[JDK-8259401] Add checking to jarsigner to warn weak algorithms used in signer’s cert chain - Java Bug System

XML

Word

Printable

Details

Type: Bug
Status: Resolved
Priority: P3
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 17
Component/s: security-libs
Labels:
- oracle-bp
- release-note=yes

Subcomponent:
java.security
Resolved In Build:
b06

Description

The jarsigner tool provides warning associated with the signer’s key when it is 1024-bit. It should also process the signer’s cert chain to warn when the CA keys are 1024-bit. Checking signer’s cert chain for disabled and legacy algorithms are added.

Attachments

Issue Links

links to

Commit openjdk/jdk/c7e2174b

Review openjdk/jdk/2042

Options

Sub-Tasks

1.	Release Note: jarsigner Tool Warns if Weak Algorithms Are Used in Signer’s Certificate Chain		Resolved	Haimay Chao
2.	Update example in jarsigner manpage for warning on signer's cert chain		Open	Haimay Chao

Activity

People

Assignee:: Haimay Chao

Reporter:: Haimay Chao

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 2021-01-07 11:34

Updated:: 2021-01-25 15:41

Resolved:: 2021-01-13 14:33