On Wed, 13 Jan 2021 20:25:53 GMT, Sean Mullan wrote:
>> src/jdk.jartool/share/classes/sun/security/tools/jarsigner/Main.java line
>> 1484:
>>
>>> 1482: // If the cert is trusted, only check its key size,
>>> but not its
>>> 1483: // signature algorithm. This is
> The jarsigner tool currently provides warning associated with the signer’s
> cert when it uses weak algorithms, but not for the CA certs. This change is
> to process the signer’s cert chain to warn if CA certs use weak algorithms.
Hai-May Chao has updated the pull request incrementally with
On Wed, 13 Jan 2021 15:13:52 GMT, Weijun Wang wrote:
>> Hai-May Chao has updated the pull request incrementally with one additional
>> commit since the last revision:
>>
>> No warning for trusted cert's SHA1, and added debug output to test
>
>
On Wed, 13 Jan 2021 01:21:14 GMT, Hai-May Chao wrote:
>> The jarsigner tool currently provides warning associated with the signer’s
>> cert when it uses weak algorithms, but not for the CA certs. This change is
>> to process the signer’s cert chain to warn if CA certs use weak algorithms.
>
>
On Wed, 13 Jan 2021 01:21:14 GMT, Hai-May Chao wrote:
>> The jarsigner tool currently provides warning associated with the signer’s
>> cert when it uses weak algorithms, but not for the CA certs. This change is
>> to process the signer’s cert chain to warn if CA certs use weak algorithms.
>
>
On Wed, 13 Jan 2021 01:21:14 GMT, Hai-May Chao wrote:
>> The jarsigner tool currently provides warning associated with the signer’s
>> cert when it uses weak algorithms, but not for the CA certs. This change is
>> to process the signer’s cert chain to warn if CA certs use weak algorithms.
>
>
> The jarsigner tool currently provides warning associated with the signer’s
> cert when it uses weak algorithms, but not for the CA certs. This change is
> to process the signer’s cert chain to warn if CA certs use weak algorithms.
Hai-May Chao has updated the pull request incrementally with
On Tue, 12 Jan 2021 22:22:55 GMT, Rajan Halade wrote:
>> Hai-May Chao has updated the pull request incrementally with one additional
>> commit since the last revision:
>>
>> No warning for trusted cert's SHA1, and added debug output to test
>
>
On Tue, 12 Jan 2021 20:57:41 GMT, Sean Mullan wrote:
>> Hai-May Chao has updated the pull request incrementally with one additional
>> commit since the last revision:
>>
>> No warning for trusted cert's SHA1, and added debug output to test
>
> Changes requested by mullan (Reviewer).
Thanks
On Tue, 12 Jan 2021 03:34:00 GMT, Hai-May Chao wrote:
> The jarsigner tool currently provides warning associated with the signer’s
> cert when it uses weak algorithms, but not for the CA certs. This change is
> to process the signer’s cert chain to warn if CA certs use weak algorithms.
On Tue, 12 Jan 2021 03:34:00 GMT, Hai-May Chao wrote:
> The jarsigner tool currently provides warning associated with the signer’s
> cert when it uses weak algorithms, but not for the CA certs. This change is
> to process the signer’s cert chain to warn if CA certs use weak algorithms.
The jarsigner tool currently provides warning associated with the signer’s cert
when it uses weak algorithms, but not for the CA certs. This change is to
process the signer’s cert chain to warn if CA certs use weak algorithms.
-
Commit messages:
- 8259401: Add checking to
12 matches
Mail list logo