RFR: 8277474: jarsigner does not check if algorithm parameters are disabled
Hai-May Chao
hchao at openjdk.java.net
Tue Feb 22 20:27:22 UTC 2022
This fixes jarsigner to enforce checking against algorithm constraint properties so when the signature algorithms parameters use disabled or legacy algorithms, it will emit warnings accordingly. If the algorithm used in parameters is disabled, jarsigner treats the jar as unsigned.
-------------
Commit messages:
- 8277474: jarsigner does not check if algorithm parameters are disabled
- Testcase updated
- 8265765: DomainKeyStore may stop enumerating aliases if a constituting KeyStore is empty
Changes: https://git.openjdk.java.net/jdk/pull/7580/files
Webrev: https://webrevs.openjdk.java.net/?repo=jdk&pr=7580&range=00
Issue: https://bugs.openjdk.java.net/browse/JDK-8277474
Stats: 256 lines in 5 files changed: 240 ins; 3 del; 13 mod
Patch: https://git.openjdk.java.net/jdk/pull/7580.diff
Fetch: git fetch https://git.openjdk.java.net/jdk pull/7580/head:pull/7580
PR: https://git.openjdk.java.net/jdk/pull/7580
More information about the security-dev
mailing list