mirror of
https://gitlab.com/fdroid/fdroidserver.git
synced 2024-11-04 14:30:11 +01:00
dc569b9c18
For platforms using Java < 1.8.0_133, MD5 is still enabled for JAR signatures. Its just too painful to manage all this, so support this in the tests.
23 lines
750 B
Java
23 lines
750 B
Java
|
|
import java.security.Security;
|
|
import java.util.Locale;
|
|
|
|
public class IsMD5Disabled {
|
|
public static void main(String[] args) throws Exception {
|
|
String daString = Security.getProperty("jdk.jar.disabledAlgorithms");
|
|
String[] algorithms = daString.trim().split(",");
|
|
boolean isMD5Disabled = true;
|
|
for (String alg : algorithms) {
|
|
if (alg.trim().toLowerCase(Locale.US).startsWith("md5")) {
|
|
isMD5Disabled = false;
|
|
}
|
|
}
|
|
if (isMD5Disabled) {
|
|
System.out.println("MD5 in jdk.jar.disabledAlgorithms: " + daString);
|
|
} else {
|
|
System.out.println("MD5 allowed for JAR signatures: " + daString);
|
|
System.exit(1);
|
|
}
|
|
}
|
|
}
|