RFR: 8349759: Fix CertificateBuilder and SimpleOCSPServer test utilities to support PQC algorithms
Jamil Nimeh
jnimeh at openjdk.org
Thu Feb 13 19:43:12 UTC 2025
On Tue, 11 Feb 2025 17:50:45 GMT, Jamil Nimeh <jnimeh at openjdk.org> wrote:
> This fix makes some minor changes to the internals of the `CertificateBuilder` and `SimpleOCSPServer` test classes. They would break when ML-DSA was selected as key and signing algorithms. Also RSASSA-PSS works better now with these changes. I've also taken this opportunity to do some cleanup on CertificateBuilder and added a method which uses a default signing algorithm based on the key, so the `build()` method no longer needs to provide that algorithm (though one can if they wish for things like RSA signatures if they want a different message digest in the signature).
test/lib-test/jdk/test/lib/security/CPVAlgTestWithOCSP.java line 26:
> 24: /**
> 25: * @test
> 26: * @bug 8179502
Cut-n-paste bug, update this.
-------------
PR Review Comment: https://git.openjdk.org/jdk/pull/23566#discussion_r1955113230
More information about the core-libs-dev
mailing list