https://bz.apache.org/bugzilla/show_bug.cgi?id=65806
--- Comment #1 from Mark Thomas <ma...@apache.org> --- If Tomcat could determine that FIPS is enabled then it could switch to "" without even trying SHA1PRNG first. Unfortunately, I don't see a way to do that as FIPS support isn't part of the standard JRE (that also makes testing any solution tricky). I think testing SHA1PRNG on class init is the way to go. Logging at SEVERE seemed reasonable originally as SHA1PRNG should always be supported but if FIPS changes that then a single WARNING does seem more appropriate. -- You are receiving this mail because: You are the assignee for the bug. --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
