RFR: 8244336: Restrict algorithms at JCE layer [v9]

Valerie Peng valeriep at openjdk.org
Wed Sep 3 20:37:47 UTC 2025


On Wed, 3 Sep 2025 19:47:14 GMT, Sean Mullan <mullan at openjdk.org> wrote:

>> Valerie Peng has updated the pull request incrementally with one additional commit since the last revision:
>> 
>>   Address review comments from Tony and Artur.
>
> src/java.base/share/conf/security/java.security line 817:
> 
>> 815: # Example:
>> 816: #   jdk.crypto.disabledAlgorithms=Cipher.RSA/ECB/PKCS1Padding, MessageDigest.MD2
>> 817: 
> 
> Please add 2 more lines here, like other properties such as `jdk.security.provider.preferred` that have no default values:
> 
> 
> #
> # jdk.crypto.disabledAlgorithms=

Sure~

-------------

PR Review Comment: https://git.openjdk.org/jdk/pull/26377#discussion_r2320125507


More information about the security-dev mailing list