[8] code review request 4634141: PBE Cipher should have the ability to use params from PBE Key
Vincent Ryan
vincent.x.ryan at oracle.com
Fri Apr 26 16:59:20 UTC 2013
Please review the following fix for:
4634141: PBE Cipher should have the ability to use params from PBE Key
http://bugs.sun.com/bugdatabase/view_bug.do?bug_id=4634141
Webrev: http://cr.openjdk.java.net/~vinnie/4634141/webrev.00/
This problem is that the parameters required by PBE-style ciphers may be
supplied in the PBE key object directly or in the PBE parameters object.
For PBES1 ciphers parameters supplied in the key are ignored.
This doesn't happen for the new PBES2 ciphers available in JDK 8 so
this fix will ensure that the behaviour is consistent across all PBE ciphers.
The fix examines the PBE key for the salt and iteration count parameters
when no PBE parameters object has been supplied. If parameters are not
present at either location then the cipher generates the necessary parameters
itself, as before.
Thanks.
More information about the security-dev
mailing list