RFR: 8259401: Add checking to jarsigner to warn weak algorithms used in si… [v3]
Hai-May Chao
hchao at openjdk.java.net
Wed Jan 13 22:15:25 UTC 2021
> The jarsigner tool currently provides warning associated with the signer’s cert when it uses weak algorithms, but not for the CA certs. This change is to process the signer’s cert chain to warn if CA certs use weak algorithms.
Hai-May Chao has updated the pull request incrementally with one additional commit since the last revision:
remove comment about checking sigalg for trusted cert
-------------
Changes:
- all: https://git.openjdk.java.net/jdk/pull/2042/files
- new: https://git.openjdk.java.net/jdk/pull/2042/files/5a3e184a..88d94dfd
Webrevs:
- full: https://webrevs.openjdk.java.net/?repo=jdk&pr=2042&range=02
- incr: https://webrevs.openjdk.java.net/?repo=jdk&pr=2042&range=01-02
Stats: 2 lines in 1 file changed: 0 ins; 1 del; 1 mod
Patch: https://git.openjdk.java.net/jdk/pull/2042.diff
Fetch: git fetch https://git.openjdk.java.net/jdk pull/2042/head:pull/2042
PR: https://git.openjdk.java.net/jdk/pull/2042
More information about the security-dev
mailing list