RFR: 8343232: PKCS#12 KeyStore support for RFC 9879: Use of Password-Based Message Authentication Code 1 (PBMAC1) [v11]
Mark Powers
mpowers at openjdk.org
Tue Oct 7 20:40:53 UTC 2025
On Tue, 7 Oct 2025 02:11:12 GMT, Mark Powers <mpowers at openjdk.org> wrote:
>> The password in `PBKDF2KeyImpl` is not cleaned. It does have a `clear` method but no `destroy`. Consider adding a `destroy` to it.
>
> Both are now fixed.
I believe this is fixed.
-------------
PR Review Comment: https://git.openjdk.org/jdk/pull/24429#discussion_r2411822310
More information about the security-dev
mailing list