RFR: 8350807: Certificates using MD5 algorithm that are disabled by default are incorrectly allowed in TLSv1.3 when re-enabled [v11]
Artur Barashev
abarashev at openjdk.org
Thu Apr 17 01:28:46 UTC 2025
On Wed, 16 Apr 2025 22:01:04 GMT, Mark Powers <mpowers at openjdk.org> wrote:
>> Artur Barashev has updated the pull request incrementally with one additional commit since the last revision:
>>
>> Further optimization: remove unnecessary updates
>
> test/jdk/sun/security/ssl/SignatureScheme/MD5NotAllowedInTLS13CertificateSignature.java line 131:
>
>> 129:
>> 130: // create a key store
>> 131: KeyStore ks = KeyStore.getInstance("JKS");
>
> I wonder if PKCS12 would be a better choice in the long run.
Updated, thanks!
-------------
PR Review Comment: https://git.openjdk.org/jdk/pull/24425#discussion_r2048041727
More information about the net-dev
mailing list