[PATCH] 6956398: make ephemeral DH key match the length of the certificate key
Omair Majid
omajid at redhat.com
Thu Apr 14 02:27:34 UTC 2016
* Andrew Hughes <gnu.andrew at redhat.com> [2016-04-13 21:37]:
> Webrev: http://cr.openjdk.java.net/~andrew/jdk7u/6956398/webrev.01/
> 8 changeset: http://hg.openjdk.java.net/jdk8u/jdk8u/jdk/rev/0d5f4f1782e8
>
> This patch has been in IcedTea 2.x since the 2.5.5 release on 2015-04-14.
>
> The changeset is nearly identical to the one in 8, with the additional
> change of having to add the parseUnsignedInt methods from OpenJDK 8's
> java.lang.Integer as private methods in ServerHandshaker.
>
> The history in IcedTea is slightly more involved because the default
> was originally changed, so that the backport caused less impact, but
> this was reversed in 2.5.6 (2015-07-22) by PR2487 [0] [1] as a
> response to CVE-2015-4000 (LOGJAM).
>
> Ok to push?
Looks good to me.
Thanks,
Omair
--
PGP Key: 66484681 (http://pgp.mit.edu/)
Fingerprint = F072 555B 0A17 3957 4E95 0056 F286 F14F 6648 4681
More information about the jdk7u-dev
mailing list