Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8177569

keytool should not warn if signature algorithm used in cacerts is weak

    XMLWordPrintable

Details

    • 9
    • b164
    • Verified

    Backports

      Description

        Currently keytool warns about weak signature algorithms used by a certificate. However, if that certificate is in cacerts it should not be an issue. In fact, the certificate is pre-validated and we don't check the signature at all in Java.

        Attachments

          Issue Links

            Activity

              People

                weijun Weijun Wang
                weijun Weijun Wang
                Votes:
                0 Vote for this issue
                Watchers:
                9 Start watching this issue

                Dates

                  Created:
                  Updated:
                  Resolved: