Integrated: 8286428: AlgorithmId should understand PBES2
Weijun Wang
weijun at openjdk.java.net
Sun May 15 22:34:42 UTC 2022
On Mon, 9 May 2022 21:44:10 GMT, Weijun Wang <weijun at openjdk.org> wrote:
> `AlgorithmId.getName` is updated for PBES2 algorithm identifiers so it directly returns the standard algorithm defined by Java (Ex: `PBEWithHmacSHA256AndAES_256`), instead of a simple "PBES2".
>
> Please note I specifically update the javadoc for this method to clarify that this name is meant to be a name that's recognized by various `getInstance()` methods. This is how we are actually using this method.
>
> After this change, the `javax.crypto.EncryptedPrivateKeyInfo` API automatically works with PBES2 encrypted data. As the spec of its `getAlgName()` methods says, "Standard name is returned". This is shown by the newly include regression test.
>
> Existing security-related tests run fine.
This pull request has now been integrated.
Changeset: 357f990e
Author: Weijun Wang <weijun at openjdk.org>
URL: https://git.openjdk.java.net/jdk/commit/357f990e3244feaba6d8709b7ea50660220a418b
Stats: 149 lines in 3 files changed: 118 ins; 16 del; 15 mod
8286428: AlgorithmId should understand PBES2
Reviewed-by: valeriep
-------------
PR: https://git.openjdk.java.net/jdk/pull/8615
More information about the security-dev
mailing list