Integrated: 8282633: jarsigner output does not explain why an EC key is disabled if its curve has been disabled
Hai-May Chao
hchao at openjdk.java.net
Tue Mar 15 15:58:50 UTC 2022
On Mon, 14 Mar 2022 17:41:28 GMT, Hai-May Chao <hchao at openjdk.org> wrote:
> When a named curve is disabled in `jdk.disabled.namedCurves` property which is included in `jdk.jar.disabledAlgorithms` and `jdk.certpath.disabledAlgorithms`, `jarsigner` should display the disabled named curve as a result of its disabled algorithm constraint checking. This clarifies why an EC key is disabled in its warning and verbose output.
This pull request has now been integrated.
Changeset: f43ffe21
Author: Hai-May Chao <hchao at openjdk.org>
URL: https://git.openjdk.java.net/jdk/commit/f43ffe211f8ff287697092c39e4c25a16b40a383
Stats: 176 lines in 5 files changed: 145 ins; 16 del; 15 mod
8282633: jarsigner output does not explain why an EC key is disabled if its curve has been disabled
Reviewed-by: weijun
-------------
PR: https://git.openjdk.java.net/jdk/pull/7810
More information about the security-dev
mailing list