RFR: 8366364: Address inconsistencies in SSLParameters object returned by SSLConfiguration#getSSLParameters() call [v3]
Sean Mullan
mullan at openjdk.org
Tue Oct 28 20:52:54 UTC 2025
On Mon, 27 Oct 2025 15:19:30 GMT, Artur Barashev <abarashev at openjdk.org> wrote:
>> We need to address the following inconsistencies in SSLConfiguration#getSSLParameters() call:
>> - For the signatureSchemes we return only what's been set by the user, the default values are not being returned like for other SSLParameters.
>> - namedGroups return value is not being filtered against algorithm constraints, unlike other SSLParameters.
>
> Artur Barashev has updated the pull request incrementally with one additional commit since the last revision:
>
> Log unavailable configured signature scheme
test/jdk/sun/security/ssl/CipherSuite/RestrictNamedGroup.java line 101:
> 99: runAndCheckException(() -> new RestrictNamedGroup().run(),
> 100: ex -> assertTrue(ex instanceof NoClassDefFoundError
> 101: || ex instanceof ExceptionInInitializerError));
I don't understand this change, can you help me understand this better? Why would these exceptions be thrown now?
-------------
PR Review Comment: https://git.openjdk.org/jdk/pull/27961#discussion_r2471000408
More information about the security-dev
mailing list