RFR: 8340321: Disable SHA-1 in TLS/DTLS 1.2 handshake signatures [v3]
Artur Barashev
abarashev at openjdk.org
Fri Apr 4 20:44:28 UTC 2025
> Disable SHA-1 in TLS/DTLS 1.2 handshake signatures (but not in certificate signatures).
> https://www.rfc-editor.org/rfc/rfc9155.html
Artur Barashev has updated the pull request incrementally with one additional commit since the last revision:
Disable ECDSA_SHA1 to be used for TLSv1.3 handshake signatures
-------------
Changes:
- all: https://git.openjdk.org/jdk/pull/24367/files
- new: https://git.openjdk.org/jdk/pull/24367/files/efe2b96b..4335dfc9
Webrevs:
- full: https://webrevs.openjdk.org/?repo=jdk&pr=24367&range=02
- incr: https://webrevs.openjdk.org/?repo=jdk&pr=24367&range=01-02
Stats: 10 lines in 2 files changed: 6 ins; 0 del; 4 mod
Patch: https://git.openjdk.org/jdk/pull/24367.diff
Fetch: git fetch https://git.openjdk.org/jdk.git pull/24367/head:pull/24367
PR: https://git.openjdk.org/jdk/pull/24367
More information about the security-dev
mailing list