Mercurial Mercurial > jdk-sandbox / changeset
summary | shortlog | changelog | graph | tags | bookmarks | branches | files | changeset | raw | help
Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
8168822: Document that algorithm restrictions do not apply to trusted anchors
authorxuelei
Thu, 27 Oct 2016 23:49:38 +0000
changeset 41816 07e906f1a20b
parent 41815 b3da085a9846
child 41817 b90ad1de93ea
8168822: Document that algorithm restrictions do not apply to trusted anchors Reviewed-by: weijun, jnimeh, mullan
jdk/src/java.base/share/conf/security/java.security file | annotate | diff | comparison | revisions 
--- a/jdk/src/java.base/share/conf/security/java.security	Thu Oct 27 21:22:57 2016 +0000
+++ b/jdk/src/java.base/share/conf/security/java.security	Thu Oct 27 23:49:38 2016 +0000
@@ -645,6 +645,9 @@
 # before larger keysize constraints of the same algorithm.  For example:
 # "RSA keySize < 1024 & jdkCA, RSA keySize < 2048".
 #
+# Note: The algorithm restrictions do not apply to trust anchors or
+# self-signed certificates.
+#
 # Note: This property is currently used by Oracle's PKIX implementation. It
 # is not guaranteed to be examined and used by other implementations.
 #
@@ -714,6 +717,9 @@
 # See the specification of "jdk.certpath.disabledAlgorithms" for the
 # syntax of the disabled algorithm string.
 #
+# Note: The algorithm restrictions do not apply to trust anchors or
+# self-signed certificates.
+#
 # Note: This property is currently used by Oracle's JSSE implementation.
 # It is not guaranteed to be examined and used by other implementations.
 #
jdk-sandbox