RFR: 8299746: Accept unknown signatureAlgorithm in PKCS7 SignerInfo
Weijun Wang
weijun at openjdk.org
Fri Jan 6 21:45:02 UTC 2023
On Fri, 6 Jan 2023 18:48:51 GMT, Xue-Lei Andrew Fan <xuelei at openjdk.org> wrote:
>> Modern signature algorithms provided by a 3rd-party provider might not be recognized by JDK code yet.
>
> src/java.base/share/classes/sun/security/pkcs/SignerInfo.java line 540:
>
>> 538: }
>> 539: if (keyAlg.equals("EC")) keyAlg = "ECDSA";
>> 540: String sigAlg = digAlg + "with" + keyAlg;
>
> The line could be moved into the try block.
You're right. Unfortunately the PR is already closed. I'll remember to fix it next time I touch this code. Thanks.
-------------
PR: https://git.openjdk.org/jdk/pull/11883
More information about the security-dev
mailing list