JDK-8251341 : Minimal Java specification change
  • Type: Sub-task
  • Component: security-libs
  • Sub-Component: javax.net.ssl
  • Priority: P4
  • Status: Resolved
  • Resolution: Fixed
  • Submitted: 2020-08-10
  • Updated: 2020-09-04
  • Resolved: 2020-08-31
The Version table provides details related to the release that this issue/RFE will be addressed.

Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.

To download the current JDK release, click here.
Other
openjdk8u272 b06Fixed
Description
javax.net.ssl.ExtendedSSLSession:

  public abstract class ExtendedSSLSession implements SSLSession {
      /**
       * Obtains an array of supported signature algorithms that the local side
       * is willing to use.
       * <p>
       * Note: this method is used to indicate to the peer which signature
  -    * algorithms may be used for digital signatures in TLS 1.2. It is
  +    * algorithms may be used for digital signatures since TLS 1.2. It is
       * not meaningful for TLS versions prior to 1.2.
       * <p>
       * The signature algorithm name must be a standard Java Security
       * name (such as "SHA1withRSA", "SHA256withECDSA", and so on).
       * See the <a href=
       * "{@docRoot}/../specs/security/standard-names.html">
       * Java Security Standard Algorithm Names</a> document
       * for information about standard algorithm names.
       * <p>
       * Note: the local supported signature algorithms should conform to
       * the algorithm constraints specified by
       * {@link SSLParameters#getAlgorithmConstraints getAlgorithmConstraints()}
       * method in {@code SSLParameters}.
       *
       * @return An array of supported signature algorithms, in descending
       *     order of preference.  The return value is an empty array if
       *     no signature algorithm is supported.
       *
       * @see SSLParameters#getAlgorithmConstraints
       */
      public abstract String[] getLocalSupportedSignatureAlgorithms();
  
      /**
       * Obtains an array of supported signature algorithms that the peer is
       * able to use.
       * <p>
       * Note: this method is used to indicate to the local side which signature
  -    * algorithms may be used for digital signatures in TLS 1.2. It is
  +    * algorithms may be used for digital signatures since TLS 1.2. It is
       * not meaningful for TLS versions prior to 1.2.
       * <p>
       * The signature algorithm name must be a standard Java Security
       * name (such as "SHA1withRSA", "SHA256withECDSA", and so on).
       * See the <a href=
       * "{@docRoot}/../specs/security/standard-names.html">
       * Java Security Standard Algorithm Names</a> document
       * for information about standard algorithm names.
       *
       * @return An array of supported signature algorithms, in descending
       *     order of preference.  The return value is an empty array if
       *     the peer has not sent the supported signature algorithms.
       *
       * @see X509KeyManager
       * @see X509ExtendedKeyManager
       */
      public abstract String[] getPeerSupportedSignatureAlgorithms();


    ...
}
Comments
URL: https://hg.openjdk.java.net/jdk8u/jdk8u/jdk/rev/cf50798dd5a5 User: andrew Date: 2020-09-04 15:15:14 +0000
04-09-2020
URL: https://hg.openjdk.java.net/jdk8u/jdk8u-dev/jdk/rev/cf50798dd5a5 User: andrew Date: 2020-08-31 05:57:48 +0000
31-08-2020
Review-approved: https://mail.openjdk.java.net/pipermail/jdk8u-dev/2020-August/012417.html
11-08-2020