Code review request, 7106773: 512 bits RSA key cannot work with SHA384 and SHA512

Xuelei Fan xuelei.fan at oracle.com
Tue Jan 10 06:51:02 PST 2012


It has been around 50 days passed since the last day we talked about the
issue. Hope you can recall it from the deep memory. ;-)

webrev: http://javaweb.us.oracle.com/~xufan/bugbios/7106773/webrev.04/

In this update, as we agreed, a new Oracle private interface was
introduced: sun.security.util.Lengthable, and Lengthable.length() is
defined to get the length an object. sun.security.pkcs11.P11Key and
sun.security.mscapi.Key will implements the interface. As will easy and
speedup (comparing with reflection approach) the getting of key length
of those unextractable keys in hardware device.

In the webrev, I should also include another two signed jars,
sunpkcs11.jar and sunmscapi.jar. I will include them when I get the
official signed jars.

Thanks,
Xuelei

On 11/22/2011 8:41 AM, Weijun Wang wrote:
> I really like this one.
> 
> Thanks
> Max
> 
> On 11/21/2011 08:05 PM, Xuelei Fan wrote:
>>> >  How about this approach? This looks very safe.
>>> >
>> I also prefer this approach, although it need more updates in PKCS11 and
>> MSCPI source code. If you vote for this approach, I will try to
>> implement it.
>>




More information about the security-dev mailing list