RFR: 8349759: Fix CertificateBuilder and SimpleOCSPServer test utilities to support PQC algorithms [v2]
Jamil Nimeh
jnimeh at openjdk.org
Thu Feb 13 22:47:29 UTC 2025
> This fix makes some minor changes to the internals of the `CertificateBuilder` and `SimpleOCSPServer` test classes. They would break when ML-DSA was selected as key and signing algorithms. Also RSASSA-PSS works better now with these changes. I've also taken this opportunity to do some cleanup on CertificateBuilder and added a method which uses a default signing algorithm based on the key, so the `build()` method no longer needs to provide that algorithm (though one can if they wish for things like RSA signatures if they want a different message digest in the signature).
Jamil Nimeh has updated the pull request incrementally with one additional commit since the last revision:
Fix JBS ID and summary in test
-------------
Changes:
- all: https://git.openjdk.org/jdk/pull/23566/files
- new: https://git.openjdk.org/jdk/pull/23566/files/bec2b43c..8c16daba
Webrevs:
- full: https://webrevs.openjdk.org/?repo=jdk&pr=23566&range=01
- incr: https://webrevs.openjdk.org/?repo=jdk&pr=23566&range=00-01
Stats: 3 lines in 1 file changed: 1 ins; 0 del; 2 mod
Patch: https://git.openjdk.org/jdk/pull/23566.diff
Fetch: git fetch https://git.openjdk.org/jdk.git pull/23566/head:pull/23566
PR: https://git.openjdk.org/jdk/pull/23566
More information about the core-libs-dev
mailing list