On Mon, 14 Mar 2022 17:41:28 GMT, Hai-May Chao <hc...@openjdk.org> wrote:
> When a named curve is disabled in `jdk.disabled.namedCurves` property which > is included in `jdk.jar.disabledAlgorithms` and > `jdk.certpath.disabledAlgorithms`, `jarsigner` should display the disabled > named curve as a result of its disabled algorithm constraint checking. This > clarifies why an EC key is disabled in its warning and verbose output. Individual name curves could be added to `jdk.security.legacyAlgorithms` instead of by `jdk.disabled.namedCurves`, so changed `jarsigner` to display the named curves in the legacy algorithms. ------------- PR: https://git.openjdk.java.net/jdk/pull/7810
