[15] RFR: 8238560: Cleanup and consolidate algorithms in the jdk.tls.legacyAlgorithms security property

Sean Mullan sean.mullan at oracle.com
Thu Feb 20 13:01:59 UTC 2020

Please review this change to cleanup and consolidate the default value 
of the jdk.tls.legacyAlgorithms security property. The following changes 
have been made:

1. Changed K_NULL, C_NULL, M_NULL to NULL, which will cover all null 
cipher suites. The *_NULL algorithms were implementation details and not 
compliant with the specification of the property.

2. Changed DH_anon, ECDH_anon to anon, which will cover all cipher 
suites using anonymous authentication.

3. Changed RC4_128, RC4_40 to RC4, which will cover all cipher suites 
using RC4 for encryption.

4. Changed DES_CBC, DES40_CBC to DES, which will cover all cipher suites 
using DES for encryption.

I also added a new regression test.

CSR: https://bugs.openjdk.java.net/browse/JDK-8239377
webrev: http://cr.openjdk.java.net/~mullan/webrevs/8238560/webrev.00/


More information about the security-dev mailing list