RFR: 8301379: Verify TLS_ECDH_* cipher suites cannot be negotiated [v3]
Matthew Donovan
mdonovan at openjdk.org
Tue Jun 13 11:17:27 UTC 2023
On Fri, 9 Jun 2023 17:25:52 GMT, Sean Mullan <mullan at openjdk.org> wrote:
>> Matthew Donovan has updated the pull request incrementally with one additional commit since the last revision:
>>
>> added all disabled ciphers
>
> test/jdk/javax/net/ssl/TLS/TLSWontNegotiateDisabledCipherAlgos.java line 35:
>
>> 33: * @test id=Server
>> 34: * @bug 8301379
>> 35: * @summary Verify that Java will not negotiate disabled cipher suites when the
>
> This test could be enhanced to test all of the other suites that are disabled. I think that might be a good idea, to centralize that. Although you could do it as a follow-on RFE.
I added all of the disable ciphers that are listed in DisabledAlgorithms. Let me know if this isn't what you were thinking. Thanks!
-------------
PR Review Comment: https://git.openjdk.org/jdk/pull/14316#discussion_r1227950487
More information about the security-dev
mailing list