Skip to content
Permalink
Browse files
8267100: [BACKOUT] JDK-8196415 Disable SHA-1 Signed JARs
Reviewed-by: mullan
  • Loading branch information
coffeys committed May 17, 2021
1 parent 860ca3f commit e84e18580d764f612b9afaee7a470cde856a6bcc
Showing 1 changed file with 2 additions and 3 deletions.
@@ -633,8 +633,7 @@ sun.security.krb5.maxReferrals=5
#
#
jdk.certpath.disabledAlgorithms=MD2, MD5, SHA1 jdkCA & usage TLSServer, \
RSA keySize < 1024, DSA keySize < 1024, EC keySize < 224, \
SHA1 jdkCA & usage SignedJAR & denyAfter 2019-01-01
RSA keySize < 1024, DSA keySize < 1024, EC keySize < 224

#
# Legacy algorithms for certification path (CertPath) processing and
@@ -698,7 +697,7 @@ jdk.security.legacyAlgorithms=SHA1, \
# See "jdk.certpath.disabledAlgorithms" for syntax descriptions.
#
jdk.jar.disabledAlgorithms=MD2, MD5, RSA keySize < 1024, \
DSA keySize < 1024, SHA1 jdkCA & denyAfter 2019-01-01
DSA keySize < 1024

#
# Algorithm restrictions for Secure Socket Layer/Transport Layer Security

1 comment on commit e84e185

@openjdk-notifier
Copy link

@openjdk-notifier openjdk-notifier bot commented on e84e185 May 17, 2021

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please sign in to comment.