From 9f64cc7c606be4fd524044027429ac975c4bb417 Mon Sep 17 00:00:00 2001
From: zzz <zzz@mail.i2p>
Date: Fri, 21 Dec 2018 11:35:15 +0000
Subject: [PATCH] TLSv1.3 notes

---
 core/java/src/net/i2p/util/I2PSSLSocketFactory.java | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/core/java/src/net/i2p/util/I2PSSLSocketFactory.java b/core/java/src/net/i2p/util/I2PSSLSocketFactory.java
index e3cb345abb..23252bb5b3 100644
--- a/core/java/src/net/i2p/util/I2PSSLSocketFactory.java
+++ b/core/java/src/net/i2p/util/I2PSSLSocketFactory.java
@@ -132,7 +132,12 @@ public class I2PSSLSocketFactory {
     /**
      *  Java 7 does not enable 1.1 or 1.2 by default on the client side.
      *  Java 8 does enable 1.1 and 1.2 by default on the client side.
-     *  1.3 in Java 11.
+     *  1.3 in Java 11, but it requires:
+     *    ChaCha20/Poly1305 in Java 12 (we could add a provider)
+     *    X25519 in Java 13 but may be pulled in to 12 (can't use our unsigned provider)
+     *    Ed25519 in Java 13 (but we can use our provider)
+     *    ref: https://openjdk.java.net/jeps/332
+     *
      *  ref: http://docs.oracle.com/javase/7/docs/technotes/guides/security/SunProviders.html
      *  Unmodifiable.
      *  Public for RouterConsoleRunner.
-- 
GitLab