[8u] RFR: 8245169: EncryptedPrivateKeyInfo incorrectly decodes KDF algorithm
Martin Balao
mbalao at redhat.com
Sat Feb 5 02:34:19 UTC 2022
Hi Alexey,
Thanks for proposing this backport.
As said in [1], let me have a look at your 8076190 backport again
(Webrev.01) and see if we can cut through the parts that do not break
backward-compatibility -such as the 'storetype' setting on-the-fly-, and we
can get HMAC-SHA256, etc. support too.
Martin.-
--
[1] -
https://mail.openjdk.java.net/pipermail/jdk8u-dev/2022-February/014547.html
On Fri, Feb 4, 2022 at 9:26 AM Alexey Bakhtin <alexey at azul.com> wrote:
> JBS: https://bugs.openjdk.java.net/browse/JDK-8245169
> Webrev: http://cr.openjdk.java.net/~abakhtin/8245169/webrev.0/
>
> The supplied keystore does not have the optional key length field which
> leads to the parsing of KDF being skipped unexpectedly.
> This issue is fixed by com/sun/crypto/provider/PBES2Parameters.java part
> of the JDK-8076190 [1] enhancement.
> JDK-8076190 enhancement can not be applied to JDK8u, so this issue is
> fixed as a separate fix.
>
> Tested by the test attached in the issue
>
> Regards
> Alexey
>
> [1] - https://bugs.openjdk.java.net/browse/JDK-8076190
>
More information about the jdk8u-dev
mailing list