[jdk11u] RFR: 8275887: jarsigner prints invalid digest/signature algorithm warnings if keysize is weak/disabled [v2]
Goetz Lindenmaier
goetz at openjdk.org
Fri Sep 16 08:08:37 UTC 2022
> I backport this change from 17u because I had to do adaptions for 17 that
> are needed here, too. I needed further fixes, though:
>
> src/java.base/share/classes/sun/security/pkcs/SignerInfo.java
> Slight difference in context, change applies to code clean.
> I had to change a record to a class to make the change compile
> with Java 11.
>
> src/jdk.jartool/share/classes/sun/security/tools/jarsigner/Main.java
> Chunks don't apply because in 11 method JAR_DISABLED_CHECK
> lacks the prefix JAR_.
> checkWeakKey() and checkWeakAlg() are not implemented in 11. Hunk omitted.
>
> test/jdk/sun/security/tools/jarsigner/TimestampCheck.java
> Resolved adding bugID to @bug.
Goetz Lindenmaier has updated the pull request incrementally with one additional commit since the last revision:
Remove stray comment
-------------
Changes:
- all: https://git.openjdk.org/jdk11u/pull/56/files
- new: https://git.openjdk.org/jdk11u/pull/56/files/e65205a9..21a7e237
Webrevs:
- full: https://webrevs.openjdk.org/?repo=jdk11u&pr=56&range=01
- incr: https://webrevs.openjdk.org/?repo=jdk11u&pr=56&range=00-01
Stats: 1 line in 1 file changed: 0 ins; 0 del; 1 mod
Patch: https://git.openjdk.org/jdk11u/pull/56.diff
Fetch: git fetch https://git.openjdk.org/jdk11u pull/56/head:pull/56
PR: https://git.openjdk.org/jdk11u/pull/56
More information about the jdk-updates-dev
mailing list