[8u] RFR 8238448: RSASSA-PSS signature verification fail when using certain odd key sizes

[Hohensee, Paul]

Lgtm.

Paul

On 10/20/20, 7:20 AM, "jdk8u-dev on behalf of Zhengyu Gu" <jdk8u-dev-retn at openjdk.java.net on behalf of zgu at redhat.com> wrote:

    I would like to backport this patch to 8u for parity with Oracle 8u270.

    The original patch does not apply cleanly.

    1) All three modified files have up-to-date copyright lines in 8u.

    2) Other than copyright line, SignatureTestPSS.java also has conflicts
    on bug/summary/run lines.

    @@ -32,16 +32,18 @@

      /**
       * @test
    - * @bug 8146293
    - * @summary Create a signature for RSA and get its signed data. re-initiate
    - *          the signature with the public key. The signature can be
    verified
    - *          by acquired signed data.
    + * @bug 8146293 8238448
    + * @summary Create a signature for RSASSA-PSS and get its signed data.
    + *          re-initiate the signature with the public key. The signature
    + *          can be verified by acquired signed data.
       * @library /test/lib
       * @build jdk.test.lib.SigTestUtil
       * @run main SignatureTestPSS 512
       * @run main SignatureTestPSS 768
       * @run main SignatureTestPSS 1024
    + * @run main SignatureTestPSS 1025
       * @run main SignatureTestPSS 2048
    + * @run main SignatureTestPSS 2049
       * @run main/timeout=240 SignatureTestPSS 4096
       * @run main/timeout=240 SignatureTestPSS 5120
       * @run main/timeout=480 SignatureTestPSS 6144

    The original bug: https://bugs.openjdk.java.net/browse/JDK-8238448
    The original patch: https://hg.openjdk.java.net/jdk/jdk/rev/0469ead7113c

    8u Webrev: http://cr.openjdk.java.net/~zgu/JDK-8238448-8u/webrev.00/

    Test:
       passed tests in patch.

    Thanks,

    -Zhengyu