RFR: 8259401: Add checking to jarsigner to warn weak algorithms used in si… [v2]
Hai-May Chao
hchao at openjdk.java.net
Wed Jan 13 01:21:14 UTC 2021
> The jarsigner tool currently provides warning associated with the signer’s cert when it uses weak algorithms, but not for the CA certs. This change is to process the signer’s cert chain to warn if CA certs use weak algorithms.
Hai-May Chao has updated the pull request incrementally with one additional commit since the last revision:
No warning for trusted cert's SHA1, and added debug output to test
-------------
Changes:
- all: https://git.openjdk.java.net/jdk/pull/2042/files
- new: https://git.openjdk.java.net/jdk/pull/2042/files/eb4f93eb..5a3e184a
Webrevs:
- full: https://webrevs.openjdk.java.net/?repo=jdk&pr=2042&range=01
- incr: https://webrevs.openjdk.java.net/?repo=jdk&pr=2042&range=00-01
Stats: 39 lines in 2 files changed: 25 ins; 8 del; 6 mod
Patch: https://git.openjdk.java.net/jdk/pull/2042.diff
Fetch: git fetch https://git.openjdk.java.net/jdk pull/2042/head:pull/2042
PR: https://git.openjdk.java.net/jdk/pull/2042
More information about the security-dev
mailing list