Quick follow up. Thomas and I exchanged a couple messages off-alias but
I wanted to summarize it here in case others were following this
thread. The short story: Based on what is in RFC 5246 with respect to
the RSA client key exchange message, the Java client is putting the
correct version in
Hi,
here is an demo to show the problem.
a) The problem is an problem between the key exchange message and the
enabled protocols and the server selected protocol.
b) In this demo it only check if the protocol of the key exchange is
TLSv1.2 while SSLv3 is expected.
c) It also show another issue
Hi,
i am not sure if there is already an bug opened. But i found an error in
the SSL-Socket handling.
If the ssl client socket enabled SSLv3-TLSv1.2 and the server select
SSLv3 the client later on send an
"RSA ClientKeyExchange" with version TLSv1.2. I added the relevant parts
of the debug log
