Re: RFR: 8245545: Disable TLS_RSA cipher suites [v9]

2024-11-21 Thread duke
On Wed, 20 Nov 2024 20:53:35 GMT, Artur Barashev wrote: >> These cipher suites do not preserve forward-secrecy and are not commonly >> used. Other TLS implementations (ex: Rustls) do not support or enable these >> suites by default. RFC 9325 [1] states that these suites should not be used. >>

Re: RFR: 8245545: Disable TLS_RSA cipher suites [v9]

2024-11-20 Thread Sean Mullan
On Wed, 20 Nov 2024 20:53:35 GMT, Artur Barashev wrote: >> These cipher suites do not preserve forward-secrecy and are not commonly >> used. Other TLS implementations (ex: Rustls) do not support or enable these >> suites by default. RFC 9325 [1] states that these suites should not be used. >>

Re: RFR: 8245545: Disable TLS_RSA cipher suites [v9]

2024-11-20 Thread Artur Barashev
On Wed, 20 Nov 2024 20:57:13 GMT, Sean Mullan wrote: > Missed a copyright update on > `test/jdk/javax/net/ssl/ciphersuites/DisabledAlgorithms.java`. Otherwise > looks good. Please refresh this PR, copyright has been fixed already. - PR Comment: https://git.openjdk.org/jdk/pull/22

Re: RFR: 8245545: Disable TLS_RSA cipher suites [v9]

2024-11-20 Thread Artur Barashev
> These cipher suites do not preserve forward-secrecy and are not commonly > used. Other TLS implementations (ex: Rustls) do not support or enable these > suites by default. RFC 9325 [1] states that these suites should not be used. > The IETF Draft "Deprecating Obsolete Key Exchange Methods in T

Re: RFR: 8245545: Disable TLS_RSA cipher suites [v8]

2024-11-20 Thread Artur Barashev
> These cipher suites do not preserve forward-secrecy and are not commonly > used. Other TLS implementations (ex: Rustls) do not support or enable these > suites by default. RFC 9325 [1] states that these suites should not be used. > The IETF Draft "Deprecating Obsolete Key Exchange Methods in T

Re: RFR: 8245545: Disable TLS_RSA cipher suites [v6]

2024-11-20 Thread Artur Barashev
> These cipher suites do not preserve forward-secrecy and are not commonly > used. Other TLS implementations (ex: Rustls) do not support or enable these > suites by default. RFC 9325 [1] states that these suites should not be used. > The IETF Draft "Deprecating Obsolete Key Exchange Methods in T

Re: RFR: 8245545: Disable TLS_RSA cipher suites [v7]

2024-11-20 Thread Artur Barashev
> These cipher suites do not preserve forward-secrecy and are not commonly > used. Other TLS implementations (ex: Rustls) do not support or enable these > suites by default. RFC 9325 [1] states that these suites should not be used. > The IETF Draft "Deprecating Obsolete Key Exchange Methods in T

Re: RFR: 8245545: Disable TLS_RSA cipher suites [v4]

2024-11-20 Thread Artur Barashev
On Wed, 20 Nov 2024 13:53:23 GMT, Sean Mullan wrote: >> Artur Barashev has updated the pull request incrementally with one >> additional commit since the last revision: >> >> Remove the empty lines added > > test/jdk/javax/net/ssl/SSLEngine/Basics.java line 60: > >> 58: >> 59: public st

Re: RFR: 8245545: Disable TLS_RSA cipher suites [v4]

2024-11-20 Thread Artur Barashev
On Wed, 20 Nov 2024 14:46:21 GMT, Sean Mullan wrote: >> Artur Barashev has updated the pull request incrementally with one >> additional commit since the last revision: >> >> Remove the empty lines added > > test/jdk/javax/net/ssl/sanity/ciphersuites/CheckCipherSuites.java line 1: > >> 1: /*

Re: RFR: 8245545: Disable TLS_RSA cipher suites [v4]

2024-11-20 Thread Artur Barashev
On Wed, 20 Nov 2024 14:44:38 GMT, Sean Mullan wrote: >> Artur Barashev has updated the pull request incrementally with one >> additional commit since the last revision: >> >> Remove the empty lines added > > test/jdk/javax/net/ssl/DTLS/DTLSMFLNTest.java line 56: > >> 54: public class DTLSMFL

Re: RFR: 8245545: Disable TLS_RSA cipher suites [v5]

2024-11-20 Thread Artur Barashev
> These cipher suites do not preserve forward-secrecy and are not commonly > used. Other TLS implementations (ex: Rustls) do not support or enable these > suites by default. RFC 9325 [1] states that these suites should not be used. > The IETF Draft "Deprecating Obsolete Key Exchange Methods in T

Re: RFR: 8245545: Disable TLS_RSA cipher suites [v4]

2024-11-20 Thread Sean Mullan
On Tue, 19 Nov 2024 21:57:04 GMT, Artur Barashev wrote: >> These cipher suites do not preserve forward-secrecy and are not commonly >> used. Other TLS implementations (ex: Rustls) do not support or enable these >> suites by default. RFC 9325 [1] states that these suites should not be used. >>

Re: RFR: 8245545: Disable TLS_RSA cipher suites [v3]

2024-11-19 Thread Artur Barashev
> These cipher suites do not preserve forward-secrecy and are not commonly > used. Other TLS implementations (ex: Rustls) do not support or enable these > suites by default. RFC 9325 [1] states that these suites should not be used. > The IETF Draft "Deprecating Obsolete Key Exchange Methods in T

Re: RFR: 8245545: Disable TLS_RSA cipher suites [v4]

2024-11-19 Thread Artur Barashev
> These cipher suites do not preserve forward-secrecy and are not commonly > used. Other TLS implementations (ex: Rustls) do not support or enable these > suites by default. RFC 9325 [1] states that these suites should not be used. > The IETF Draft "Deprecating Obsolete Key Exchange Methods in T

Re: RFR: 8245545: Disable TLS_RSA cipher suites [v2]

2024-11-19 Thread Artur Barashev
> These cipher suites do not preserve forward-secrecy and are not commonly > used. Other TLS implementations (ex: Rustls) do not support or enable these > suites by default. RFC 9325 [1] states that these suites should not be used. > The IETF Draft "Deprecating Obsolete Key Exchange Methods in T

Re: RFR: 8245545: Disable TLS_RSA cipher suites

2024-11-19 Thread Artur Barashev
On Mon, 18 Nov 2024 21:38:40 GMT, Sean Mullan wrote: >> These cipher suites do not preserve forward-secrecy and are not commonly >> used. Other TLS implementations (ex: Rustls) do not support or enable these >> suites by default. RFC 9325 [1] states that these suites should not be used. >> The

Re: RFR: 8245545: Disable TLS_RSA cipher suites

2024-11-19 Thread Artur Barashev
On Mon, 18 Nov 2024 21:39:32 GMT, Sean Mullan wrote: >> These cipher suites do not preserve forward-secrecy and are not commonly >> used. Other TLS implementations (ex: Rustls) do not support or enable these >> suites by default. RFC 9325 [1] states that these suites should not be used. >> The

Re: RFR: 8245545: Disable TLS_RSA cipher suites

2024-11-19 Thread Artur Barashev
On Mon, 18 Nov 2024 21:36:32 GMT, Sean Mullan wrote: >> These cipher suites do not preserve forward-secrecy and are not commonly >> used. Other TLS implementations (ex: Rustls) do not support or enable these >> suites by default. RFC 9325 [1] states that these suites should not be used. >> The

Re: RFR: 8245545: Disable TLS_RSA cipher suites

2024-11-19 Thread Artur Barashev
On Mon, 18 Nov 2024 21:26:10 GMT, Sean Mullan wrote: >> These cipher suites do not preserve forward-secrecy and are not commonly >> used. Other TLS implementations (ex: Rustls) do not support or enable these >> suites by default. RFC 9325 [1] states that these suites should not be used. >> The

Re: RFR: 8245545: Disable TLS_RSA cipher suites

2024-11-19 Thread Artur Barashev
On Mon, 18 Nov 2024 20:58:20 GMT, Sean Mullan wrote: >> These cipher suites do not preserve forward-secrecy and are not commonly >> used. Other TLS implementations (ex: Rustls) do not support or enable these >> suites by default. RFC 9325 [1] states that these suites should not be used. >> The

Re: RFR: 8245545: Disable TLS_RSA cipher suites

2024-11-18 Thread Sean Mullan
On Fri, 15 Nov 2024 19:50:33 GMT, Artur Barashev wrote: > These cipher suites do not preserve forward-secrecy and are not commonly > used. Other TLS implementations (ex: Rustls) do not support or enable these > suites by default. RFC 9325 [1] states that these suites should not be used. > The

Re: RFR: 8245545: Disable TLS_RSA cipher suites

2024-11-18 Thread Sean Mullan
On Fri, 15 Nov 2024 19:50:33 GMT, Artur Barashev wrote: > These cipher suites do not preserve forward-secrecy and are not commonly > used. Other TLS implementations (ex: Rustls) do not support or enable these > suites by default. RFC 9325 [1] states that these suites should not be used. > The