RFR: 8280494: (D)TLS signature schemes [v9]

Sean Mullan mullan at openjdk.java.net
Wed Feb 2 22:16:07 UTC 2022


On Wed, 2 Feb 2022 19:12:56 GMT, Xue-Lei Andrew Fan <xuelei at openjdk.org> wrote:

>> This update is to support signature schemes customization for individual (D)TLS connection.  Please review the CSR as well:
>> CSR: https://bugs.openjdk.java.net/browse/JDK-8280495
>> RFE: https://bugs.openjdk.java.net/browse/JDK-8280494
>
> Xue-Lei Andrew Fan has updated the pull request incrementally with one additional commit since the last revision:
> 
>   More update for the sec and impl

On a related issue, have you given any thought as to what the behavior should be if a 3rd-party JSSE provider is not updated to support these new methods? I don't know of a good way to address that since the API is not part of the provider implementation. We need a way to query what parameters a given provider supports, I think.

-------------

PR: https://git.openjdk.java.net/jdk/pull/7252



More information about the security-dev mailing list