From c1bbcbc968350784c618f3006b13a8af7272bf18 Mon Sep 17 00:00:00 2001 From: rpatil Date: Mon, 26 Dec 2016 16:00:45 +0530 Subject: [PATCH] 8171121: Enhancing jar checking Reviewed-by: ascarpino --- src/share/lib/security/java.security-aix | 2 +- src/share/lib/security/java.security-linux | 2 +- src/share/lib/security/java.security-macosx | 2 +- src/share/lib/security/java.security-solaris | 2 +- src/share/lib/security/java.security-windows | 2 +- test/sun/security/tools/jarsigner/TimestampCheck.java | 6 +++--- 6 files changed, 8 insertions(+), 8 deletions(-) diff --git a/src/share/lib/security/java.security-aix b/src/share/lib/security/java.security-aix index 8f9cf76ad..609644a69 100644 --- a/src/share/lib/security/java.security-aix +++ b/src/share/lib/security/java.security-aix @@ -545,7 +545,7 @@ jdk.certpath.disabledAlgorithms=MD2, MD5, RSA keySize < 1024, \ # implementation. It is not guaranteed to be examined and used by other # implementations. # -jdk.jar.disabledAlgorithms=MD2, RSA keySize < 1024 +jdk.jar.disabledAlgorithms=MD2, MD5, RSA keySize < 1024 # Algorithm restrictions for Secure Socket Layer/Transport Layer Security # (SSL/TLS) processing diff --git a/src/share/lib/security/java.security-linux b/src/share/lib/security/java.security-linux index fb18f704c..acef8f0b4 100644 --- a/src/share/lib/security/java.security-linux +++ b/src/share/lib/security/java.security-linux @@ -545,7 +545,7 @@ jdk.certpath.disabledAlgorithms=MD2, MD5, RSA keySize < 1024, \ # implementation. It is not guaranteed to be examined and used by other # implementations. # -jdk.jar.disabledAlgorithms=MD2, RSA keySize < 1024 +jdk.jar.disabledAlgorithms=MD2, MD5, RSA keySize < 1024 # Algorithm restrictions for Secure Socket Layer/Transport Layer Security # (SSL/TLS) processing diff --git a/src/share/lib/security/java.security-macosx b/src/share/lib/security/java.security-macosx index ef0267257..42aff370b 100644 --- a/src/share/lib/security/java.security-macosx +++ b/src/share/lib/security/java.security-macosx @@ -548,7 +548,7 @@ jdk.certpath.disabledAlgorithms=MD2, MD5, RSA keySize < 1024, \ # implementation. It is not guaranteed to be examined and used by other # implementations. # -jdk.jar.disabledAlgorithms=MD2, RSA keySize < 1024 +jdk.jar.disabledAlgorithms=MD2, MD5, RSA keySize < 1024 # Algorithm restrictions for Secure Socket Layer/Transport Layer Security # (SSL/TLS) processing diff --git a/src/share/lib/security/java.security-solaris b/src/share/lib/security/java.security-solaris index 537386c04..f4e58665a 100644 --- a/src/share/lib/security/java.security-solaris +++ b/src/share/lib/security/java.security-solaris @@ -547,7 +547,7 @@ jdk.certpath.disabledAlgorithms=MD2, MD5, RSA keySize < 1024, \ # implementation. It is not guaranteed to be examined and used by other # implementations. # -jdk.jar.disabledAlgorithms=MD2, RSA keySize < 1024 +jdk.jar.disabledAlgorithms=MD2, MD5, RSA keySize < 1024 # Algorithm restrictions for Secure Socket Layer/Transport Layer Security # (SSL/TLS) processing diff --git a/src/share/lib/security/java.security-windows b/src/share/lib/security/java.security-windows index 7bdda168e..8405da553 100644 --- a/src/share/lib/security/java.security-windows +++ b/src/share/lib/security/java.security-windows @@ -548,7 +548,7 @@ jdk.certpath.disabledAlgorithms=MD2, MD5, RSA keySize < 1024, \ # implementation. It is not guaranteed to be examined and used by other # implementations. # -jdk.jar.disabledAlgorithms=MD2, RSA keySize < 1024 +jdk.jar.disabledAlgorithms=MD2, MD5, RSA keySize < 1024 # Algorithm restrictions for Secure Socket Layer/Transport Layer Security # (SSL/TLS) processing diff --git a/test/sun/security/tools/jarsigner/TimestampCheck.java b/test/sun/security/tools/jarsigner/TimestampCheck.java index 321df2084..029afdc88 100644 --- a/test/sun/security/tools/jarsigner/TimestampCheck.java +++ b/test/sun/security/tools/jarsigner/TimestampCheck.java @@ -60,7 +60,7 @@ import sun.security.x509.X500Name; /* * @test - * @bug 6543842 6543440 6939248 8009636 8024302 8163304 8169911 8169688 + * @bug 6543842 6543440 6939248 8009636 8024302 8163304 8169911 8169688 8171121 * @summary checking response of timestamp * @modules java.base/sun.security.pkcs * java.base/sun.security.timestamp @@ -345,8 +345,8 @@ public class TimestampCheck { .shouldHaveExitValue(0); checkTimestamp("tsaalg.jar", defaultPolicyId, "SHA-1"); - sign("weak", "-digestalg", "MD2", - "-sigalg", "MD2withRSA", "-tsadigestalg", "MD2") + sign("weak", "-digestalg", "MD5", + "-sigalg", "MD5withRSA", "-tsadigestalg", "MD5") .shouldHaveExitValue(0); checkWeak("weak.jar"); -- GitLab