RFR[14] 8232950: SUNPKCS11 Provider incorrectly check key length for PSS Signatures.

Anthony Scarpino anthony.scarpino at oracle.com
Wed Oct 30 21:00:32 UTC 2019


On 10/30/19 1:13 PM, Valerie Peng wrote:
> Anyone has a minute to review this trivial fix? The supported key size 
> info for the PKCS#11 PSS mechanism should be in bits. The current code 
> treat them as in bytes. This does not cause any existing regression test 
> failure because NSS has a very low value, i.e. 128, as the minimum key 
> size.
> 
> Bug: https://bugs.openjdk.java.net/browse/JDK-8232950
> 
> Webrev: http://cr.openjdk.java.net/~valeriep/8232950/webrev.00/
> 
> Mach5 run passed.
> 
> Thanks,
> Valerie

It looks good to me.

Tony



More information about the security-dev mailing list