Integrated: 8373408: SHA1withECDSA is not required for ECDHE and ECDSA
Hai-May Chao
hchao at openjdk.org
Thu Jan 22 17:44:52 UTC 2026
On Tue, 13 Jan 2026 07:47:15 GMT, Hai-May Chao <hchao at openjdk.org> wrote:
> SunJSSE should not probe SHA1withECDSA signature availably when determining if elliptic curve cryptography is available, as it is deprecated and not required for ECDHE and ECDSA signature schemes. This change removes SHA1withECDSA from the EC availability probe. TLS signature scheme availability is validated later during handshake negotiation.
This pull request has now been integrated.
Changeset: 96a2649e
Author: Hai-May Chao <hchao at openjdk.org>
URL: https://git.openjdk.org/jdk/commit/96a2649e29b8b4ff9b65b2314d430bc7637c5c61
Stats: 2 lines in 1 file changed: 0 ins; 1 del; 1 mod
8373408: SHA1withECDSA is not required for ECDHE and ECDSA
Reviewed-by: djelinski, ascarpino
-------------
PR: https://git.openjdk.org/jdk/pull/29184
More information about the security-dev
mailing list