Loading...

XML

Word

Printable

Type: Enhancement
Resolution: Fixed
Priority: P3
Fix Version/s: 26
Affects Version/s: None
Component/s: security-libs
Labels:
- release-note=yes
- security-disabled-algs-rfe

Subcomponent:
java.security
Resolved In Build:
b16

Create a new security property (ex: jdk.crypto.disabledAlgorithms) that restricts crypto algorithms at the JCE layer.

For example, the following setting:

jdk.crypto.disabledAlgorithms=MessageDigest.MD2

would result in a NoSuchAlgorithmException if code called MessageDigest.getInstance("MD2"), even if a configured provider supported MD2. It would also apply to the getInstance methods that have a provider argument.

causes

JDK-8367583 sun/security/util/AlgorithmConstraints/InvalidCryptoDisabledAlgos.java fails after JDK-8244336

Resolved

csr for

JDK-8364386 Restrict algorithms at JCE layer

Closed

duplicates

JDK-8360146 Add system/security property to disable RSAES-PKCS-v1_5 padding

Closed

relates to

JDK-8315487 Security Providers Filter

In Progress

JDK-8361964 Remove outdated algorithms from requirements and add PBES2 algorithms

Resolved

JDK-8254711 Add java.security.Provider.getService JFR Event

Resolved

links to

Commit(master) openjdk/jdk/35dabb1a

Review(master) openjdk/jdk/26377

(1 relates to, 2 links to)

1.	Document the new security property "jdk.crypto.disabledAlgorithms" in the Security Developer’s Guide		Resolved	Raymond Gallardo
2.	Release Note: New Security Property "jdk.crypto.disabledAlgorithms" for Restricting Algorithms at the JCE layer		Closed	Valerie Peng

Assignee:: Valerie Peng
Reporter:: Sean Mullan
Votes:: 0 Vote for this issue
Watchers:: 7 Start watching this issue

Created:: 2020-05-04 05:26
Updated:: 2025-09-23 13:18
Resolved:: 2025-09-12 13:23

Details

Description

Attachments

Issue Links

Sub-Tasks

Activity

People

Dates