RFR: 8353738: Update TLS unit tests to not use certificates with MD5 signatures [v7]
Daniel Jeliński
djelinski at openjdk.org
Mon Dec 1 11:03:15 UTC 2025
On Mon, 24 Nov 2025 17:22:39 GMT, Matthew Donovan <mdonovan at openjdk.org> wrote:
>> This PR updates tests that were using MD5 certificates. For most of the tests, I added test cases for TLSv1.2/MD5withRSA and TLSv1.3/SHA256withRSA.
>
> Matthew Donovan has updated the pull request with a new target base due to a merge or a rebase. The incremental webrev excludes the unrelated changes brought in by the merge/rebase. The pull request contains 13 additional commits since the last revision:
>
> - Updated IPAddressDNSIdentities and confirmed test fails for correct reason
> - Merge branch 'master' into update-md5-certs
> - Updated SAN methods in CertificateBuilder to take multiple names
> - Merge branch 'master' into update-md5-certs
> - removed IPIdentitites.java because it's identical to IPAddressIPIdenties; added IPv6 SAN ext
> - removed unused keystore files, fixed certificate chain
> - Merge branch 'master' into update-md5-certs
> - changed line wrapping
> - removed unnecessary comment and made getSSLContext(...) private
> - changed tests to use SecurityUtils.removeDisabled*Algs methods
> - ... and 3 more: https://git.openjdk.org/jdk/compare/d0629285...ea9c2dce
Marked as reviewed by djelinski (Reviewer).
-------------
PR Review: https://git.openjdk.org/jdk/pull/27342#pullrequestreview-3524380076
More information about the serviceability-dev
mailing list