-
Bug
-
Resolution: Fixed
-
P4
-
None
-
None
-
b08
The KeyAgreement class has the method generateSecret which can take a string algorithm name. This string is used to specify the encryption or MAC algorithm with which the agreed key will be used. For example, generateSecret("AES") will produce an AES encryption key.
None of the documentation describes the set of strings that this method should accept along with their meaning. Additionally, there is no minimal required set of strings that must be supported by this method. It may be understood that this method is supposed to accept standard algorithm name strings, but this is not explicit.
The Javadoc for this method and/or the standard algorithm names documentation in the JCA reference guide should be updated to describe which strings should be used and what they mean. We should also consider whether we want to require certain algorithm names to be supported in a compliant implementation of this method.
None of the documentation describes the set of strings that this method should accept along with their meaning. Additionally, there is no minimal required set of strings that must be supported by this method. It may be understood that this method is supposed to accept standard algorithm name strings, but this is not explicit.
The Javadoc for this method and/or the standard algorithm names documentation in the JCA reference guide should be updated to describe which strings should be used and what they mean. We should also consider whether we want to require certain algorithm names to be supported in a compliant implementation of this method.
- csr for
-
JDK-8347059 Define algorithm names for keys derived from KeyAgreement
-
- Closed
-
- is blocked by
-
JDK-8346736 Java Security Standard Algorithm Names spec should include key algorithm names
-
- Resolved
-
- relates to
-
-
- Resolved
-
- links to
-
Commit(master)
openjdk/jdk/aba60a92
-
Review(master)
openjdk/jdk/22650