RFR: 8273670: Remove weak etypes from default krb5 etype list [v3]
Weijun Wang
weijun at openjdk.java.net
Tue Sep 28 14:19:32 UTC 2021
On Tue, 28 Sep 2021 14:08:44 GMT, Sean Mullan <mullan at openjdk.org> wrote:
>> Weijun Wang has updated the pull request incrementally with one additional commit since the last revision:
>>
>> disable weak checksums as well
>
> src/java.security.jgss/share/classes/sun/security/krb5/internal/crypto/EType.java line 57:
>
>> 55: private static int[] defaultETypes;
>> 56: // allow_weak_crypto in krb5.conf
>> 57: public static boolean allowWeakCrypto;
>
> Can you make this package-private instead? I think it is only accessed by `sun.security.krb5.internal.crypto.Cksum`.
OK.
-------------
PR: https://git.openjdk.java.net/jdk/pull/5654
More information about the security-dev
mailing list