RFR: 6227536: KeyGenerator.init() methods do not throw IllegalArgumentException for keysize == 0 [v2]
Kevin Driver
kdriver at openjdk.org
Thu Jul 28 21:47:44 UTC 2022
On Thu, 28 Jul 2022 21:40:49 GMT, Kevin Driver <kdriver at openjdk.org> wrote:
>> A stack trace of the exception should be sufficient to tell what provider/code is generating it.
>
> @seanjmullan I thought about this, but I added it due to the bug describing that this would be implementation-specific rather than framework-specific. I can take it out.
> Needs regression tests.
>
> Have you looked at the other Key(Pair)Generators? We've probably added more when this bug was filed. I took a quick look at some, and they were covered. (DES/DESede/Blowfish/AES/etc.)
@bradfordwetmore The bug mentions only the Hmac*KeyGenerators. I thought about this too, but you mentioned in your initial triage comment on the bug that it should be treated as only relevant to the classes I modified. Thoughts?
-------------
PR: https://git.openjdk.org/jdk/pull/9679
More information about the security-dev
mailing list