[jdk17u-dev] RFR: 8278851: Correct signer logic for jars signed with multiple digestalgs
Matthias Baesken
mbaesken at openjdk.java.net
Fri Mar 18 08:35:42 UTC 2022
On Thu, 17 Mar 2022 17:23:34 GMT, Goetz Lindenmaier <goetz at openjdk.org> wrote:
> I backport this for parity with 17.0.4-oracle.
>
> JarVerifier: resolve due to context.
> ManifestEntryVerifier.java: I had to remove an argument 'false' because "JDK-8275887: jarsigner prints invalid digest/signature algorithm warnings if keysize is weak/disabled" is not in 17.
>
> I had to add a hunk from "JDK-8269039: Disable SHA-1 Signed JARs" to
> SecurityUtils.java to make a method public that is called in a test.
LGTM
-------------
Marked as reviewed by mbaesken (Reviewer).
PR: https://git.openjdk.java.net/jdk17u-dev/pull/262
More information about the jdk-updates-dev
mailing list