Skip to content
体验新版
项目
组织
正在加载...
登录
切换导航
打开侧边栏
openanolis
dragonwell8_jdk
提交
b9171271
D
dragonwell8_jdk
项目概览
openanolis
/
dragonwell8_jdk
通知
4
Star
2
Fork
0
代码
文件
提交
分支
Tags
贡献者
分支图
Diff
Issue
0
列表
看板
标记
里程碑
合并请求
0
Wiki
0
Wiki
分析
仓库
DevOps
项目成员
Pages
D
dragonwell8_jdk
项目概览
项目概览
详情
发布
仓库
仓库
文件
提交
分支
标签
贡献者
分支图
比较
Issue
0
Issue
0
列表
看板
标记
里程碑
合并请求
0
合并请求
0
Pages
分析
分析
仓库分析
DevOps
Wiki
0
Wiki
成员
成员
收起侧边栏
关闭侧边栏
动态
分支图
创建新Issue
提交
Issue看板
提交
b9171271
编写于
4月 24, 2015
作者:
I
igerasim
浏览文件
操作
浏览文件
下载
电子邮件补丁
差异文件
8076328: Enforce key exchange constraints
Reviewed-by: wetmore, ahgross, asmotrak, xuelei
上级
2ebcf8ad
变更
15
隐藏空白更改
内联
并排
Showing
15 changed file
with
139 addition
and
31 deletion
+139
-31
src/share/classes/sun/security/ssl/ClientHandshaker.java
src/share/classes/sun/security/ssl/ClientHandshaker.java
+19
-0
src/share/classes/sun/security/ssl/DHCrypt.java
src/share/classes/sun/security/ssl/DHCrypt.java
+24
-1
src/share/classes/sun/security/ssl/ECDHCrypt.java
src/share/classes/sun/security/ssl/ECDHCrypt.java
+38
-5
src/share/classes/sun/security/ssl/Handshaker.java
src/share/classes/sun/security/ssl/Handshaker.java
+2
-2
src/share/classes/sun/security/ssl/ServerHandshaker.java
src/share/classes/sun/security/ssl/ServerHandshaker.java
+15
-2
src/share/lib/security/java.security-aix
src/share/lib/security/java.security-aix
+2
-2
src/share/lib/security/java.security-linux
src/share/lib/security/java.security-linux
+2
-2
src/share/lib/security/java.security-macosx
src/share/lib/security/java.security-macosx
+2
-2
src/share/lib/security/java.security-solaris
src/share/lib/security/java.security-solaris
+2
-2
src/share/lib/security/java.security-windows
src/share/lib/security/java.security-windows
+2
-2
test/sun/security/ec/TestEC.java
test/sun/security/ec/TestEC.java
+6
-5
test/sun/security/pkcs11/sslecc/ClientJSSEServerJSSE.java
test/sun/security/pkcs11/sslecc/ClientJSSEServerJSSE.java
+3
-2
test/sun/security/ssl/com/sun/net/ssl/internal/ssl/DHKeyExchange/DHEKeySizing.java
.../sun/net/ssl/internal/ssl/DHKeyExchange/DHEKeySizing.java
+7
-1
test/sun/security/ssl/com/sun/net/ssl/internal/ssl/ServerHandshaker/AnonCipherWithWantClientAuth.java
...al/ssl/ServerHandshaker/AnonCipherWithWantClientAuth.java
+12
-1
test/sun/security/ssl/sanity/interop/ClientJSSEServerJSSE.java
...sun/security/ssl/sanity/interop/ClientJSSEServerJSSE.java
+3
-2
未找到文件。
src/share/classes/sun/security/ssl/ClientHandshaker.java
浏览文件 @
b9171271
...
...
@@ -675,6 +675,14 @@ final class ClientHandshaker extends Handshaker {
// NOTREACHED
}
ephemeralServerKey
=
mesg
.
getPublicKey
();
// check constraints of RSA PublicKey
if
(!
algorithmConstraints
.
permits
(
EnumSet
.
of
(
CryptoPrimitive
.
KEY_AGREEMENT
),
ephemeralServerKey
))
{
throw
new
SSLHandshakeException
(
"RSA ServerKeyExchange "
+
"does not comply to algorithm constraints"
);
}
}
...
...
@@ -692,6 +700,9 @@ final class ClientHandshaker extends Handshaker {
dh
=
new
DHCrypt
(
mesg
.
getModulus
(),
mesg
.
getBase
(),
sslContext
.
getSecureRandom
());
serverDH
=
mesg
.
getServerPublicKey
();
// check algorithm constraints
dh
.
checkConstraints
(
algorithmConstraints
,
serverDH
);
}
private
void
serverKeyExchange
(
ECDH_ServerKeyExchange
mesg
)
...
...
@@ -702,6 +713,14 @@ final class ClientHandshaker extends Handshaker {
ECPublicKey
key
=
mesg
.
getPublicKey
();
ecdh
=
new
ECDHCrypt
(
key
.
getParams
(),
sslContext
.
getSecureRandom
());
ephemeralServerKey
=
key
;
// check constraints of EC PublicKey
if
(!
algorithmConstraints
.
permits
(
EnumSet
.
of
(
CryptoPrimitive
.
KEY_AGREEMENT
),
ephemeralServerKey
))
{
throw
new
SSLHandshakeException
(
"ECDH ServerKeyExchange "
+
"does not comply to algorithm constraints"
);
}
}
/*
...
...
src/share/classes/sun/security/ssl/DHCrypt.java
浏览文件 @
b9171271
/*
* Copyright (c) 1996, 201
4
, Oracle and/or its affiliates. All rights reserved.
* Copyright (c) 1996, 201
5
, Oracle and/or its affiliates. All rights reserved.
* DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
*
* This code is free software; you can redistribute it and/or modify it
...
...
@@ -34,6 +34,7 @@ import javax.crypto.SecretKey;
import
javax.crypto.KeyAgreement
;
import
javax.crypto.interfaces.DHPublicKey
;
import
javax.crypto.spec.*
;
import
java.util.EnumSet
;
import
sun.security.util.KeyUtil
;
...
...
@@ -216,6 +217,28 @@ final class DHCrypt {
}
}
// Check constraints of the specified DH public key.
void
checkConstraints
(
AlgorithmConstraints
constraints
,
BigInteger
peerPublicValue
)
throws
SSLHandshakeException
{
try
{
KeyFactory
kf
=
JsseJce
.
getKeyFactory
(
"DiffieHellman"
);
DHPublicKeySpec
spec
=
new
DHPublicKeySpec
(
peerPublicValue
,
modulus
,
base
);
DHPublicKey
publicKey
=
(
DHPublicKey
)
kf
.
generatePublic
(
spec
);
// check constraints of DHPublicKey
if
(!
constraints
.
permits
(
EnumSet
.
of
(
CryptoPrimitive
.
KEY_AGREEMENT
),
publicKey
))
{
throw
new
SSLHandshakeException
(
"DHPublicKey does not comply to algorithm constraints"
);
}
}
catch
(
GeneralSecurityException
gse
)
{
throw
(
SSLHandshakeException
)
new
SSLHandshakeException
(
"Could not generate DHPublicKey"
).
initCause
(
gse
);
}
}
// Generate and validate DHPublicKeySpec
private
DHPublicKeySpec
generateDHPublicKeySpec
(
KeyPairGenerator
kpg
)
throws
GeneralSecurityException
{
...
...
src/share/classes/sun/security/ssl/ECDHCrypt.java
浏览文件 @
b9171271
/*
* Copyright (c) 2006, 201
4
, Oracle and/or its affiliates. All rights reserved.
* Copyright (c) 2006, 201
5
, Oracle and/or its affiliates. All rights reserved.
* DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
*
* This code is free software; you can redistribute it and/or modify it
...
...
@@ -29,6 +29,7 @@ import java.security.*;
import
java.security.interfaces.ECPublicKey
;
import
java.security.spec.*
;
import
java.util.EnumSet
;
import
javax.crypto.SecretKey
;
import
javax.crypto.KeyAgreement
;
import
javax.net.ssl.SSLHandshakeException
;
...
...
@@ -88,8 +89,11 @@ final class ECDHCrypt {
return
publicKey
;
}
// called by ClientHandshaker with either the server's static or ephemeral public key
SecretKey
getAgreedSecret
(
PublicKey
peerPublicKey
)
throws
SSLHandshakeException
{
// called by ClientHandshaker with either the server's static or
// ephemeral public key
SecretKey
getAgreedSecret
(
PublicKey
peerPublicKey
)
throws
SSLHandshakeException
{
try
{
KeyAgreement
ka
=
JsseJce
.
getKeyAgreement
(
"ECDH"
);
ka
.
init
(
privateKey
);
...
...
@@ -102,10 +106,13 @@ final class ECDHCrypt {
}
// called by ServerHandshaker
SecretKey
getAgreedSecret
(
byte
[]
encodedPoint
)
throws
SSLHandshakeException
{
SecretKey
getAgreedSecret
(
byte
[]
encodedPoint
)
throws
SSLHandshakeException
{
try
{
ECParameterSpec
params
=
publicKey
.
getParams
();
ECPoint
point
=
JsseJce
.
decodePoint
(
encodedPoint
,
params
.
getCurve
());
ECPoint
point
=
JsseJce
.
decodePoint
(
encodedPoint
,
params
.
getCurve
());
KeyFactory
kf
=
JsseJce
.
getKeyFactory
(
"EC"
);
ECPublicKeySpec
spec
=
new
ECPublicKeySpec
(
point
,
params
);
PublicKey
peerPublicKey
=
kf
.
generatePublic
(
spec
);
...
...
@@ -116,4 +123,30 @@ final class ECDHCrypt {
}
}
// Check constraints of the specified EC public key.
void
checkConstraints
(
AlgorithmConstraints
constraints
,
byte
[]
encodedPoint
)
throws
SSLHandshakeException
{
try
{
ECParameterSpec
params
=
publicKey
.
getParams
();
ECPoint
point
=
JsseJce
.
decodePoint
(
encodedPoint
,
params
.
getCurve
());
ECPublicKeySpec
spec
=
new
ECPublicKeySpec
(
point
,
params
);
KeyFactory
kf
=
JsseJce
.
getKeyFactory
(
"EC"
);
ECPublicKey
publicKey
=
(
ECPublicKey
)
kf
.
generatePublic
(
spec
);
// check constraints of ECPublicKey
if
(!
constraints
.
permits
(
EnumSet
.
of
(
CryptoPrimitive
.
KEY_AGREEMENT
),
publicKey
))
{
throw
new
SSLHandshakeException
(
"ECPublicKey does not comply to algorithm constraints"
);
}
}
catch
(
GeneralSecurityException
|
java
.
io
.
IOException
e
)
{
throw
(
SSLHandshakeException
)
new
SSLHandshakeException
(
"Could not generate ECPublicKey"
).
initCause
(
e
);
}
}
}
src/share/classes/sun/security/ssl/Handshaker.java
浏览文件 @
b9171271
/*
* Copyright (c) 1996, 201
4
, Oracle and/or its affiliates. All rights reserved.
* Copyright (c) 1996, 201
5
, Oracle and/or its affiliates. All rights reserved.
* DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
*
* This code is free software; you can redistribute it and/or modify it
...
...
@@ -86,7 +86,7 @@ abstract class Handshaker {
String
identificationProtocol
;
// The cryptographic algorithm constraints
private
AlgorithmConstraints
algorithmConstraints
=
null
;
AlgorithmConstraints
algorithmConstraints
=
null
;
// Local supported signature and algorithms
Collection
<
SignatureAndHashAlgorithm
>
localSupportedSignAlgs
;
...
...
src/share/classes/sun/security/ssl/ServerHandshaker.java
浏览文件 @
b9171271
...
...
@@ -32,6 +32,7 @@ import java.security.*;
import
java.security.cert.*
;
import
java.security.interfaces.*
;
import
java.security.spec.ECParameterSpec
;
import
java.math.BigInteger
;
import
javax.crypto.SecretKey
;
import
javax.crypto.spec.SecretKeySpec
;
...
...
@@ -1564,7 +1565,13 @@ final class ServerHandshaker extends Handshaker {
if
(
debug
!=
null
&&
Debug
.
isOn
(
"handshake"
))
{
mesg
.
print
(
System
.
out
);
}
return
dh
.
getAgreedSecret
(
mesg
.
getClientPublicKey
(),
false
);
BigInteger
publicKeyValue
=
mesg
.
getClientPublicKey
();
// check algorithm constraints
dh
.
checkConstraints
(
algorithmConstraints
,
publicKeyValue
);
return
dh
.
getAgreedSecret
(
publicKeyValue
,
false
);
}
private
SecretKey
clientKeyExchange
(
ECDHClientKeyExchange
mesg
)
...
...
@@ -1573,7 +1580,13 @@ final class ServerHandshaker extends Handshaker {
if
(
debug
!=
null
&&
Debug
.
isOn
(
"handshake"
))
{
mesg
.
print
(
System
.
out
);
}
return
ecdh
.
getAgreedSecret
(
mesg
.
getEncodedPoint
());
byte
[]
publicPoint
=
mesg
.
getEncodedPoint
();
// check algorithm constraints
ecdh
.
checkConstraints
(
algorithmConstraints
,
publicPoint
);
return
ecdh
.
getAgreedSecret
(
publicPoint
);
}
/*
...
...
src/share/lib/security/java.security-aix
浏览文件 @
b9171271
...
...
@@ -500,7 +500,7 @@ jdk.certpath.disabledAlgorithms=MD2, RSA keySize < 1024
#
# Example:
# jdk.tls.disabledAlgorithms=MD5, SSLv3, DSA, RSA keySize < 2048
jdk.tls.disabledAlgorithms=SSLv3
jdk.tls.disabledAlgorithms=SSLv3
, DH keySize < 768
# Legacy algorithms for Secure Socket Layer/Transport Layer Security (SSL/TLS)
# processing in JSSE implementation.
...
...
@@ -539,7 +539,7 @@ jdk.tls.disabledAlgorithms=SSLv3
# 1. JSSE cipher suite name, e.g., TLS_RSA_WITH_AES_128_CBC_SHA
# 2. JSSE key exchange algorithm name, e.g., RSA
# 3. JSSE cipher (encryption) algorithm name, e.g., AES_128_CBC
# 4. JSSE message digest algorithm name, e.g., SHA
-1
# 4. JSSE message digest algorithm name, e.g., SHA
#
# See SSL/TLS specifications and "Java Cryptography Architecture Standard
# Algorithm Name Documentation" for information about the algorithm names.
...
...
src/share/lib/security/java.security-linux
浏览文件 @
b9171271
...
...
@@ -500,7 +500,7 @@ jdk.certpath.disabledAlgorithms=MD2, RSA keySize < 1024
#
# Example:
# jdk.tls.disabledAlgorithms=MD5, SSLv3, DSA, RSA keySize < 2048
jdk.tls.disabledAlgorithms=SSLv3
jdk.tls.disabledAlgorithms=SSLv3
, DH keySize < 768
# Legacy algorithms for Secure Socket Layer/Transport Layer Security (SSL/TLS)
# processing in JSSE implementation.
...
...
@@ -539,7 +539,7 @@ jdk.tls.disabledAlgorithms=SSLv3
# 1. JSSE cipher suite name, e.g., TLS_RSA_WITH_AES_128_CBC_SHA
# 2. JSSE key exchange algorithm name, e.g., RSA
# 3. JSSE cipher (encryption) algorithm name, e.g., AES_128_CBC
# 4. JSSE message digest algorithm name, e.g., SHA
-1
# 4. JSSE message digest algorithm name, e.g., SHA
#
# See SSL/TLS specifications and "Java Cryptography Architecture Standard
# Algorithm Name Documentation" for information about the algorithm names.
...
...
src/share/lib/security/java.security-macosx
浏览文件 @
b9171271
...
...
@@ -503,7 +503,7 @@ jdk.certpath.disabledAlgorithms=MD2, RSA keySize < 1024
#
# Example:
# jdk.tls.disabledAlgorithms=MD5, SSLv3, DSA, RSA keySize < 2048
jdk.tls.disabledAlgorithms=SSLv3
jdk.tls.disabledAlgorithms=SSLv3
, DH keySize < 768
# Legacy algorithms for Secure Socket Layer/Transport Layer Security (SSL/TLS)
# processing in JSSE implementation.
...
...
@@ -542,7 +542,7 @@ jdk.tls.disabledAlgorithms=SSLv3
# 1. JSSE cipher suite name, e.g., TLS_RSA_WITH_AES_128_CBC_SHA
# 2. JSSE key exchange algorithm name, e.g., RSA
# 3. JSSE cipher (encryption) algorithm name, e.g., AES_128_CBC
# 4. JSSE message digest algorithm name, e.g., SHA
-1
# 4. JSSE message digest algorithm name, e.g., SHA
#
# See SSL/TLS specifications and "Java Cryptography Architecture Standard
# Algorithm Name Documentation" for information about the algorithm names.
...
...
src/share/lib/security/java.security-solaris
浏览文件 @
b9171271
...
...
@@ -502,7 +502,7 @@ jdk.certpath.disabledAlgorithms=MD2, RSA keySize < 1024
#
# Example:
# jdk.tls.disabledAlgorithms=MD5, SSLv3, DSA, RSA keySize < 2048
jdk.tls.disabledAlgorithms=SSLv3
jdk.tls.disabledAlgorithms=SSLv3
, DH keySize < 768
# Legacy algorithms for Secure Socket Layer/Transport Layer Security (SSL/TLS)
# processing in JSSE implementation.
...
...
@@ -541,7 +541,7 @@ jdk.tls.disabledAlgorithms=SSLv3
# 1. JSSE cipher suite name, e.g., TLS_RSA_WITH_AES_128_CBC_SHA
# 2. JSSE key exchange algorithm name, e.g., RSA
# 3. JSSE cipher (encryption) algorithm name, e.g., AES_128_CBC
# 4. JSSE message digest algorithm name, e.g., SHA
-1
# 4. JSSE message digest algorithm name, e.g., SHA
#
# See SSL/TLS specifications and "Java Cryptography Architecture Standard
# Algorithm Name Documentation" for information about the algorithm names.
...
...
src/share/lib/security/java.security-windows
浏览文件 @
b9171271
...
...
@@ -503,7 +503,7 @@ jdk.certpath.disabledAlgorithms=MD2, RSA keySize < 1024
#
# Example:
# jdk.tls.disabledAlgorithms=MD5, SSLv3, DSA, RSA keySize < 2048
jdk.tls.disabledAlgorithms=SSLv3
jdk.tls.disabledAlgorithms=SSLv3
, DH keySize < 768
# Legacy algorithms for Secure Socket Layer/Transport Layer Security (SSL/TLS)
# processing in JSSE implementation.
...
...
@@ -542,7 +542,7 @@ jdk.tls.disabledAlgorithms=SSLv3
# 1. JSSE cipher suite name, e.g., TLS_RSA_WITH_AES_128_CBC_SHA
# 2. JSSE key exchange algorithm name, e.g., RSA
# 3. JSSE cipher (encryption) algorithm name, e.g., AES_128_CBC
# 4. JSSE message digest algorithm name, e.g., SHA
-1
# 4. JSSE message digest algorithm name, e.g., SHA
#
# See SSL/TLS specifications and "Java Cryptography Architecture Standard
# Algorithm Name Documentation" for information about the algorithm names.
...
...
test/sun/security/ec/TestEC.java
浏览文件 @
b9171271
/*
* Copyright (c) 2009, 201
3
, Oracle and/or its affiliates. All rights reserved.
* Copyright (c) 2009, 201
5
, Oracle and/or its affiliates. All rights reserved.
* DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
*
* This code is free software; you can redistribute it and/or modify it
...
...
@@ -59,6 +59,11 @@ import java.security.Security;
public
class
TestEC
{
public
static
void
main
(
String
[]
args
)
throws
Exception
{
// reset security properties to make sure that the algorithms
// and keys used in this test are not disabled.
Security
.
setProperty
(
"jdk.tls.disabledAlgorithms"
,
""
);
Security
.
setProperty
(
"jdk.certpath.disabledAlgorithms"
,
""
);
ProvidersSnapshot
snapshot
=
ProvidersSnapshot
.
create
();
try
{
main0
(
args
);
...
...
@@ -68,10 +73,6 @@ public class TestEC {
}
public
static
void
main0
(
String
[]
args
)
throws
Exception
{
// reset the security property to make sure that the algorithms
// and keys used in this test are not disabled.
Security
.
setProperty
(
"jdk.tls.disabledAlgorithms"
,
""
);
Provider
p
=
Security
.
getProvider
(
"SunEC"
);
if
(
p
==
null
)
{
...
...
test/sun/security/pkcs11/sslecc/ClientJSSEServerJSSE.java
浏览文件 @
b9171271
/*
* Copyright (c) 2002, 201
2
, Oracle and/or its affiliates. All rights reserved.
* Copyright (c) 2002, 201
5
, Oracle and/or its affiliates. All rights reserved.
* DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
*
* This code is free software; you can redistribute it and/or modify it
...
...
@@ -43,9 +43,10 @@ public class ClientJSSEServerJSSE extends PKCS11Test {
private
static
String
[]
cmdArgs
;
public
static
void
main
(
String
[]
args
)
throws
Exception
{
// reset
the security property
to make sure that the algorithms
// reset
security properties
to make sure that the algorithms
// and keys used in this test are not disabled.
Security
.
setProperty
(
"jdk.tls.disabledAlgorithms"
,
""
);
Security
.
setProperty
(
"jdk.certpath.disabledAlgorithms"
,
""
);
cmdArgs
=
args
;
main
(
new
ClientJSSEServerJSSE
());
...
...
test/sun/security/ssl/com/sun/net/ssl/internal/ssl/DHKeyExchange/DHEKeySizing.java
浏览文件 @
b9171271
/*
* Copyright (c) 2013, Oracle and/or its affiliates. All rights reserved.
* Copyright (c) 2013,
2015,
Oracle and/or its affiliates. All rights reserved.
* DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
*
* This code is free software; you can redistribute it and/or modify it
...
...
@@ -100,6 +100,7 @@ import javax.net.ssl.*;
import
javax.net.ssl.SSLEngineResult.*
;
import
java.io.*
;
import
java.nio.*
;
import
java.security.Security
;
import
java.security.KeyStore
;
import
java.security.KeyFactory
;
import
java.security.cert.Certificate
;
...
...
@@ -377,6 +378,11 @@ public class DHEKeySizing {
}
public
static
void
main
(
String
args
[])
throws
Exception
{
// reset security properties to make sure that the algorithms
// and keys used in this test are not disabled.
Security
.
setProperty
(
"jdk.tls.disabledAlgorithms"
,
""
);
Security
.
setProperty
(
"jdk.certpath.disabledAlgorithms"
,
""
);
if
(
args
.
length
!=
4
)
{
System
.
out
.
println
(
"Usage: java DHEKeySizing cipher-suite "
+
...
...
test/sun/security/ssl/com/sun/net/ssl/internal/ssl/ServerHandshaker/AnonCipherWithWantClientAuth.java
浏览文件 @
b9171271
/*
* Copyright (c) 2001, 201
1
, Oracle and/or its affiliates. All rights reserved.
* Copyright (c) 2001, 201
5
, Oracle and/or its affiliates. All rights reserved.
* DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
*
* This code is free software; you can redistribute it and/or modify it
...
...
@@ -21,6 +21,11 @@
* questions.
*/
//
// SunJSSE does not support dynamic system properties, no way to re-use
// system properties in samevm/agentvm mode.
//
/*
* @test
* @bug 4392475
...
...
@@ -34,6 +39,7 @@
import
java.io.*
;
import
java.net.*
;
import
javax.net.ssl.*
;
import
java.security.Security
;
public
class
AnonCipherWithWantClientAuth
{
...
...
@@ -156,6 +162,11 @@ public class AnonCipherWithWantClientAuth {
volatile
Exception
clientException
=
null
;
public
static
void
main
(
String
[]
args
)
throws
Exception
{
// reset security properties to make sure that the algorithms
// and keys used in this test are not disabled.
Security
.
setProperty
(
"jdk.tls.disabledAlgorithms"
,
""
);
Security
.
setProperty
(
"jdk.certpath.disabledAlgorithms"
,
""
);
String
keyFilename
=
System
.
getProperty
(
"test.src"
,
"./"
)
+
"/"
+
pathToStores
+
"/"
+
keyStoreFile
;
...
...
test/sun/security/ssl/sanity/interop/ClientJSSEServerJSSE.java
浏览文件 @
b9171271
/*
* Copyright (c) 2002, 201
1
, Oracle and/or its affiliates. All rights reserved.
* Copyright (c) 2002, 201
5
, Oracle and/or its affiliates. All rights reserved.
* DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
*
* This code is free software; you can redistribute it and/or modify it
...
...
@@ -34,9 +34,10 @@ import java.security.Security;
public
class
ClientJSSEServerJSSE
{
public
static
void
main
(
String
[]
args
)
throws
Exception
{
// reset
the security property
to make sure that the algorithms
// reset
security properties
to make sure that the algorithms
// and keys used in this test are not disabled.
Security
.
setProperty
(
"jdk.tls.disabledAlgorithms"
,
""
);
Security
.
setProperty
(
"jdk.certpath.disabledAlgorithms"
,
""
);
CipherTest
.
main
(
new
JSSEFactory
(),
args
);
}
...
...
编辑
预览
Markdown
is supported
0%
请重试
或
添加新附件
.
添加附件
取消
You are about to add
0
people
to the discussion. Proceed with caution.
先完成此消息的编辑!
取消
想要评论请
注册
或
登录