RFR: 8349583: Add mechanism to disable signature schemes based on their TLS scope [v22]
duke
duke at openjdk.org
Mon Mar 31 16:30:20 UTC 2025
On Mon, 31 Mar 2025 14:17:50 GMT, Artur Barashev <abarashev at openjdk.org> wrote:
>> Currently when a signature scheme constraint is specified with "jdk.tls.disabledAlgorithms" property we don't differentiate between signatures used to sign a TLS handshake exchange and the signatures used in TLS certificates:
>> https://datatracker.ietf.org/doc/html/rfc8446#section-4.2.3
>
> Artur Barashev has updated the pull request incrementally with one additional commit since the last revision:
>
> Adjust access modifiers
@artur-oracle
Your change (at version b6a15c57248e4a299a6aec73ea3c02a3dbf90ca6) is now ready to be sponsored by a Committer.
-------------
PR Comment: https://git.openjdk.org/jdk/pull/23681#issuecomment-2766761649
More information about the security-dev
mailing list