> Currently when a signature scheme constraint is specified with > "jdk.tls.disabledAlgorithms" property we don't differentiate between > signatures used to sign a TLS handshake exchange and the signatures used in > TLS certificates: > https://datatracker.ietf.org/doc/html/rfc8446#section-4.2.3
Artur Barashev has updated the pull request incrementally with one additional commit since the last revision: Use HandshakeContext's localSupportedCertSignAlgs when checking against SSLSession's localSupportedSignAlgs ------------- Changes: - all: https://git.openjdk.org/jdk/pull/23681/files - new: https://git.openjdk.org/jdk/pull/23681/files/db7c1e75..d0ef5526 Webrevs: - full: https://webrevs.openjdk.org/?repo=jdk&pr=23681&range=03 - incr: https://webrevs.openjdk.org/?repo=jdk&pr=23681&range=02-03 Stats: 11 lines in 2 files changed: 0 ins; 0 del; 11 mod Patch: https://git.openjdk.org/jdk/pull/23681.diff Fetch: git fetch https://git.openjdk.org/jdk.git pull/23681/head:pull/23681 PR: https://git.openjdk.org/jdk/pull/23681
