When testing compatibility of jdk TLS implementation with gnutls, I have found
a problem. The problem is, that gnutls does not like use of user_canceled alert
when closing TLS-1.3 connection from duplexCloseOutput() (used by
socket.close() unless shutdownOutput was called explicitly) and
On Wed, 2 Mar 2022 19:04:26 GMT, zzambers wrote:
> When testing compatibility of jdk TLS implementation with gnutls, I have
> found a problem. The problem is, that gnutls does not like use of
> user_canceled alert when closing TLS-1.3 connection from duplexCloseOutput()
> (used by
> Fixed API Note in javadoc for javax.net.ssl.SSLSocket class. API Note was
> introduced by JDK-8208526 [1]. At that point both Socket.shutdownInput() /
> Socket.shutdownOutput() and InputStream.close() / OutputStream.close()
> performed half-close of TLS-1.3 connection. However this behaviour
On Thu, 3 Mar 2022 10:45:02 GMT, Severin Gehwolf wrote:
>> When testing compatibility of jdk TLS implementation with gnutls, I have
>> found a problem. The problem is, that gnutls does not like use of
>> user_canceled alert when closing TLS-1.3 connection from duplexCloseOutput()
>> (used by
On Tue, 1 Mar 2022 17:09:57 GMT, zzambers wrote:
> Fixed API Note in javadoc for javax.net.ssl.SSLSocket class. API Note was
> introduced by JDK-8208526 [1]. At that point both Socket.shutdownInput() /
> Socket.shutdownOutput() and InputStream.close() / OutputStream.close()
> performed
On Thu, 3 Mar 2022 15:40:31 GMT, Xue-Lei Andrew Fan wrote:
>> When testing compatibility of jdk TLS implementation with gnutls, I have
>> found a problem. The problem is, that gnutls does not like use of
>> user_canceled alert when closing TLS-1.3 connection from duplexCloseOutput()
>> (used
On Tue, 1 Mar 2022 23:25:52 GMT, Rajan Halade wrote:
>> Xue-Lei Andrew Fan has updated the pull request incrementally with one
>> additional commit since the last revision:
>>
>> Chaneg to use DateFormat
>
> test/jdk/javax/net/ssl/ServerName/EndingDotHostname.java line 26:
>
>> 24: /**
>>
On Thu, 3 Mar 2022 16:31:41 GMT, Xue-Lei Andrew Fan wrote:
>> May I have this test update reviewed?
>>
>> The certificates used in SSL testing template SSLExampleCert could expired
>> in the future (for example
>> [JDK-8282398](https://bugs.openjdk.java.net/browse/JDK-8282398)). It is not
On Wed, 2 Mar 2022 19:04:26 GMT, zzambers wrote:
> When testing compatibility of jdk TLS implementation with gnutls, I have
> found a problem. The problem is, that gnutls does not like use of
> user_canceled alert when closing TLS-1.3 connection from duplexCloseOutput()
> (used by
> May I have this test update reviewed?
>
> The certificates used in SSL testing template SSLExampleCert could expired in
> the future (for example
> [JDK-8282398](https://bugs.openjdk.java.net/browse/JDK-8282398)). It is not
> always easy to replace the certificates if the template has been
> This fixes jarsigner to enforce checking against algorithm constraint
> properties so when the signature algorithms parameters use disabled or legacy
> algorithms, it will emit warnings accordingly. If the algorithm used in
> parameters is disabled, jarsigner treats the jar as unsigned.
On Thu, 3 Mar 2022 19:35:21 GMT, Weijun Wang wrote:
>> Hai-May Chao has updated the pull request incrementally with one additional
>> commit since the last revision:
>>
>> Removed unused string
>
> src/jdk.jartool/share/classes/sun/security/tools/jarsigner/Main.java line
> 1418:
>
>> 1416:
> This fixes jarsigner to enforce checking against algorithm constraint
> properties so when the signature algorithms parameters use disabled or legacy
> algorithms, it will emit warnings accordingly. If the algorithm used in
> parameters is disabled, jarsigner treats the jar as unsigned.
On Thu, 3 Mar 2022 07:24:49 GMT, Hai-May Chao wrote:
>> This fixes jarsigner to enforce checking against algorithm constraint
>> properties so when the signature algorithms parameters use disabled or
>> legacy algorithms, it will emit warnings accordingly. If the algorithm used
>> in
Pass cause exception as constructor parameter is shorter and easier to read.
-
Commit messages:
- [PATCH] Cleanup unnecessary calls to Throwable.initCause() in
java.security.jgss
Changes: https://git.openjdk.java.net/jdk/pull/7682/files
Webrev:
On Wed, 2 Mar 2022 00:13:41 GMT, Valerie Peng wrote:
> It's been several years since we increased the default key sizes. Before
> shifting to PQC, NSA replaced its Suite B cryptography recommendations with
> the Commercial National Security Algorithm Suite which suggests:
>
> - SHA-384 for
On Tue, 1 Mar 2022 22:38:30 GMT, Xue-Lei Andrew Fan wrote:
> May I have this test update reviewed?
>
> The certificates used in SSL testing template SSLExampleCert could expired in
> the future (for example
> [JDK-8282398](https://bugs.openjdk.java.net/browse/JDK-8282398)). It is not
>
On Thu, 3 Mar 2022 22:18:53 GMT, Hai-May Chao wrote:
>> This fixes jarsigner to enforce checking against algorithm constraint
>> properties so when the signature algorithms parameters use disabled or
>> legacy algorithms, it will emit warnings accordingly. If the algorithm used
>> in
On Tue, 22 Feb 2022 22:00:05 GMT, Hai-May Chao wrote:
> This fixes jarsigner to enforce checking against algorithm constraint
> properties so when the signature algorithms parameters use disabled or legacy
> algorithms, it will emit warnings accordingly. If the algorithm used in
> parameters
19 matches
Mail list logo
