RFR: 8172366: Support SHA-3 based signatures

Valerie Peng valeriep at openjdk.java.net
Mon Sep 14 20:45:13 UTC 2020


On Thu, 10 Sep 2020 16:44:13 GMT, Xue-Lei Andrew Fan <xuelei at openjdk.org> wrote:

>> Could someone please help review this RFE?
>> 
>> Enhance default JDK providers except SunPKCS11 with signatures using SHA-3 family of digests. SunPKCS11 provider will
>> be updated separately (JDK-8242332).
>> This changes covers SUN, SunRsaSign, and SunEC providers. Changes are straightforward, just add SHA-3 digests to
>> various signature algorithms.
>> Please review the corresponding CSR as well. It's at: https://bugs.openjdk.java.net/browse/JDK-8252260
>> 
>> Thanks!
>> Valerie
>
> src/java.base/share/classes/sun/security/provider/DSA.java line 56:
> 
>> 54:  * TLS among others. RawDSA expects the 20 byte SHA-1 digest as
>> 55:  * input via update rather than the original data like other signature
>> 56:  * implementations.
> 
> As you were already there, do you want to mention the IEEE P1363 format in the class description?  Maybe in the 1st
> paragraph in the class spec.

Ok~

-------------

PR: https://git.openjdk.java.net/jdk/pull/102



More information about the security-dev mailing list