[jdk8u-dev] RFR: 8279164: Disable TLS_ECDH_* cipher suites [v2]
Andrew John Hughes
andrew at openjdk.org
Sat Jun 15 12:50:17 UTC 2024
On Sat, 15 Jun 2024 02:52:20 GMT, Martin Balao <mbalao at openjdk.org> wrote:
> Note: I was a bit puzzled to see "SSL_RSA_WITH_3DES_EDE_CBC_SHA" in the 11u-dev patch as 8163327 has not been backported to 11u. Looks like the JDK main line patch was extending the `disabled_ciphersuites` list in DisabledAlgorithms.java but in 11u they (mistakenly?) added `SSL_RSA_WITH_3DES_EDE_CBC_SHA`.
Yes, I noted that above and on the 17u backport: https://github.com/openjdk/jdk17u-dev/pull/2559#issuecomment-2168097720 I'll open a bug to fix 11u & 17u. It looks like 8u avoided the issue by starting from the trunk patch.
-------------
PR Comment: https://git.openjdk.org/jdk8u-dev/pull/519#issuecomment-2169514373
More information about the jdk8u-dev
mailing list