RFR 8176536: Backport weak algorithms checking (original) (raw)
Sean Mullan sean.mullan at oracle.com
Tue Mar 21 16:01:04 UTC 2017
- Previous message (by thread): RFR 8176536: Backport weak algorithms checking
- Next message (by thread): Generate Keypairs with strong prng provider (SHA1PRNG)
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Looks good.
Thanks, Sean
On 3/20/17 5:02 PM, Anthony Scarpino wrote:
Hi Sean,
I updated the webrev with your recent change. One you ok this, I'll request approval for backport. http://cr.openjdk.java.net/~ascarpino/8176536/webrev.01/ thanks Tony
On 03/17/2017 01:25 PM, Anthony Scarpino wrote: Oh yeah. I had forgot to resync to get your change. Thanks for the reminder.
Tony
On Mar 17, 2017, at 1:06 PM, Sean Mullan <sean.mullan at oracle.com> wrote:
Looks good to me. Please also include the recent fix to disable SHA-1 TLS Server certificates in this backport: https://bugs.openjdk.java.net/browse/JDK-8176503 --Sean
On 3/16/17 1:04 AM, Anthony Scarpino wrote: Hi,
I need a review of this large backport of the weak algorithm checking code to jdk8. In mosts cases the changes are either identical or 95% of what is in jdk9, the below two files deviate the most from jdk9 because of other jdk9 features: src/share/classes/sun/security/ssl/SSLContextImpl.java src/share/classes/sun/security/validator/PKIXValidator.java http://cr.openjdk.java.net/~ascarpino/8176536/webrev/ thanks Tony
- Previous message (by thread): RFR 8176536: Backport weak algorithms checking
- Next message (by thread): Generate Keypairs with strong prng provider (SHA1PRNG)
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]