RFR: 8302225: SunJCE Provider doesn't validate key sizes when using 'constrained' transforms for AES/KW and AES/KWP [v2]
Valerie Peng
valeriep at openjdk.org
Wed Nov 13 20:04:39 UTC 2024
On Thu, 16 Feb 2023 21:57:31 GMT, Valerie Peng <valeriep at openjdk.org> wrote:
>> Looks good to me. Thanks!
>
>> Looks good to me. Thanks!
>
> Thanks for the review~
> Hi @valeriepeng, @XueleiFan, this looks like a fix that should go to 17. Do you think it's a good idea to backport it? I'd address this if you agree. Best regards, Goetz.
Yes, thanks for backporting~
-------------
PR Comment: https://git.openjdk.org/jdk/pull/12569#issuecomment-2474658572
More information about the security-dev
mailing list