Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8177569

keytool should not warn if signature algorithm used in cacerts is weak

    Details

    • Subcomponent:
    • Introduced In Version:
      9
    • Resolved In Build:
      b164
    • Verification:
      Verified

      Backports

        Description

        Currently keytool warns about weak signature algorithms used by a certificate. However, if that certificate is in cacerts it should not be an issue. In fact, the certificate is pre-validated and we don't check the signature at all in Java.

          Attachments

            Issue Links

              Activity

                People

                • Assignee:
                  weijun Weijun Wang
                  Reporter:
                  weijun Weijun Wang
                • Votes:
                  0 Vote for this issue
                  Watchers:
                  9 Start watching this issue

                  Dates

                  • Created:
                    Updated:
                    Resolved: