jdk Udiff src/share/classes/sun/security/tools/jarsigner/Main.java

src/share/classes/sun/security/tools/jarsigner/Main.java

@  rev 14334 : 8185934: keytool shows "Signature algorithm: SHA1withECDSA, -1-bit key"
|  Reviewed-by: mullan
~
o  rev 14333 : 8172404: Tools should warn if weak algorithms are used before restricting them
:  Reviewed-by: mullan, weijun
:  Contributed-by: Hai-May Chao <hai-may.chao@oracle.com>
o  rev 14329 : 8185934: keytool shows "Signature algorithm: SHA1withECDSA, -1-bit key"
|  Reviewed-by: mullan
~

@@ -1194,12 +1194,16 @@
         }
     }
 
     private String withWeak(PublicKey key) {
         if (DISABLED_CHECK.permits(SIG_PRIMITIVE_SET, key)) {
-            return String.format(
-                    rb.getString("key.bit"), KeyUtil.getKeySize(key));
+            int kLen = KeyUtil.getKeySize(key);
+            if (kLen >= 0) {
+                return String.format(rb.getString("key.bit"), kLen);
+            } else {
+                return rb.getString("unknown.size");
+            }
         } else {
             seeWeak = true;
             return String.format(
                     rb.getString("key.bit.weak"), KeyUtil.getKeySize(key));
         }

< prev index next >