RFR: 8349583: Add mechanism to disable signature schemes based on their TLS scope [v3]
Artur Barashev
abarashev at openjdk.org
Mon Feb 24 21:13:58 UTC 2025
On Mon, 24 Feb 2025 20:13:24 GMT, Anthony Scarpino <ascarpino at openjdk.org> wrote:
>> We can't make `SSLCryptoScope` public, it's not visible to `DisabledAlgorithmConstraints` otherwise as they are in different modules.
>
> Neither are public APIs. Is there a public API between that is preventing this? They are both in the same java.base module. They are in different packages, but both are not public (sun.security.ssl and sun.security.util).
I meant they are in different packages. We need to make SSLCryptoScope public to exposed outside of `ssl` package.
-------------
PR Review Comment: https://git.openjdk.org/jdk/pull/23681#discussion_r1968424276
More information about the security-dev
mailing list