Skip to content
体验新版
项目
组织
正在加载...
登录
切换导航
打开侧边栏
openanolis
dragonwell8_jdk
提交
96abac97
D
dragonwell8_jdk
项目概览
openanolis
/
dragonwell8_jdk
通知
4
Star
2
Fork
0
代码
文件
提交
分支
Tags
贡献者
分支图
Diff
Issue
0
列表
看板
标记
里程碑
合并请求
0
Wiki
0
Wiki
分析
仓库
DevOps
项目成员
Pages
D
dragonwell8_jdk
项目概览
项目概览
详情
发布
仓库
仓库
文件
提交
分支
标签
贡献者
分支图
比较
Issue
0
Issue
0
列表
看板
标记
里程碑
合并请求
0
合并请求
0
Pages
分析
分析
仓库分析
DevOps
Wiki
0
Wiki
成员
成员
收起侧边栏
关闭侧边栏
动态
分支图
创建新Issue
提交
Issue看板
提交
96abac97
编写于
2月 11, 2015
作者:
I
igerasim
浏览文件
操作
浏览文件
下载
电子邮件补丁
差异文件
8071643: sun.security.krb5.KrbApReq.authenticate() is not thread safe
Reviewed-by: mullan
上级
d2e23807
变更
1
隐藏空白更改
内联
并排
Showing
1 changed file
with
13 addition
and
16 deletion
+13
-16
src/share/classes/sun/security/krb5/KrbApReq.java
src/share/classes/sun/security/krb5/KrbApReq.java
+13
-16
未找到文件。
src/share/classes/sun/security/krb5/KrbApReq.java
浏览文件 @
96abac97
...
...
@@ -60,22 +60,12 @@ public class KrbApReq {
private
static
boolean
DEBUG
=
Krb5
.
DEBUG
;
private
static
final
char
[]
hexConst
=
"0123456789ABCDEF"
.
toCharArray
();
private
static
final
MessageDigest
md
;
static
{
try
{
md
=
MessageDigest
.
getInstance
(
"MD5"
);
}
catch
(
NoSuchAlgorithmException
ex
)
{
throw
new
RuntimeException
(
"Impossible"
);
}
}
/**
* Constructs an AP-REQ message to send to the peer.
* @param tgsCred the <code>Credentials</code> to be used to construct the
* AP Request protocol message.
* @param mutualRequired Whether mutual authentication is required
* @param useSub
k
ey Whether the subkey is to be used to protect this
* @param useSub
K
ey Whether the subkey is to be used to protect this
* specific application session. If this is not set then the
* session key from the ticket will be used.
* @throws KrbException for any Kerberos protocol specific error
...
...
@@ -99,10 +89,10 @@ public class KrbApReq {
* @param tgsCred the <code>Credentials</code> to be used to construct the
* AP Request protocol message.
* @param mutualRequired Whether mutual authentication is required
* @param useSub
k
ey Whether the subkey is to be used to protect this
* @param useSub
K
ey Whether the subkey is to be used to protect this
* specific application session. If this is not set then the
* session key from the ticket will be used.
* @param c
hec
ksum checksum of the the application data that accompanies
* @param cksum checksum of the the application data that accompanies
* the KRB_AP_REQ.
* @throws KrbException for any Kerberos protocol specific error
* @throws IOException for any IO related errors
...
...
@@ -142,8 +132,8 @@ public class KrbApReq {
* Constructs an AP-REQ message from the bytes received from the
* peer.
* @param message The message received from the peer
* @param
keys <code>EncrtyptionKey</code>s to decrypt the message;
*
key selected will depend on etype used to encrypte
data
* @param
cred <code>KrbAcceptCredential</code> containing keys to decrypt
*
the message; key selected will depend on etype used to encrypt
data
* @throws KrbException for any Kerberos protocol specific error
* @throws IOException for any IO related errors
* (e.g. socket operations)
...
...
@@ -311,7 +301,14 @@ public class KrbApReq {
if
(!
authenticator
.
ctime
.
inClockSkew
())
throw
new
KrbApErrException
(
Krb5
.
KRB_AP_ERR_SKEW
);
byte
[]
hash
=
md
.
digest
(
apReqMessg
.
authenticator
.
cipher
);
byte
[]
hash
;
try
{
hash
=
MessageDigest
.
getInstance
(
"MD5"
)
.
digest
(
apReqMessg
.
authenticator
.
cipher
);
}
catch
(
NoSuchAlgorithmException
ex
)
{
throw
new
AssertionError
(
"Impossible"
);
}
char
[]
h
=
new
char
[
hash
.
length
*
2
];
for
(
int
i
=
0
;
i
<
hash
.
length
;
i
++)
{
h
[
2
*
i
]
=
hexConst
[(
hash
[
i
]&
0xff
)>>
4
];
...
...
编辑
预览
Markdown
is supported
0%
请重试
或
添加新附件
.
添加附件
取消
You are about to add
0
people
to the discussion. Proceed with caution.
先完成此消息的编辑!
取消
想要评论请
注册
或
登录