RFR: 8254935: Deprecate the PSSParameterSpec(int) constructor [v5]
Valerie Peng
valeriep at openjdk.java.net
Mon Mar 28 22:10:42 UTC 2022
On Mon, 28 Mar 2022 14:35:31 GMT, Sean Mullan <mullan at openjdk.org> wrote:
>> Valerie Peng has updated the pull request incrementally with one additional commit since the last revision:
>>
>> More minor edits.
>
> src/java.base/share/classes/java/security/spec/PSSParameterSpec.java line 114:
>
>> 112: * Thus, it is recommended to create a new {@code PSSParameterSpec}
>> 113: * object with the desired parameter values using
>> 114: * {@link #PSSParameterSpec(String, String, AlgorithmParameterSpec, int, int) PSSParameterSpec}.
>
> Similar rewording suggestion here:
>
> "This field uses the default values defined in the PKCS#1 standard. Some of these defaults are no longer recommended due to advances in cryptanalysis -- see RFC 8017 for more details. Thus ..."
Hmm, RFC 8017 is PKCS#1 v2.2 and I assume you mean PKCS#1 v2.2 with link to RFC 8017.
-------------
PR: https://git.openjdk.java.net/jdk/pull/7913
More information about the security-dev
mailing list