[JDK-8139348] Deprecate 3DES and RC4 in Kerberos - Java Bug System

XML

Word

Printable

Issue	Fix Version	Assignee	Priority	Status	Resolution	Resolved In Build
JDK-8282362	11.0.17-oracle	Sean Coffey	P3	Resolved	Fixed	b01
JDK-8288872	11.0.17	Goetz Lindenmaier	P3	Resolved	Fixed	b01
JDK-8309333	openjdk8u392	Ekaterina Vergizova	P3	Resolved	Fixed	b01
JDK-8282363	8u351	Sean Coffey	P3	Resolved	Fixed	b01
JDK-8282364	7u361	Sean Coffey	P3	Resolved	Fixed	b01

https://www.rfc-editor.org/rfc/rfc8429.txt deprecates 3DES and RC4. MIT krb5 has done this in 1.14 (http://web.mit.edu/kerberos/krb5-1.14/krb5-1.14.html) on the KDC side (i.e. will not generate keys for them).

backported by

JDK-8282362 Deprecate 3DES and RC4 in Kerberos

JDK-8282363 Deprecate 3DES and RC4 in Kerberos

JDK-8282364 Deprecate 3DES and RC4 in Kerberos

JDK-8288872 Deprecate 3DES and RC4 in Kerberos

JDK-8309333 Deprecate 3DES and RC4 in Kerberos

csr for

JDK-8262273 Deprecate 3DES and RC4 in Kerberos

links to

Commit openjdk/jdk8u-dev/6244292d

Commit openjdk/jdk11u-dev/aa35f09d

Commit openjdk/jdk/ded96ddc

Review openjdk/jdk8u-dev/312

Review openjdk/jdk11u-dev/1136

Review openjdk/jdk/2701

(1 csr for, 6 links to)

1.	Release Note: Deprecate 3DES and RC4 in Kerberos		Closed	Weijun Wang
2.	Document the deprecation of 3DES and RC4 types		Resolved	Raymond Gallardo