RFR 8036779: sun.security.krb5.KdcComm interprets kdc_timeout as msec instead of sec

Weijun Wang weijun.wang at oracle.com
Wed May 14 00:38:11 UTC 2014


Please review the code changes at

    http://cr.openjdk.java.net/~weijun/8036779/webrev.00/

The problem is that Java treats kdc_timeout as milliseconds but others 
(NetBSD here) might treat it as seconds. With this code change, when the 
number is <= 120, it's seconds, otherwise, milliseconds.

One exception would be that someone thinking NetBSD style could set it 
to 999 for a "maximum" timeout but the final result is less than 1 
second. In that case, we should advise him/her to set it to 99999999.

Thanks
Max



More information about the security-dev mailing list