[9] RFR 8177569: keytool should not warn if signature algorithm used in cacerts is weak

Weijun Wang weijun.wang at oracle.com
Mon Mar 27 01:43:48 UTC 2017

Previous message (by thread): RFR: 3 security-libs release notes on keytool/krb5/etc
Next message (by thread): [9] RFR 8177569: keytool should not warn if signature algorithm used in cacerts is weak
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Please take a review at

    http://cr.openjdk.java.net/~weijun/8177569/webrev.00/

Since our implementation of CertPath validation does not check for the 
signature algorithm of a root CA, keytool should not warn about its 
weakness either.

Thanks
Max

Previous message (by thread): RFR: 3 security-libs release notes on keytool/krb5/etc
Next message (by thread): [9] RFR 8177569: keytool should not warn if signature algorithm used in cacerts is weak
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the security-dev mailing list