From e9b2d8522df084a0f8c19eb56e91d6d61bcb673b Mon Sep 17 00:00:00 2001
From: SSpirits <shadowyspirits@outlook.com>
Date: Thu, 11 Mar 2021 18:11:29 +0800
Subject: [PATCH] [ISSUE #1233] Fix CVE-2011-1473

---
 .../main/java/org/apache/rocketmq/remoting/netty/TlsHelper.java | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/remoting/src/main/java/org/apache/rocketmq/remoting/netty/TlsHelper.java b/remoting/src/main/java/org/apache/rocketmq/remoting/netty/TlsHelper.java
index efbdd52c..5003ce39 100644
--- a/remoting/src/main/java/org/apache/rocketmq/remoting/netty/TlsHelper.java
+++ b/remoting/src/main/java/org/apache/rocketmq/remoting/netty/TlsHelper.java
@@ -133,7 +133,7 @@ public class TlsHelper {
                 SelfSignedCertificate selfSignedCertificate = new SelfSignedCertificate();
                 return SslContextBuilder
                     .forServer(selfSignedCertificate.certificate(), selfSignedCertificate.privateKey())
-                    .sslProvider(SslProvider.JDK)
+                    .sslProvider(provider)
                     .clientAuth(ClientAuth.OPTIONAL)
                     .build();
             } else {
-- 
GitLab