RFR: 8259401: Add checking to jarsigner to warn weak algorithms used in si… [v2]

Hai-May Chao hchao at openjdk.java.net
Wed Jan 13 01:21:17 UTC 2021


On Tue, 12 Jan 2021 22:22:55 GMT, Rajan Halade <rhalade at openjdk.org> wrote:

>> Hai-May Chao has updated the pull request incrementally with one additional commit since the last revision:
>> 
>>   No warning for trusted cert's SHA1, and added debug output to test
>
> test/jdk/sun/security/tools/jarsigner/CheckSignerCertChain.java line 52:
> 
>> 50:     public static void main(String[] args) throws Exception {
>> 51: 
>> 52:         // root certificate using SHA1withRSA and 1024-bit key
> 
> It will be helpful to have these comments logged as debug messages with System.out

comment messages added.

-------------

PR: https://git.openjdk.java.net/jdk/pull/2042


More information about the security-dev mailing list