RFR: 8358451: SunJCE PBEKey impl should throw IllegalStateException when getEncoded() is called [v2]
Valerie Peng
valeriep at openjdk.org
Fri Jun 27 20:51:56 UTC 2025
> Update the `PBEKey` class of the SunJCE provider which override the `javax.security.auth.Destroyable` interface to
>
> 1. throw `IllegalStateException` if `getEncoded()` is called after key is destroyed
> 2. serialization of such destroyed `PBEKey` object will lead to exception.
>
> Also update the `PBEKeyFactory` class of the SunJCE provider to check for destroyed keys and throw exceptions per the method javadoc.
Valerie Peng has updated the pull request incrementally with one additional commit since the last revision:
Moved the Key.isDestroyed() check from individual provider SKF impl to
JCA SecretKeyFactory class.
Changed to throw ISE whenever destroyed key is encountered.
-------------
Changes:
- all: https://git.openjdk.org/jdk/pull/25632/files
- new: https://git.openjdk.org/jdk/pull/25632/files/5d222430..beb840be
Webrevs:
- full: https://webrevs.openjdk.org/?repo=jdk&pr=25632&range=01
- incr: https://webrevs.openjdk.org/?repo=jdk&pr=25632&range=00-01
Stats: 61 lines in 5 files changed: 18 ins; 33 del; 10 mod
Patch: https://git.openjdk.org/jdk/pull/25632.diff
Fetch: git fetch https://git.openjdk.org/jdk.git pull/25632/head:pull/25632
PR: https://git.openjdk.org/jdk/pull/25632
More information about the security-dev
mailing list