RFR: 8298420: PEM API: Implementation (Preview) [v2]
Weijun Wang
weijun at openjdk.org
Mon Jul 29 23:00:32 UTC 2024
On Mon, 29 Jul 2024 20:13:04 GMT, Anthony Scarpino <ascarpino at openjdk.org> wrote:
>> Not sure if I understand. When using encryption, user can set a cipher algorithm that is not implemented in any of the builtin providers, so the `SecretKeyFactory.getInstance` and `Cipher.getInstance` might need a provider argument.
>
> What you are describing is why the encoder accepts EncryptedPrivateKeyInfo. These more complicated configurations I left to EncryptedPrivateKeyInfo as the PEM classes are not trying to replace all the functionality of EncryptedPrivateKeyInfo or the other classes, just simplify the common cases and the PEM construction.
> PEMDecoder has a factory method because I saw that as a more common case for important into a HSM.
I see.
-------------
PR Review Comment: https://git.openjdk.org/jdk/pull/17543#discussion_r1696056818
More information about the security-dev
mailing list