openjdk/jdk8u
1
0
Fork 0
mirror of https://github.com/openjdk/jdk8u.git synced 2025-12-11 14:00:23 -06:00
Code Issues Packages Projects Releases Wiki Activity
49,552 Commits 1 Branch 1,174 Tags
Commit Graph

43 Commits

Author SHA1 Message Date
Alexey Bakhtin
656b3cfda2 8186143: keytool -ext option doesn't accept wildcards for DNS subject alternative names 
Reviewed-by: yan
Backport-of: 0c9f8e472f1d452e97b3cbd50b9e5d700fffcd15
 2025-05-16 18:11:02 +00:00
Andrew John Hughes
65c4a5d42e Merge 2022-04-28 09:29:39 +00:00
Alexey Bakhtin
94cb2ef930 8076190: Customizing the generation of a PKCS12 keystore 
Reviewed-by: mbalao
Backport-of: 9136c7d1d0e1247ea1ac95a6577acbb789169031
 2022-03-17 16:05:07 +00:00
Alexey Bakhtin
43ae78b5a0 8278449: Improve keychain support 
Reviewed-by: andrew
 2022-04-15 03:25:16 +01:00
Yuri Nesterenko
c8c1a2b1ba 8266137: Improve Keystore integrity 
Reviewed-by: mbalao, andrew
 2021-09-01 17:33:15 +03:00
Alexey Bakhtin
f8894a0fcc 8242565: Policy initialization issues when the denyAfter constraint is enabled 
Reviewed-by: andrew, sgehwolf
 2021-05-17 17:07:49 +03:00
Hai-May Chao
98115e8629 8172404: Tools should warn if weak algorithms are used before restricting them 
Reviewed-by: mullan, weijun, andrew, mbalao
 2020-04-17 20:11:39 +08:00
Weijun Wang
c7c40ba20e 8185934: keytool shows "Signature algorithm: SHA1withECDSA, -1-bit key" 
Reviewed-by: mullan, andrew
 2017-08-08 21:37:38 +08:00
Sergey Chernyshev
591394fbbc 8233228: Disable weak named curves by default in TLS, CertPath, and Signed JAR 
Reviewed-by: andrew
 2021-01-12 12:45:36 +03:00
Weijun Wang
fdadb73f0b 8141457: keytool default cert fingerprint algorithm should be SHA-256 
Reviewed-by: mullan
 2015-12-02 16:44:54 +08:00
Andrew John Hughes
b5b2419dc2 8225392: Comparison builds are failing due to cacerts file 
Reviewed-by: shade
 2020-02-14 15:10:31 +00:00
Bradford Wetmore
9fbad07d87 8230978: Add support for RSASSA-PSS Signature algorithm (Java SE 8) 
8175029: StackOverflowError in X509CRL and X509Certificate.verify(PublicKey, Provider)
8146293: Add support for RSASSA-PSS Signature algorithm
8205445: Add RSASSA-PSS Signature support to SunMSCAPI
8205720: KeyFactory#getKeySpec and translateKey throws NullPointerException with Invalid key
8206171: Signature#getParameters for RSASSA-PSS throws ProviderException when not initialized
8213009: Refactoring existing SunMSCAPI classes
8213010: Supporting keys created with certmgr.exe
8214096: sun.security.util.SignatureUtil passes null parameter, so JCE validation fails
8215694: keytool cannot generate RSASSA-PSS certificates
8221407: Windows 32bit build error in libsunmscapi/security.cpp
8216039: TLS with BC and RSASSA-PSS breaks ECDHServerKeyExchange
8223003: SunMSCAPI keys are not cleaned up
8223063: Support CNG RSA keys
8225745: NoSuchAlgorithmException exception for SHA256withECDSA with RSASSA-PSS support
8225180: SignedObject with invalid Key not throwing the InvalidKeyException in Windows
8236470: Deal with ECDSA using ecdsa-with-SHA2 plus hash algorithm as AlgorithmId
8238502: sunmscapi.dll causing EXCEPTION_ACCESS_VIOLATION

Contains elements of JDK-8051408 (see comments on JDK-8230978)

Reviewed-by: valeriep, weijun, coffeys, pkoppula, andrew
 2020-02-13 15:47:52 -08:00
Aleksei Efimov
a7bd5b379a Merge 2018-08-03 19:50:58 +01:00
Ivan Gerasimov
97714ec22d 8193171: keytool -list displays "JKS" for a PKCS12 keystore 
Reviewed-by: coffeys
 2018-05-01 08:52:03 -07:00
Abhijit Saha
9d21c5932e Merge 2018-01-08 22:41:14 -08:00
Ivan Gerasimov
575c7c3530 8192987: keytool should remember real storetype if it is not provided 
Reviewed-by: mullan
 2018-01-03 00:46:54 -08:00
Ivan Gerasimov
10b8c8ac95 8187985: Broken certificate number in debug output 
Reviewed-by: weijun
 2018-01-02 18:05:01 -08:00
Ivan Gerasimov
0b3f92d8c6 8178466: Better RSA parameters 
Reviewed-by: mullan, ahgross
 2017-09-07 16:12:33 -07:00
Prasadarao Koppula
79ae87d905 8057810: New defaults for DSA keys in jarsigner and keytool 
Reviewed-by: coffeys, valeriep
 2017-08-04 13:02:18 +05:30
Sean Coffey
e33989471c 8182879: Add warnings to keytool when using JKS and JCEKS 
Reviewed-by: mullan, weijun
 2017-08-01 16:36:54 +01:00
Weijun Wang
fb6c1f0e7e 8177569: keytool should not warn if signature algorithm used in cacerts is weak 
Reviewed-by: mullan
 2017-07-25 14:36:20 +01:00
Weijun Wang
b8654e8f4e 8171319: keytool should print out warnings when reading or generating cert/cert req using weak algorithms 
Reviewed-by: coffeys
 2017-07-26 11:21:32 +01:00
Weijun Wang
d2fcc8cce1 8029659: Keytool, print key algorithm of certificate or key entry 
Reviewed-by: xuelei
 2017-07-25 13:02:03 +01:00
Ivan Gerasimov
65ccaf9928 8181048: Refactor existing providers to refer to the same constants for default values for key length 
Reviewed-by: mullan, ahgross
 2017-07-21 03:33:04 -07:00
Abhijit Saha
2152587c7e Merge 2018-01-26 10:06:34 -08:00
Ivan Gerasimov
4be03d39fb 8130132: jarsigner should emit warning if weak algorithms or keysizes are used 
Reviewed-by: mullan
 2018-01-17 17:41:05 -08:00
Abhijit Saha
add1ae6e4c Merge 2018-01-16 22:58:44 -08:00
Abhijit Saha
2aa55db463 8186503: sun/security/tools/jarsigner/DefaultSigalg.java failed after backport to JDK 6/7/8 
Reviewed-by: bgopularam
 2017-08-28 12:54:41 -07:00
Ivan Gerasimov
abf99a55b8 8181048: Refactor existing providers to refer to the same constants for default values for key length 
Reviewed-by: mullan, ahgross
 2017-08-21 13:32:56 -07:00
Prasadarao Koppula
a00b33bdfe 8057810: New defaults for DSA keys in jarsigner and keytool 
Reviewed-by: coffeys, valeriep
 2017-08-15 11:46:02 -07:00
Sean Coffey
a2d837f50c 8182879: Add warnings to keytool when using JKS and JCEKS 
Reviewed-by: mullan, weijun
 2017-08-01 16:36:54 +01:00
Weijun Wang
035a32ff1f 8177569: keytool should not warn if signature algorithm used in cacerts is weak 
Reviewed-by: mullan
 2017-07-25 14:36:20 +01:00
Weijun Wang
b34deeeb24 8171319: keytool should print out warnings when reading or generating cert/cert req using weak algorithms 
Reviewed-by: coffeys
 2017-07-26 11:21:32 +01:00
Weijun Wang
5e60b9b7d9 8029659: Keytool, print key algorithm of certificate or key entry 
Reviewed-by: xuelei
 2017-07-25 13:02:03 +01:00
Ivan Gerasimov
d94d620e26 8074935: jdk8 keytool doesn't validate pem files for RFC 1421 correctness, as jdk7 did 
Reviewed-by: mullan
 2016-01-12 12:02:45 +03:00
Ivan Gerasimov
133c04874c 7065233: To interpret case-insensitive string locale independently 
Reviewed-by: xuelei
 2015-03-19 17:39:52 +03:00
Valerie Peng
20295341f5 8025967: addition of -Werror broke the old build 
Fixed and suppressed compiler warnings on rawtypes

Reviewed-by: vinnie
 2013-10-08 14:41:46 -07:00
Vinnie Ryan
cbe29b7b72 8008296: keytool utility doesn't support '-importpassword' command 
Reviewed-by: weijun
 2013-10-04 16:05:55 +01:00
Jason Uh
e01b8f673e 8016916: UnstructuredName should support DirectoryString 
Reviewed-by: mullan
 2013-07-24 12:48:10 -07:00
Weijun Wang
4a64ecdf42 8010125: keytool -importkeystore could create a pkcs12 keystore with different storepass and keypass 
Reviewed-by: vinnie
 2013-03-28 20:27:53 +08:00
Mark Sheppard
ec9e303630 8006182: cleanup to use java.util.Base64 in java security component, providers, and regression tests 
Refactored code to use java.util.Base64 Mime Encoder and Decoder as a replacement for sun.misc.BASE64Encoder and sun.misc.BASE64Decoder

Reviewed-by: vinnie, chegar, sherman
 2013-02-21 20:01:22 +00:00
Jason Uh
fdfd7968f7 7198416: CertificateIssuerName and CertificateSubjectName are redundant 
Reviewed-by: mullan
 2012-11-08 12:51:25 -05:00
Stephen Flores
037bcf1683 7194449: String resources for Key Tool and Policy Tool should be in their respective packages 
Reviewed-by: alanb, weijun, mullan
 2012-10-14 22:58:59 +01:00