[15] RFR: 8238560: Cleanup and consolidate algorithms in the jdk.tls.legacyAlgorithms security property
Sean Mullan
sean.mullan at oracle.com
Thu Feb 20 13:01:59 UTC 2020
Please review this change to cleanup and consolidate the default value
of the jdk.tls.legacyAlgorithms security property. The following changes
have been made:
1. Changed K_NULL, C_NULL, M_NULL to NULL, which will cover all null
cipher suites. The *_NULL algorithms were implementation details and not
compliant with the specification of the property.
2. Changed DH_anon, ECDH_anon to anon, which will cover all cipher
suites using anonymous authentication.
3. Changed RC4_128, RC4_40 to RC4, which will cover all cipher suites
using RC4 for encryption.
4. Changed DES_CBC, DES40_CBC to DES, which will cover all cipher suites
using DES for encryption.
I also added a new regression test.
CSR: https://bugs.openjdk.java.net/browse/JDK-8239377
webrev: http://cr.openjdk.java.net/~mullan/webrevs/8238560/webrev.00/
Thanks,
Sean
More information about the security-dev
mailing list