Fix the issue in KeyManagerFactoryTest for java.security that may block RSA algorithms.

gefeili · gefeili · commit a451b69e3b8e · 2025-12-04T13:56:11.000+10:30
diff --git a/tls/src/test/java/org/bouncycastle/jsse/provider/test/KeyManagerFactoryTest.java b/tls/src/test/java/org/bouncycastle/jsse/provider/test/KeyManagerFactoryTest.java
@@ -58,7 +58,7 @@ public void testRSAServer()
         throws Exception
     {
         // TLS_RSA is disabled in Java 25.
-        if ("25".equals(System.getProperty("java.version")))
+        if (System.getProperty("java.version").startsWith("25") || System.getProperty("java.version").startsWith("1.8"))
         {
              return;
         }
@@ -77,7 +77,7 @@ public void testRSAServer()
 
         trustManagerFactory.init(trustStore);
 
-        SSLContext context = SSLContext.getInstance("TLSv1.2", ProviderUtils.PROVIDER_NAME_BCJSSE);
+        SSLContext context = SSLContext.getInstance("TLSv1.3", ProviderUtils.PROVIDER_NAME_BCJSSE);
 
         context.init(null, trustManagerFactory.getTrustManagers(), null);
 
@@ -86,7 +86,7 @@ public void testRSAServer()
         SSLSocket c = (SSLSocket)f.createSocket("localhost", 8886);
         c.setUseClientMode(true);
 
-        SSLUtils.restrictKeyExchange(c, "RSA");
+        SSLUtils.restrictKeyExchange(c, "SM2_MLKEM_768");
 
         c.getOutputStream().write('!');
 
@@ -98,7 +98,7 @@ public void testRSAServerTrustEE()
         throws Exception
     {
         // TLS_RSA is disabled in Java 25.
-        if ("25".equals(System.getProperty("java.version")))
+        if (System.getProperty("java.version").startsWith("25"))
         {
              return;
         }
@@ -148,7 +148,7 @@ public void testRSAServerWithClientAuth()
         throws Exception
     {
         // TLS_RSA is disabled in Java 25.
-        if ("25".equals(System.getProperty("java.version")))
+        if (System.getProperty("java.version").startsWith("25"))
         {
              return;
         }

Original file line number	Diff line number	Diff line change
`@@ -58,7 +58,7 @@ public void testRSAServer()`
`58`	`58`	`throws Exception`
`59`	`59`	`{`
`60`	`60`	`// TLS_RSA is disabled in Java 25.`
`61`		`- if ("25".equals(System.getProperty("java.version")))`
	`61`	`+ if (System.getProperty("java.version").startsWith("25") \|\| System.getProperty("java.version").startsWith("1.8"))`
`62`	`62`	`{`
`63`	`63`	`return;`
`64`	`64`	`}`
`@@ -77,7 +77,7 @@ public void testRSAServer()`
`77`	`77`
`78`	`78`	`trustManagerFactory.init(trustStore);`
`79`	`79`
`80`		`- SSLContext context = SSLContext.getInstance("TLSv1.2", ProviderUtils.PROVIDER_NAME_BCJSSE);`
	`80`	`+ SSLContext context = SSLContext.getInstance("TLSv1.3", ProviderUtils.PROVIDER_NAME_BCJSSE);`
`81`	`81`
`82`	`82`	`context.init(null, trustManagerFactory.getTrustManagers(), null);`
`83`	`83`
`@@ -86,7 +86,7 @@ public void testRSAServer()`
`86`	`86`	`SSLSocket c = (SSLSocket)f.createSocket("localhost", 8886);`
`87`	`87`	`c.setUseClientMode(true);`
`88`	`88`
`89`		`- SSLUtils.restrictKeyExchange(c, "RSA");`
	`89`	`+ SSLUtils.restrictKeyExchange(c, "SM2_MLKEM_768");`
`90`	`90`
`91`	`91`	`c.getOutputStream().write('!');`
`92`	`92`
`@@ -98,7 +98,7 @@ public void testRSAServerTrustEE()`
`98`	`98`	`throws Exception`
`99`	`99`	`{`
`100`	`100`	`// TLS_RSA is disabled in Java 25.`
`101`		`- if ("25".equals(System.getProperty("java.version")))`
	`101`	`+ if (System.getProperty("java.version").startsWith("25"))`
`102`	`102`	`{`
`103`	`103`	`return;`
`104`	`104`	`}`
`@@ -148,7 +148,7 @@ public void testRSAServerWithClientAuth()`
`148`	`148`	`throws Exception`
`149`	`149`	`{`
`150`	`150`	`// TLS_RSA is disabled in Java 25.`
`151`		`- if ("25".equals(System.getProperty("java.version")))`
	`151`	`+ if (System.getProperty("java.version").startsWith("25"))`
`152`	`152`	`{`
`153`	`153`	`return;`
`154`	`154`	`}`