7109274: Restrict the use of certificates with RSA keys less than 1024 bits Summary: This restriction is applied via the Java Security property, "jdk.certpath.disabledAlgorithms". This will impact providers that adhere to this security property. Reviewed-by: mullan

commit: 7b2dfe7a83718c8b3c329f09107592e5ac458fa1 [log] [tgz]
author: xuelei <none@none> Fri Dec 28 00:48:12 2012 -0800
committer: xuelei <none@none> Fri Dec 28 00:48:12 2012 -0800
tree: 559ac5d16f7d2e3aff4c67368c9ca2cd60ba9c07
parent: 479b53ed539f3b26f44e11389a70b6d18bc9e6cb [diff] [blame]
diff --git a/src/share/lib/security/java.security-linux b/src/share/lib/security/java.security-linux
index 22103ad..dd63fd4 100644
--- a/src/share/lib/security/java.security-linux
+++ b/src/share/lib/security/java.security-linux

@@ -371,7 +371,7 @@
 #   jdk.certpath.disabledAlgorithms=MD2, DSA, RSA keySize < 2048
 #
 #
-jdk.certpath.disabledAlgorithms=MD2
+jdk.certpath.disabledAlgorithms=MD2, RSA keySize < 1024
 
 # Algorithm restrictions for Secure Socket Layer/Transport Layer Security
 # (SSL/TLS) processing
commit	7b2dfe7a83718c8b3c329f09107592e5ac458fa1	[log] [tgz]
author	xuelei <none@none>	Fri Dec 28 00:48:12 2012 -0800
committer	xuelei <none@none>	Fri Dec 28 00:48:12 2012 -0800
tree	559ac5d16f7d2e3aff4c67368c9ca2cd60ba9c07
parent	479b53ed539f3b26f44e11389a70b6d18bc9e6cb [diff] [blame]