RFR: 8368984: Extra slashes in Cipher transformation leads to NSPE instead of NSAE [v3]
Valerie Peng
valeriep at openjdk.org
Wed Oct 8 05:56:06 UTC 2025
On Tue, 7 Oct 2025 18:35:56 GMT, Weijun Wang <weijun at openjdk.org> wrote:
>> Valerie Peng has updated the pull request incrementally with one additional commit since the last revision:
>>
>> Updated based on Weijun's suggestion.
>
> src/java.base/share/classes/javax/crypto/Cipher.java line 290:
>
>> 288:
>> 289: // for special handling SHA-512/224, SHA-512/256, SHA512/224, SHA512/256
>> 290: private static final String SHA512TRUNCATED = "512/2";
>
> Is this constant still used?
Nope, I've removed it in the last commit.
-------------
PR Review Comment: https://git.openjdk.org/jdk/pull/27615#discussion_r2412594205
More information about the security-dev
mailing list