I am wondering on how to check if current Java version supports TLSv1.3 or not.
In my scenario I am hosting a server which Java clients are connecting via HTTPS (currently TLSv1.2), clients Java version can vary depending on Java client instance. I am in control of the Java clients program versions (remote update), but not the Java (JRE) version itself. I am planning to do support for TLSv1.3 but still supporting the TLSv1.2 and need some elegant way for the client side to figure out which version to use when connecting.
Server side is already supporting TLSv1.3.
Here's some options I have thought but I think these are not the "elegant" way:
- Just try it - catch error and retry with TSLv1.2
- Check the installed Java version number and determine whether to use 1.2 or 1.3 (problem is that implementing version depends on vendor, eg. 8u261-b12 in Oracle, 8u262-b10 Adoptium)
- Somehow check the support internally? How, where, what?
Any suggestions? Particularly on the option 3.
