RFR: 8333772: Incorrect Kerberos behavior when udp_preference_limit = 0
Weijun Wang
weijun at openjdk.org
Mon Jun 10 20:35:40 UTC 2024
On Mon, 10 Jun 2024 20:29:54 GMT, Weijun Wang <weijun at openjdk.org> wrote:
> Allow `udp_preference_limit = 0` to force TCP.
>
> The reason for this bug is that it was read in a similar way as `kdc_timeout` and `max_retries`, both must be positive to have effect.
This code change introduce a behavior change that makes `udp_preference_limit = 0` meaningful. A release note will be added. Please advise if a CSR is required. The compatibility risk should be minimal. It's very unlikely that someone would use this setting which was ignored by Java. The old `udp_preference_limit = 1` setting still works now.
-------------
PR Comment: https://git.openjdk.org/jdk/pull/19638#issuecomment-2159231339
More information about the security-dev
mailing list