> This change will disable TLS_ECDH_* cipher suites by default. These cipher > suites do not preserve forward secrecy and are rarely used in practice. See > the CSR for more details and rationale. > > Users will still be able to enable the suites (at their own risk) by removing > "ECDH" from the `jdk.tls.disabledAlgorithms` security property.
Sean Mullan has updated the pull request with a new target base due to a merge or a rebase. The incremental webrev excludes the unrelated changes brought in by the merge/rebase. The pull request contains two additional commits since the last revision: - Merge - Initial revision. ------------- Changes: - all: https://git.openjdk.org/jdk/pull/10969/files - new: https://git.openjdk.org/jdk/pull/10969/files/897f5603..0aa21bdc Webrevs: - full: https://webrevs.openjdk.org/?repo=jdk&pr=10969&range=01 - incr: https://webrevs.openjdk.org/?repo=jdk&pr=10969&range=00-01 Stats: 45937 lines in 472 files changed: 12808 ins; 31155 del; 1974 mod Patch: https://git.openjdk.org/jdk/pull/10969.diff Fetch: git fetch https://git.openjdk.org/jdk pull/10969/head:pull/10969 PR: https://git.openjdk.org/jdk/pull/10969
