8245665: Test WeakAlg.java should only make sure no warning for weak signature algorithms by keytool on root CA
Reviewed-by: weijun
This commit is contained in:
parent
2f80d69518
commit
ccd7d70586
@ -433,9 +433,9 @@ public class WeakAlg {
|
||||
// The following 2 commands still have a warning on why not using
|
||||
// the -cacerts option directly.
|
||||
kt("-list -keystore " + KeyStoreUtil.getCacerts())
|
||||
.shouldNotContain("risk");
|
||||
.shouldNotMatch("signature algorithm.*risk");
|
||||
kt("-list -v -keystore " + KeyStoreUtil.getCacerts())
|
||||
.shouldNotContain("risk");
|
||||
.shouldNotMatch("signature algorithm.*risk");
|
||||
|
||||
// -printcert will always show warnings
|
||||
kt("-printcert -file ca.cert")
|
||||
@ -451,10 +451,10 @@ public class WeakAlg {
|
||||
kt("-delete -alias d");
|
||||
kt("-importcert -alias d -trustcacerts -file ca.cert", "no")
|
||||
.shouldContain("Certificate already exists in system-wide CA")
|
||||
.shouldNotContain("risk")
|
||||
.shouldNotMatch("signature algorithm.*risk")
|
||||
.shouldContain("Do you still want to add it to your own keystore?");
|
||||
kt("-importcert -alias d -trustcacerts -file ca.cert -noprompt")
|
||||
.shouldNotContain("risk")
|
||||
.shouldNotMatch("signature algorithm.*risk")
|
||||
.shouldNotContain("[no]");
|
||||
|
||||
// but not without -trustcacerts
|
||||
|
Loading…
x
Reference in New Issue
Block a user