JDK-8141457 : keytool default cert fingerprint algorithm should be SHA-256
- Type: Enhancement
- Component: security-libs
- Sub-Component: java.security
- Affected Version: 9
- Priority: P4
- Status: Resolved
- Resolution: Fixed
- Submitted: 2015-11-04
- Updated: 2022-05-27
- Resolved: 2015-12-02
The Version table provides details related to the release that this issue/RFE will be addressed.
Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.
To download the current JDK release, click here.
Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.
To download the current JDK release, click here.
| JDK 7 | JDK 8 | JDK 9 | Other |
|---|---|---|---|
| 7u281Fixed | 8u271Fixed  |
9 b96Fixed |
openjdk8u292Fixed |
Related Reports
|
Blocks :
|
|
|
Duplicate :
|
|
|
Relates :
|
|
|
Relates :
|
|
|
Relates :
|
|
|
Relates :
|
Sub Tasks
|
JDK-8249595 :
|
|
|
JDK-8249597 :
|
Description
The default fingerprint for certificates printed by keytool should be changed to SHA-256. This should be changed for JDK 9. It is probably not necessary to backport to prior releases, as the SHA-256 fingerprint is also printed if you specify the -v option. Also, the MD5 fingerprint should be removed (shown when the -v option is specified).
Comments
|