Loading...

XML

Word

Printable

Type: Bug
Resolution: Fixed
Priority: P3
Fix Version/s: 9
Affects Version/s: 6, 9
Component/s: security-libs
Labels:

Subcomponent:
javax.net.ssl
Resolved In Build:
b148
Verification:
Verified

Issue	Fix Version	Assignee	Priority	Status	Resolution	Resolved In Build
JDK-8197292	8u192	Robert Mckenna	P3	Resolved	Fixed	b01
JDK-8195475	8u172	Robert Mckenna	P3	Resolved	Fixed	b03
JDK-8190077	8u162	Robert Mckenna	P3	Resolved	Fixed	b04
JDK-8188581	8u161	Unassigned	P3	Resolved	Fixed	b01
JDK-8172946	8u152	Robert Mckenna	P3	Resolved	Fixed	b01
JDK-8170171	8u151	Robert Mckenna	P3	Resolved	Fixed	b01
JDK-8171764	8u141	Robert Mckenna	P3	Resolved	Fixed	b01
JDK-8171585	8u131	Robert Mckenna	P3	Resolved	Fixed	b01
JDK-8171107	8u121	Robert Mckenna	P3	Resolved	Fixed	b13
JDK-8192330	emb-8u161	Robert Mckenna	P3	Resolved	Fixed	b01
JDK-8184634	emb-8u151	Unassigned	P3	Resolved	Fixed	b01
JDK-8178655	emb-8u141	Unassigned	P3	Resolved	Fixed	b01
JDK-8173548	emb-8u131	Unassigned	P3	Resolved	Fixed	b01
JDK-8171171	emb-8u121	Robert Mckenna	P3	Resolved	Fixed	b13
JDK-8188501	7u171	Unassigned	P3	Resolved	Fixed	b01
JDK-8170172	7u161	Robert Mckenna	P3	Resolved	Fixed	b01
JDK-8171717	7u151	Robert Mckenna	P3	Resolved	Fixed	b01
JDK-8171631	7u141	Robert Mckenna	P3	Resolved	Fixed	b01
JDK-8171109	7u131	Robert Mckenna	P3	Resolved	Fixed	b12
JDK-8175476	openjdk7u	Robert Mckenna	P3	Resolved	Fixed	master
JDK-8188410	6u181	Unassigned	P3	Resolved	Fixed	b01
JDK-8170173	6u171	Robert Mckenna	P3	Resolved	Fixed	b01
JDK-8171805	6u161	Robert Mckenna	P3	Resolved	Fixed	b01
JDK-8171672	6u151	Robert Mckenna	P3	Resolved	Fixed	b01
JDK-8171111	6u141	Robert Mckenna	P3	Resolved	Fixed	b12

The jdk.tls.disabledAlgorithms property also applies to certificates, as the definition states in the java.security file:

# For PKI-based peer authentication and key exchange mechanisms, this list
# of disabled algorithms will also be checked during certification path
# building and validation, including algorithms used in certificates, as
# well as revocation information such as CRLs and signed OCSP Responses.
# This is in addition to the jdk.certpath.disabledAlgorithms property above.

This functionality is not currently working properly.

backported by

JDK-8170171 Certificates not being blocked by jdk.tls.disabledAlgorithms property

Resolved

JDK-8170172 Certificates not being blocked by jdk.tls.disabledAlgorithms property

Resolved

JDK-8170173 Certificates not being blocked by jdk.tls.disabledAlgorithms property

Resolved

JDK-8171107 Certificates not being blocked by jdk.tls.disabledAlgorithms property

Resolved

JDK-8171109 Certificates not being blocked by jdk.tls.disabledAlgorithms property

Resolved

JDK-8171111 Certificates not being blocked by jdk.tls.disabledAlgorithms property

Resolved

JDK-8171171 Certificates not being blocked by jdk.tls.disabledAlgorithms property

Resolved

JDK-8171585 Certificates not being blocked by jdk.tls.disabledAlgorithms property

Resolved

JDK-8171631 Certificates not being blocked by jdk.tls.disabledAlgorithms property

Resolved

JDK-8171672 Certificates not being blocked by jdk.tls.disabledAlgorithms property

Resolved

JDK-8171717 Certificates not being blocked by jdk.tls.disabledAlgorithms property

Resolved

JDK-8171764 Certificates not being blocked by jdk.tls.disabledAlgorithms property

Resolved

JDK-8171805 Certificates not being blocked by jdk.tls.disabledAlgorithms property

Resolved

JDK-8172946 Certificates not being blocked by jdk.tls.disabledAlgorithms property

Resolved

JDK-8173548 Certificates not being blocked by jdk.tls.disabledAlgorithms property

Resolved

JDK-8175476 Certificates not being blocked by jdk.tls.disabledAlgorithms property

Resolved

JDK-8178655 Certificates not being blocked by jdk.tls.disabledAlgorithms property

Resolved

JDK-8184634 Certificates not being blocked by jdk.tls.disabledAlgorithms property

Resolved

JDK-8188410 Certificates not being blocked by jdk.tls.disabledAlgorithms property

Resolved

JDK-8188501 Certificates not being blocked by jdk.tls.disabledAlgorithms property

Resolved

JDK-8188581 Certificates not being blocked by jdk.tls.disabledAlgorithms property

Resolved

JDK-8190077 Certificates not being blocked by jdk.tls.disabledAlgorithms property

Resolved

JDK-8192330 Certificates not being blocked by jdk.tls.disabledAlgorithms property

Resolved

JDK-8195475 Certificates not being blocked by jdk.tls.disabledAlgorithms property

Resolved

JDK-8197292 Certificates not being blocked by jdk.tls.disabledAlgorithms property

Resolved

relates to

JDK-8160655 Fix denyAfter and usage types for security properties

Closed

JDK-8140422 Add mechanism to allow non default root CAs to be not subject to algorithm restrictions

Closed

(20 backported by, 2 relates to)

Assignee:: Sean Mullan

Reporter:: Sean Mullan

Votes:: 0 Vote for this issue

Watchers:: 6 Start watching this issue

Created:: 2016-11-21 09:55

Updated:: 2018-02-07 17:12

Resolved:: 2016-12-02 11:28

Details

Backports

Description

Attachments

Issue Links

Activity

People

Dates