Skip to content
This repository has been archived by the owner. It is now read-only.
Permalink
Browse files
8267100: [BACKOUT] JDK-8196415 Disable SHA-1 Signed JARs
Co-authored-by: Sean Mullan <mullan@openjdk.org>
Reviewed-by: hchao, xuelei
  • Loading branch information
wangweij and seanjmullan committed Jun 22, 2021
1 parent d3ad8cd commit e2d7ec38af4e13cfbd303fa37e766aa2071cfd1f
Showing 1 changed file with 2 additions and 3 deletions.
@@ -634,8 +634,7 @@ sun.security.krb5.maxReferrals=5
#
#
jdk.certpath.disabledAlgorithms=MD2, MD5, SHA1 jdkCA & usage TLSServer, \
RSA keySize < 1024, DSA keySize < 1024, EC keySize < 224, \
SHA1 jdkCA & usage SignedJAR & denyAfter 2019-01-01
RSA keySize < 1024, DSA keySize < 1024, EC keySize < 224

#
# Legacy algorithms for certification path (CertPath) processing and
@@ -699,7 +698,7 @@ jdk.security.legacyAlgorithms=SHA1, \
# See "jdk.certpath.disabledAlgorithms" for syntax descriptions.
#
jdk.jar.disabledAlgorithms=MD2, MD5, RSA keySize < 1024, \
DSA keySize < 1024, SHA1 jdkCA & denyAfter 2019-01-01
DSA keySize < 1024

#
# Algorithm restrictions for Secure Socket Layer/Transport Layer Security

1 comment on commit e2d7ec3

@openjdk-notifier
Copy link

@openjdk-notifier openjdk-notifier bot commented on e2d7ec3 Jun 22, 2021

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please sign in to comment.