RFR: 8320597: RSA signature verification fails on signed data that does not encode params correctly [v2]
Weijun Wang
weijun at openjdk.org
Thu Dec 7 21:08:01 UTC 2023
On Thu, 7 Dec 2023 20:55:22 GMT, Weijun Wang <weijun at openjdk.org> wrote:
>> test/jdk/sun/security/rsa/WithoutNULL.java line 27:
>>
>>> 25: * @test
>>> 26: * @bug 8320597
>>> 27: * @summary RSA signature verification fails on signed data that does not encode params correctly
>>
>> The summary seems to contradict the check on line 52? Maybe: Verify RSA signature with omitted digest params (should be encoded as NULL) for backward compatibility?
>> Rest looks good.
>
> Oh, this is the title of the bug which described what was wrong, and I often simply copy this as the summary of a bug. You mean here I should emphasis what is corrected and the updated behavior?
You are right. According to the [jtreg FAQ](https://openjdk.org/jtreg/faq.html):
> The @summary tag describes the condition that is checked by the test... Note that a test summary is generally not the same thing as a Bugtraq synopsis, since the latter describes the bug rather than the condition that the bug violates.
-------------
PR Review Comment: https://git.openjdk.org/jdk/pull/17002#discussion_r1419659148
More information about the security-dev
mailing list