[JDK-8176503] Disable SHA-1 TLS Server Certificates Created: 2017-03-10  Updated: 2017-05-17  Resolved: 2017-03-14

Status: Closed
Project: JDK
Component/s: security-libs
Affects Version/s: 9
Fix Version/s: 9

Type: Bug Priority: P2
Reporter: Sean Mullan Assignee: Sean Mullan
Resolution: Fixed Votes: 0
Labels: autoverify, jsr379-annex1-na, noreg-other, security-disabled-algs-sha1
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Issue Links:
backported by JDK-8176536 Improved algorithm constraints checking Resolved
backported by JDK-8177604 Disable SHA-1 TLS Server Certificates Resolved
relates to JDK-8149555 JEP 288: Disable SHA-1 Certificates Closed
Subcomponent: java.security
Resolved In Build: b162
Verification: Not verified

Add the following constraint to the jdk.certpath.disabledAlgorithms security property: "SHA1 jdkCA & Usage TLSServer"

Comment by Sean Mullan [ 2017-03-13 ]
noreg-other: there are existing tests already added as part of JDK-8160655
Comment by HG Updates [ 2017-03-14 ]
URL: http://hg.openjdk.java.net/jdk9/dev/jdk/rev/dbcdb8bcadd6
User: mullan
Date: 2017-03-14 12:36:48 +0000
Comment by HG Updates [ 2017-03-22 ]
URL: http://hg.openjdk.java.net/jdk9/jdk9/jdk/rev/dbcdb8bcadd6
User: lana
Date: 2017-03-22 16:20:52 +0000
Generated at Sat Aug 24 03:17:44 UTC 2019 using Jira 7.13.5#713005-sha1:8d78f1047b9cca7d35d4d13f706b37e27d869e07.