RFR: 8315944: SunJCE provider should not zeroize the deserialized key values
Valerie Peng
valeriep at openjdk.org
Wed Sep 20 22:05:08 UTC 2023
This PR reverts part of the changes under JDK-8312306 which zero-out the deserialized key bytes after an internal copy has been made. If considering the deserialized key bytes as input arguments, such cleaning action may be too aggressive. Thus, on second thought, I am reverting to earlier behavior. No regression test since the changes are trivial.
Thanks!
Valerie
-------------
Commit messages:
- 8315944: SunJCE provider should not zeroize the deserialized key values
Changes: https://git.openjdk.org/jdk/pull/15848/files
Webrev: https://webrevs.openjdk.org/?repo=jdk&pr=15848&range=00
Issue: https://bugs.openjdk.org/browse/JDK-8315944
Stats: 12 lines in 3 files changed: 0 ins; 6 del; 6 mod
Patch: https://git.openjdk.org/jdk/pull/15848.diff
Fetch: git fetch https://git.openjdk.org/jdk.git pull/15848/head:pull/15848
PR: https://git.openjdk.org/jdk/pull/15848
More information about the security-dev
mailing list