RFR: 8346129: Simplify EdDSA & XDH curve name usage [v4]
Anthony Scarpino
ascarpino at openjdk.org
Thu Mar 20 16:55:12 UTC 2025
On Fri, 14 Mar 2025 19:44:16 GMT, Weijun Wang <weijun at openjdk.org> wrote:
>> I'm confused by this comment. With removing the hardcoded aliases in AbstractAlgorithmConstraints, which is what I thought you had suggested, EdDSA and Ed25519 are now separate as the check is effectively a string compare check against the disabledAlgorithm list
>>
>> The second half of that case statement has a key that can check against both EdDSA and the NPS.
>>
>> With respect to `CryptoPrimitive.SIGNATURE`, it just a value used in the test, it can't be null.
>
> Yes, I remember that.
>
> I understand there will be multiple checks in TLS and CertPath. Do we have existing tests on that level?
We have other tests that check this.
-------------
PR Review Comment: https://git.openjdk.org/jdk/pull/23647#discussion_r2006073361
More information about the security-dev
mailing list