JSSE patches for HonorCipherOrder and preventing client-initiated renegotiations

Neale Rudd neale at metawerx.net
Sat Mar 24 06:19:23 UTC 2012


Hi Guys,

Just joined the list, nice to meet you.

I have developed two changes for JSSE which add the ability to use an HonorCipherOrder feature (an option in openssl) and to prevent client-initiated renegotiations (like openssl does now by default).

These work fine in my local tests and on the ssllabs test.

I've submitted patches for Tomcat before, but I'm new to contributing to openjdk.  Therefore, I am interested in teaming up with 1 or more other developers to sponsor me, offer relevant advice, review these patches and develop the corresponding unit tests.

If you would like to team up on these two, please contact me.

Best Regards,
Neale Rudd
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mail.openjdk.org/pipermail/security-dev/attachments/20120324/9d627c48/attachment.htm>


More information about the security-dev mailing list