mirror of
https://github.com/openjdk/jdk.git
synced 2025-09-18 18:14:38 +02:00
8267100: [BACKOUT] JDK-8196415 Disable SHA-1 Signed JARs
Co-authored-by: Sean Mullan <mullan@openjdk.org> Reviewed-by: hchao, xuelei
This commit is contained in:
Weijun Wang
parent
d3ad8cd344
commit
e2d7ec38af
1 changed files with 2 additions and 3 deletions
|
|
@ -634,8 +634,7 @@ sun.security.krb5.maxReferrals=5
|
|||
#
|
||||
#
|
||||
jdk.certpath.disabledAlgorithms=MD2, MD5, SHA1 jdkCA & usage TLSServer, \
|
||||
RSA keySize < 1024, DSA keySize < 1024, EC keySize < 224, \
|
||||
SHA1 jdkCA & usage SignedJAR & denyAfter 2019-01-01
|
||||
RSA keySize < 1024, DSA keySize < 1024, EC keySize < 224
|
||||
|
||||
#
|
||||
# Legacy algorithms for certification path (CertPath) processing and
|
||||
|
|
@ -699,7 +698,7 @@ jdk.security.legacyAlgorithms=SHA1, \
|
|||
# See "jdk.certpath.disabledAlgorithms" for syntax descriptions.
|
||||
#
|
||||
jdk.jar.disabledAlgorithms=MD2, MD5, RSA keySize < 1024, \
|
||||
DSA keySize < 1024, SHA1 jdkCA & denyAfter 2019-01-01
|
||||
DSA keySize < 1024
|
||||
|
||||
#
|
||||
# Algorithm restrictions for Secure Socket Layer/Transport Layer Security
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue