RFR: 8325766: Review seclibs tests for cert expiry [v3]
Artur Barashev
abarashev at openjdk.org
Fri Apr 18 15:42:09 UTC 2025
On Fri, 18 Apr 2025 14:24:10 GMT, Matthew Donovan <mdonovan at openjdk.org> wrote:
>> test/jdk/sun/net/www/protocol/https/HttpsURLConnection/IPIdentities.java line 243:
>>
>>> 241: .addBasicConstraintsExt(false, false, -1)
>>> 242: .addExtension(CertificateBuilder.createIPSubjectAltNameExt(true, "127.0.0.1"))
>>> 243: .build(trustedCert, caKeys.getPrivate(), "MD5WithRSA");
>>
>> MD5 algorithm is not allowed in TLSv1.3
>
> I'll address this in [JDK-8353738](https://bugs.openjdk.org/browse/JDK-8353738)
Sounds good, thanks!
-------------
PR Review Comment: https://git.openjdk.org/jdk/pull/23700#discussion_r2050786190
More information about the net-dev
mailing list