RFR: 8360564: Implement JEP 524: PEM Encodings of Cryptographic Objects (Second Preview) [v13]
Sean Mullan
mullan at openjdk.org
Thu Nov 6 18:00:14 UTC 2025
On Fri, 31 Oct 2025 21:57:56 GMT, Anthony Scarpino <ascarpino at openjdk.org> wrote:
>> Hi
>>
>> Please review the [Second Preview](https://openjdk.org/jeps/8360563) for the PEM API. The most significant changes from [JEP 470](https://openjdk.org/jeps/470) are:
>>
>> - Renamed the name of `PEMRecord` class to `PEM`.
>> - Revised the new `encryptKey` methods of the `EncryptedPrivateKeyInfo` class to accept `DEREncodable` objects rather than just `PrivateKey` objects so that cryptographic objects with public keys, i.e., `KeyPair` and `PKCS8EncodedKeySpec`, can also be encrypted.
>> - Enhanced the `PEMEncoder` and `PEMDecoder` classes to support the encryption and decryption of `KeyPair` and `PKCS8EncodedKeySpec` objects.
>>
>> thanks
>>
>> Tony
>
> Anthony Scarpino has updated the pull request with a new target base due to a merge or a rebase. The incremental webrev excludes the unrelated changes brought in by the merge/rebase. The pull request contains 25 additional commits since the last revision:
>
> - mistakes
> - Merge branch 'master' into pem26
> - minor doc updates, fix some bugs, PEM set to 26
> - more docs, remove runtimeexception
> - EKPI has a lot of @link's
> - docs
> - more doc updates and zeroing
> - fix non-pbe
> - doc updates, zeroing, fix unencrypted keypair encoding, exception mods
> - updates
> - ... and 15 more: https://git.openjdk.org/jdk/compare/8eea12a3...0d95043c
Marked as reviewed by mullan (Reviewer).
-------------
PR Review: https://git.openjdk.org/jdk/pull/27147#pullrequestreview-3429697573
More information about the security-dev
mailing list