https://bz.apache.org/bugzilla/show_bug.cgi?id=69607
--- Comment #1 from Mark Thomas <ma...@apache.org> --- Remove completely, no. Handle gracefully if not available, yes. That might include deprecating digestMD5() in Tomcat 11 and removing for Tomcat 12 onwards. Note that MD5 is a required algorithm for Java <= 11. That requirement was dropped somewhere between Java 11 and Java 17. There are a couple of tests that use MD5 for digest auth. Those can probably be switch to SHA256 apart from the ones that are testing the range of digests available. -- You are receiving this mail because: You are the assignee for the bug. --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
