On Mon, 31 Mar 2025 14:40:56 GMT, Ferenc Rakoczi wrote:
>> By using the AVX-512 vector registers the speed of the computation of the
>> ML-DSA algorithms (key generation, document signing, signature verification)
>> can be approximately doubled.
>
> Ferenc Rakoczi has updated the pull request i
Update crypto microbenchmarks to cover ML-DSA, ML-KEM, and HSS algorithms.
-
Commit messages:
- Update crypto microbenchmarks to cover ML-DSA, ML-KEM, and HSS algorithms
Changes: https://git.openjdk.org/jdk/pull/24369/files
Webrev: https://webrevs.openjdk.org/?repo=jdk&pr=24369&ra
Disable SHA-1 in TLS/DTLS 1.2 handshake signatures (but not in certificate
signatures).
https://www.rfc-editor.org/rfc/rfc9155.html
-
Commit messages:
- Unit tests
- Merge branch 'master' into JDK-8340321_disable
- 8340321: Disable SHA-1 in TLS/DTLS 1.2 signatures
Changes: https:
On Mon, 27 Jan 2025 22:43:32 GMT, Tim Jacomb wrote:
>> ## The change
>>
>> Without this change intermediate certificates that don't have explicit trust
>> settings are ignored not added to the truststore.
>>
>>
>>
>> ## Reproducer
>>
>> See https://github.com/timja/openjdk-intermediate-ca-r
On Mon, 31 Mar 2025 14:40:56 GMT, Ferenc Rakoczi wrote:
>> By using the AVX-512 vector registers the speed of the computation of the
>> ML-DSA algorithms (key generation, document signing, signature verification)
>> can be approximately doubled.
>
> Ferenc Rakoczi has updated the pull request i
On Mon, 27 Jan 2025 22:43:32 GMT, Tim Jacomb wrote:
>> ## The change
>>
>> Without this change intermediate certificates that don't have explicit trust
>> settings are ignored not added to the truststore.
>>
>>
>>
>> ## Reproducer
>>
>> See https://github.com/timja/openjdk-intermediate-ca-r
On Tue, 1 Apr 2025 17:29:57 GMT, Sean Mullan wrote:
> > > I am dubious that this is the right thing to do. There is a distinct
> > > difference between a certificate that is trusted and one that requires
> > > additional validation to determine if it is trusted. Blindly trusting
> > > self-sig
On Mon, 24 Mar 2025 12:30:57 GMT, Leo Korinth wrote:
> krb5/auto/TEST.properties: add an equals sign to the modules statement (this
> is the only `TEST.properties` file that uses this undocumented feature) .
>
> compare:
>
> find -name "TEST.properties" | xargs grep 'modules.*java'
> find -na
**A DESCRIPTION OF THE PROBLEM :**
Enabling -Djava.security.debug=x509,ava affects how special characters in
certificates are processed. The expected behavior is that debugging should not
interfere with the normal encoding of certificate fields.
**Fix:**
The Debugging will no longer interfere wi
On Tue, 1 Apr 2025 15:25:45 GMT, Sean Mullan wrote:
> I am dubious that this is the right thing to do. There is a distinct
> difference between a certificate that is trusted and one that requires
> additional validation to determine if it is trusted. Blindly trusting
> self-signed certificates
On Mon, 24 Mar 2025 12:30:57 GMT, Leo Korinth wrote:
> krb5/auto/TEST.properties: add an equals sign to the modules statement (this
> is the only `TEST.properties` file that uses this undocumented feature) .
>
> compare:
>
> find -name "TEST.properties" | xargs grep 'modules.*java'
> find -na
11 matches
Mail list logo
