fix(jca): negate KeyManagerFactorySpec init guard to flag UnsafeAlgorithm correctly

The init event raised UnsafeAlgorithm when the algorithm WAS in
safeAlgorithms (PKIX/SunX509), inverting the intended check: safe
algorithms were flagged while unsafe ones passed. Negate the guard to
match every sibling JCA spec (TrustManagerFactorySpec, KeyGeneratorSpec,
MacSpec, SignatureSpec, ...) and the already-correct compiled .rvm.

Author: phtcosta

rvsec/rvsec-mop/src/main/resources/jca/KeyManagerFactorySpec.mop

@@ -50,7 +50,7 @@ KeyManagerFactorySpec(KeyManagerFactory k) {
        ( call(public void KeyManagerFactory.init(KeyStore, char[])) ||
          call(public void KeyManagerFactory.init(ManagerFactoryParameters))
        ) && target(k) {
-        if (safeAlgorithms.contains(currentAlgorithmInstance)) {
+        if (!safeAlgorithms.contains(currentAlgorithmInstance)) {
             ErrorCollector.instance().addError(new ErrorDescription(ErrorType.UnsafeAlgorithm, "KeyManagerFactorySpec", "" + __LOC,
         " expecting one of " + String.join(",", safeAlgorithms) + " but found " + currentAlgorithmInstance + "."));
         }