Forum Stats

  • 3,816,896 Users
  • 2,259,247 Discussions
  • 7,893,584 Comments

Discussions

Why is there a mix of TLS 1.3 and 1.2?

Hi,

I have tested TLS 1.3 vs a server that supports it. It is a bit confusing since I see both TLS 1.2 and 1.3 write/reads when I have enabled logging using -Djavax.net.debug=all

I have changed my code and use jdk 11 latest (11.0.14).

Here is the code change:

 private static final String[] VERSIONS = new String[] { "TLSv1.2","TLSv1.3"};
  ((SSLSocket) socket).setEnabledProtocols(VERSIONS);

I have attached the log.

Here are my questions:

  1. Why is there a mix of TLS 1.3 and 1.2 READ and WRITE? There are |WRITE: TLSv1.3 handshake, length = 2064 (no READ). READ: TLSv1.2 handshake, length = 122 ( no WRITE). It seems that the 1.3 was negotiated.
  2. When 1.3 is negotiated should not READ and WRITE both be using 1.3?
  3. Is my handshake complete?


I have attached my log too.

br,

Tagged: