you elaborate around the following: > > > All combinations support server initiated requests for client certificates > apart from NIO[2]+JSSE on Java 11 as the Java 11 TLSv1.3 implementation does > not include post handshake

RE: TLSv1.3 and 9.0.next

2018-10-12 Thread George Stanchev
Mark, Can you elaborate around the following: All combinations support server initiated requests for client certificates apart from NIO[2]+JSSE on Java 11 as the Java 11 TLSv1.3 implementation does not include post handshake authentication. What are the use cases affected. Is it for TLS