Re: TLSv1.3 and 9.0.next

2018-10-15 Thread Mark Thomas
On 11/10/18 21:39, Mark Thomas wrote: > My plan going forwards is as follows: > > - give folks until early next week to review the native changes > - tag 1.2.18 early next week Just a heads up that I plan to tag 1.2.18 tomorrow. Mark > - hopefully release 1.2.18 late next week > - update 9.0

Re: TLSv1.3 and 9.0.next

2018-10-12 Thread Rémy Maucherat
On Fri, Oct 12, 2018 at 9:59 PM Rainer Jung wrote: > Am 12.10.2018 um 19:39 schrieb Mark Thomas: > > On 12/10/18 15:55, George Stanchev wrote: > >> Mark, > >> > >> Can you elaborate around the following: > >> > >> > >> All combinations support server initiated requests for client > certificates

Re: TLSv1.3 and 9.0.next

2018-10-12 Thread Rainer Jung
Am 12.10.2018 um 19:39 schrieb Mark Thomas: On 12/10/18 15:55, George Stanchev wrote: Mark, Can you elaborate around the following: All combinations support server initiated requests for client certificates apart from NIO[2]+JSSE on Java 11 as the Java 11 TLSv1.3 implementation does not inc

Re: TLSv1.3 and 9.0.next

2018-10-12 Thread Mark Thomas
On 12/10/18 19:08, Christopher Schultz wrote: > Mark, > > On 10/11/18 16:39, Mark Thomas wrote: >> Hi, > >> As you probably noticed I've been working on TLS 1.3 support, >> building on Chris's work in BZ 62748. > >> The current status is the Tomcat Native 1.2.x and Tomcat 9.0.x >> support TLSv1.

Re: TLSv1.3 and 9.0.next

2018-10-12 Thread Christopher Schultz
-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Mark, On 10/11/18 16:39, Mark Thomas wrote: > Hi, > > As you probably noticed I've been working on TLS 1.3 support, > building on Chris's work in BZ 62748. > > The current status is the Tomcat Native 1.2.x and Tomcat 9.0.x > support TLSv1.3 in any

Re: TLSv1.3 and 9.0.next

2018-10-12 Thread Mark Thomas
ption. With pure Java (JSSE, Java 11+) it is not supported because Java has not (yet?) implemented post handshake authentication. HTH, Mark > > Thanks in advance, > George > > -Original Message- > From: Mark Thomas > Sent: Thursday, October 11, 2018 2:39 PM >

RE: TLSv1.3 and 9.0.next

2018-10-12 Thread George Stanchev
upgrade when a certain resource is being requested? Thanks in advance, George -Original Message- From: Mark Thomas Sent: Thursday, October 11, 2018 2:39 PM To: Tomcat Developers List Subject: TLSv1.3 and 9.0.next Hi, As you probably noticed I've been working on TLS 1.3 su

TLSv1.3 and 9.0.next

2018-10-11 Thread Mark Thomas
Hi, As you probably noticed I've been working on TLS 1.3 support, building on Chris's work in BZ 62748. The current status is the Tomcat Native 1.2.x and Tomcat 9.0.x support TLSv1.3 in any of the following combinations: - NIO[2]+JSSE on Java 11 - NIO[2]+OpenSSL on Java 8 onwards - APR/Native on