RFR: 8280494: (D)TLS signature schemes [v9]
Xue-Lei Andrew Fan
xuelei at openjdk.java.net
Wed Feb 2 22:45:14 UTC 2022
On Wed, 2 Feb 2022 22:13:07 GMT, Sean Mullan <mullan at openjdk.org> wrote:
> On a related issue, have you given any thought as to what the behavior should be if a 3rd-party JSSE provider is not updated to support these new methods? I don't know of a good way to address that since the API is not part of the provider implementation. We need a way to query what parameters a given provider supports, I think.
It's a good question. A 3rd party provider need to support to the new APIs. Otherwise, the spec does not really work except to use the default values. It might be overweighted if the Java SE API has to detect the implementation details.
-------------
PR: https://git.openjdk.java.net/jdk/pull/7252
More information about the security-dev
mailing list