[7u6] Request for phase 2 approval for CR 7180907 - Jarsigner -verify fails if rsa file used sha-256 with authenticated attributes
Weijun Wang
weijun.wang at oracle.com
Sun Jul 15 21:16:22 PDT 2012
Hi All
This is a request to fix a bug in jdk7u6 phase 2.
7180907: Jarsigner -verify fails if rsa file used sha-256 with
authenticated attributes
http://bugs.sun.com/bugdatabase/view_bug.do?bug_id=7180907
The bug prevents jarsigner verifying a signer jar.
The fix for 7u6 is at
http://cr.openjdk.java.net/~weijun/7180907/7u/webrev.00/
It's already reviewed by Xuelei Fan, Vincent Ryan, and Alexander Fomin.
http://mail.openjdk.java.net/pipermail/security-dev/2012-July/005125.html
The fix is low-risk, and isolated. new regression test added. Existing
tests also run fine.
Please note the fix for JDK 8 will be more aggressive.
Thanks
Weijun
More information about the jdk7u-dev
mailing list