test/sun/security/krb5/auto/OneKDC.java
Print this page
rev 7199 : 8014310: JAAS/Krb5LoginModule using des encytypes failure with NPE after JDK-8012679
@@ -65,14 +65,23 @@
addPrincipal(USER, PASS);
addPrincipal(USER2, PASS2);
addPrincipalRandKey("krbtgt/" + REALM);
addPrincipalRandKey(SERVER);
addPrincipalRandKey(BACKEND);
+
+ String extraConfig = "";
+ if (etype != null) {
+ extraConfig += "default_tkt_enctypes=" + etype
+ + "\ndefault_tgs_enctypes=" + etype;
+ if (etype.startsWith("des")) {
+ extraConfig += "\nallow_weak_crypto = true";
+ }
+ }
KDC.saveConfig(KRB5_CONF, this,
"forwardable = true",
"default_keytab_name = " + KTAB,
- etype == null ? "" : "default_tkt_enctypes=" + etype + "\ndefault_tgs_enctypes=" + etype);
+ extraConfig);
System.setProperty("java.security.krb5.conf", KRB5_CONF);
// Whatever krb5.conf had been loaded before, we reload ours now.
Config.refresh();
writeKtab(KTAB);