-
Sub-task
-
Resolution: Delivered
-
P4
-
7u281, 8u271, 11.0.9-oracle, 15
-
Verified
| Issue | Fix Version | Assignee | Priority | Status | Resolution | Resolved In Build |
|---|---|---|---|---|---|---|
| JDK-8253203 | 11.0.9-oracle | Clifford Wayne | P4 | Resolved | Delivered | |
| JDK-8247273 | 8u271 | Clifford Wayne | P4 | Resolved | Delivered | |
| JDK-8248241 | 7u281 | Clifford Wayne | P4 | Resolved | Delivered |
The `keytool` and `jarsigner` tools have been updated to warn users when weak cryptographic algorithms are used in keys, certificates, and signed JARs before they are disabled. The weak algorithms are set in the `jdk.security.legacyAlgorithms` security property in the `java.security` configuration file. In this release, the tools issue warnings for the SHA-1 hash algorithm and 1024-bit RSA/DSA keys.
- backported by
-
-
- Resolved
-
-
-
- Resolved
-
-
-
- Resolved
-