[14]RFR: 8234728: Some security tests should support TLSv1.3

sibabrata.sahoo at oracle.com sibabrata.sahoo at oracle.com
Thu Dec 12 10:25:22 UTC 2019

Hi Xuelei,

Please review the patch for,
JBS: https://bugs.openjdk.java.net/browse/JDK-8234728 <https://bugs.openjdk.java.net/browse/JDK-8234728>
Webrev: http://cr.openjdk.java.net/~ssahoo/8234728/webrev.00/ <http://cr.openjdk.java.net/~ssahoo/8234728/webrev.00/>

The change it to support few of Tests to support TLSv1.3. Additionally 2 new Tests are added to verify CipherSuites order.
- javax/net/ssl/sanity/ciphersuites/CipherSuitesInOrder.java follows the CipherSuite order from "open/src/java.base/share/classes/sun/security/ssl/CipherSuite.java”. @ignore Tag has been removed and the test has been activated. Few comment correction made in “open/src/java.base/share/classes/sun/security/ssl/CipherSuite.java” too.
- sun/security/util/HostnameMatcher/NullHostnameCheck.java, I changed the keystore to use RSA generated keys instead of DSA to support TLSv1.3.
-There are 2 new Test files to verify Cipher Suites order. I have kept "javax/net/ssl/sanity/ciphersuites/SystemPropCipherSuitesOrder.java” with @ignore tag until the bug is fixed in JDK. Have you created any JBS for it, else I can create it.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mail.openjdk.java.net/pipermail/security-dev/attachments/20191212/c8c8e727/attachment.htm>

More information about the security-dev mailing list