RFR: 8244336: Restrict algorithms at JCE layer [v8]
Valerie Peng
valeriep at openjdk.org
Thu Aug 14 01:11:28 UTC 2025
On Mon, 11 Aug 2025 15:41:12 GMT, Artur Barashev <abarashev at openjdk.org> wrote:
>> Valerie Peng has updated the pull request incrementally with one additional commit since the last revision:
>>
>> Address review comments from Artur and updated tests to leverage Utils.runAndCheckException
>
> test/jdk/java/security/KeyStore/TestDisabledAlgorithms.java line 34:
>
>> 32: * @run main/othervm -Djdk.crypto.disabledAlgorithms="keystore.jkS" TestDisabledAlgorithms keySTORE.jceKs true
>> 33: * @run main/othervm -Djdk.crypto.disabledAlgorithms="KEYstORE.what" TestDisabledAlgorithms KeYStore.JKs false
>> 34: * @run main/othervm -Djdk.crypto.disabledAlgorithms="keystOre.jceKS" TestDisabledAlgorithms KEysTORE.JKS false
>
> Why do we set `jdk.crypto.disabledAlgorithms` property on the command line and also inside the test's `main` method?
This is for checking that same-name system property overrides the security property.
-------------
PR Review Comment: https://git.openjdk.org/jdk/pull/26377#discussion_r2274989102
More information about the security-dev
mailing list