< prev index next >
src/share/classes/sun/security/tools/jarsigner/Main.java
Print this page
@ rev 14334 : 8185934: keytool shows "Signature algorithm: SHA1withECDSA, -1-bit key"
| Reviewed-by: mullan
~
o rev 14333 : 8172404: Tools should warn if weak algorithms are used before restricting them
: Reviewed-by: mullan, weijun
: Contributed-by: Hai-May Chao <hai-may.chao@oracle.com>
o rev 14329 : 8185934: keytool shows "Signature algorithm: SHA1withECDSA, -1-bit key"
| Reviewed-by: mullan
~
@@ -1194,12 +1194,16 @@
}
}
private String withWeak(PublicKey key) {
if (DISABLED_CHECK.permits(SIG_PRIMITIVE_SET, key)) {
- return String.format(
- rb.getString("key.bit"), KeyUtil.getKeySize(key));
+ int kLen = KeyUtil.getKeySize(key);
+ if (kLen >= 0) {
+ return String.format(rb.getString("key.bit"), kLen);
+ } else {
+ return rb.getString("unknown.size");
+ }
} else {
seeWeak = true;
return String.format(
rb.getString("key.bit.weak"), KeyUtil.getKeySize(key));
}
< prev index next >