RFR: 8153005: Upgrade the default PKCS12 encryption/MAC algorithms [v3]
Weijun Wang
weijun at openjdk.java.net
Fri Oct 9 01:33:38 UTC 2020
On Fri, 9 Oct 2020 00:07:39 GMT, Weijun Wang <weijun at openjdk.org> wrote:
>> I tried but cannot find a way to tell if a system is Windows Server 2016 or 2019. Their os.version is all 10.0. I've
>> filed an enhancement at https://bugs.openjdk.java.net/browse/JDK-8254241 for it. That said, I did try running the test
>> on a Windows Server 2019 using new algorithms and it succeeds.
>
> There are existing tests reading openssl generated pkcs12 files in
> https://github.com/openjdk/jdk/tree/master/test/jdk/sun/security/pkcs12/params, it already contains files using both
> weak and strong algorithms.
Update `params/README`, exclude it from the de-BASE64 list (don't know it succeeded) in the `ParamsTest.java` test.
Also remove a useless call in the test.
Thinking about adding a benchmark, but it will be in another commit.
-------------
PR: https://git.openjdk.java.net/jdk/pull/473
More information about the security-dev
mailing list