Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8141457

keytool default cert fingerprint algorithm should be SHA-256

    XMLWordPrintable

Details

    Backports

      Description

        The default fingerprint for certificates printed by keytool should be changed to SHA-256. This should be changed for JDK 9. It is probably not necessary to backport to prior releases, as the SHA-256 fingerprint is also printed if you specify the -v option.

        Also, the MD5 fingerprint should be removed (shown when the -v option is specified).

        Attachments

          Issue Links

            backported by

            Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8249162 keytool default cert fingerprint algorithm should be SHA-256

            • P4 - Minor loss of function, or other problem where easy workaround is present.
            • Resolved

            Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8249163 keytool default cert fingerprint algorithm should be SHA-256

            • P4 - Minor loss of function, or other problem where easy workaround is present.
            • Resolved

            Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8251762 keytool default cert fingerprint algorithm should be SHA-256

            • P4 - Minor loss of function, or other problem where easy workaround is present.
            • Resolved

            Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8257611 keytool default cert fingerprint algorithm should be SHA-256

            • P4 - Minor loss of function, or other problem where easy workaround is present.
            • Resolved
            blocks

            Enhancement - null JDK-8143862 Resource strings change for JDK-8141457

            • P4 - Minor loss of function, or other problem where easy workaround is present.
            • Closed
            duplicates

            Bug - A problem which impairs or prevents the functions of the product. JDK-8176483 Keytool does not create SHA2 fingerprint in gencert

            • P4 - Minor loss of function, or other problem where easy workaround is present.
            • Closed
            relates to

            Bug - A problem which impairs or prevents the functions of the product. JDK-8268444 keytool -v -list print is incorrect after backport JDK-8141457

            • P4 - Minor loss of function, or other problem where easy workaround is present.
            • Resolved

            Bug - A problem which impairs or prevents the functions of the product. JDK-8287354 keytool verbose infos mismatch keys and values after certificate fingerprints in non-English locales

            • P4 - Minor loss of function, or other problem where easy workaround is present.
            • New

            Enhancement - null JDK-6709758 keytool default cert fingerprint algorithm should be SHA1, not MD5

            • P4 - Minor loss of function, or other problem where easy workaround is present.
            • Closed

            Enhancement - null JDK-8143860 Doc change for JDK-8141457

            • P4 - Minor loss of function, or other problem where easy workaround is present.
            • Closed

            Activity

              People

                weijun Weijun Wang
                mullan Sean Mullan
                Votes:
                0 Vote for this issue
                Watchers:
                6 Start watching this issue

                Dates

                  Created:
                  Updated:
                  Resolved: