RFR: 8244336: Restrict algorithms at JCE layer [v2]
Valerie Peng
valeriep at openjdk.org
Wed Aug 6 03:07:06 UTC 2025
On Thu, 31 Jul 2025 18:23:35 GMT, Sean Mullan <mullan at openjdk.org> wrote:
>> Valerie Peng has updated the pull request incrementally with one additional commit since the last revision:
>>
>> Address review comments from Sean and Tony.
>
> src/java.base/share/conf/security/java.security line 801:
>
>> 799: # its algorithm is the transformation string.
>> 800: #
>> 801: # Note: Entries with unsupported services will be ignored
>
> Suggest: Services with unrecognized or unsupported algorithms will be ignored.
Per the discussion regarding the throwing `IllegalArgumentException` for invalid entries, I will change this to
# Note: IllegalArgumentException will be thrown if the property value contains
# entries with invalid syntax or unsupported services.
-------------
PR Review Comment: https://git.openjdk.org/jdk/pull/26377#discussion_r2255751466
More information about the security-dev
mailing list