RFR: 8367104: Check for RSASSA-PSS parameters when validating certificates against algorithm constraints [v14]
Sean Mullan
mullan at openjdk.org
Thu Sep 18 22:40:55 UTC 2025
On Thu, 18 Sep 2025 21:39:31 GMT, Artur Barashev <abarashev at openjdk.org> wrote:
>> RSASSA-PSS is currently the only signature algorithm we support that comes with algorithm parameters. We don't check for those parameters when validating certificates against supported signature algorithm constraints.
>
> Artur Barashev has updated the pull request incrementally with one additional commit since the last revision:
>
> Add exception's cause type check
Marked as reviewed by mullan (Reviewer).
-------------
PR Review: https://git.openjdk.org/jdk/pull/27146#pullrequestreview-3242276648
More information about the security-dev
mailing list