RFR[14] 8232950: SUNPKCS11 Provider incorrectly check key length for PSS Signatures.
Valerie Peng
valerie.peng at oracle.com
Wed Oct 30 20:13:25 UTC 2019
Anyone has a minute to review this trivial fix? The supported key size
info for the PKCS#11 PSS mechanism should be in bits. The current code
treat them as in bytes. This does not cause any existing regression test
failure because NSS has a very low value, i.e. 128, as the minimum key
size.
Bug: https://bugs.openjdk.java.net/browse/JDK-8232950
Webrev: http://cr.openjdk.java.net/~valeriep/8232950/webrev.00/
Mach5 run passed.
Thanks,
Valerie
More information about the security-dev
mailing list