[jdk17u-dev] RFR: 8278851: Correct signer logic for jars signed with multiple digestalgs
Goetz Lindenmaier
goetz at openjdk.java.net
Thu Mar 17 17:30:17 UTC 2022
I backport this for parity with 17.0.4-oracle.
JarVerifier: resolve due to context.
ManifestEntryVerifier.java: I had to remove an argument 'false' because "JDK-8275887: jarsigner prints invalid digest/signature algorithm warnings if keysize is weak/disabled" is not in 17.
I had to add a hunk from "JDK-8269039: Disable SHA-1 Signed JARs" to
SecurityUtils.java to make a method public that is called in a test.
-------------
Commit messages:
- Backport 61b8944327e3d12cf58dc3f6bc45ecbeba4ef611
Changes: https://git.openjdk.java.net/jdk17u-dev/pull/262/files
Webrev: https://webrevs.openjdk.java.net/?repo=jdk17u-dev&pr=262&range=00
Issue: https://bugs.openjdk.java.net/browse/JDK-8278851
Stats: 273 lines in 4 files changed: 221 ins; 20 del; 32 mod
Patch: https://git.openjdk.java.net/jdk17u-dev/pull/262.diff
Fetch: git fetch https://git.openjdk.java.net/jdk17u-dev pull/262/head:pull/262
PR: https://git.openjdk.java.net/jdk17u-dev/pull/262
More information about the jdk-updates-dev
mailing list