Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8162362

Introduce system property to control enabled ciphersuites

    XMLWordPrintable

    Details

    • Subcomponent:
    • Resolved In Build:
      b132
    • Verification:
      Verified

      Backports

        Description

        One of the changes in 6u105 is disabling SSL_RSA_WITH_DES_CBC_SHA. The cipher shows up as one of the supported ciphers, however any attempt to enable this cipher fails.

        If a cipher suite is getting weak or vulnerable, it is normally removed from the default enabled list in JDK. The compatibility impact of the removing is normally minimal as if there are other available cipher suites enabled.

        However, some applications may want to support the disabled cipher suites in JDK. If the source code is not accessible, there is not much workaround to have the cipher suite back to work if it is removed from the default enabled list in JDK.

          Attachments

            Issue Links

              Activity

                People

                • Assignee:
                  xuelei Xue-Lei Fan
                  Reporter:
                  shadowbug Shadow Bug
                • Votes:
                  0 Vote for this issue
                  Watchers:
                  8 Start watching this issue

                  Dates

                  • Due:
                    Created:
                    Updated:
                    Resolved: