RFR: 8350807: Certificates using MD5 algorithm that are disabled by default are incorrectly allowed in TLSv1.3 when re-enabled [v3]
Artur Barashev
abarashev at openjdk.org
Tue Apr 15 17:51:36 UTC 2025
On Tue, 15 Apr 2025 14:30:22 GMT, Sean Mullan <mullan at openjdk.org> wrote:
>> Artur Barashev has updated the pull request incrementally with one additional commit since the last revision:
>>
>> Update Copyright
>
> test/jdk/sun/security/ssl/SignatureScheme/MD5NotAllowedInTLS13CertificateSignature.java line 57:
>
>> 55: // Certificates and keys used in the test.
>> 56: // Certificates are signed with signature using MD5WithRSA algorithm.
>> 57: static String trusedCertStr =
>
> We try to avoid hard-coding certificates in tests - can you create these certs as part of a test setup using keytool instead?
Done!
-------------
PR Review Comment: https://git.openjdk.org/jdk/pull/24425#discussion_r2045163151
More information about the security-dev
mailing list