Disabling TLSv1.0 for Jsch in android application

Asked Oct 30 '22 at 15:44

Active Oct 30 '22 at 17:07

Viewed 152 times

I know that it is possible to disable TLSv1.0 (or others) in Java using JVM parameters as mentioned in Question 1 or Question 2. Is there any way to disable it in an android App?

I am using JSch to do ssh port forwarding but I don't want TLS Client Hello in TLSv1.0. JSch doesn't have any API for using TLSv1.2 only. So I decided to disable TLSv1.0 application wide.

I already used this but no success.

System.setProperty("https.protocols", "TLSv1.2");

Security.getProviders()
SSLContext.getDefault().getSupportedSSLParameters().setAlgorithmConstraints(algo);

edited Oct 30 '22 at 17:07

CommonsWare

986,068
189
2,389
2,491

asked Oct 30 '22 at 15:44

raitech

What do you mean by "disable"? If you are using OkHttp (or things layered on it, like Retrofit) for your app's HTTPS requests, you can [specify which TLS versions you wish to support](https://square.github.io/okhttp/features/https/). – CommonsWare Oct 30 '22 at 15:48
Question edited – raitech Oct 30 '22 at 16:50
Jsch uses the SSH protocol, not TLS. I'm not sure what you're asking. – President James K. Polk Oct 30 '22 at 21:56
Have you tried System.setProperty("jdk.tls.client.protocols","TLSv1.2") ? – Dimitri Tenenbaum Nov 07 '22 at 21:18

Disabling TLSv1.0 for Jsch in android application

0 Answers0