Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8243558

JDK Provider Guide should document that DSA signature generation is now subject to a key strength check

    XMLWordPrintable

Details

    Backports

      Description

        The contents of the release note (https://bugs.openjdk.java.net/browse/JDK-8149394) should be added to the Sun provider section of the JDK Providers Guide, probably as a note in the Signature/DSA row:

        "For signature generation, if the security strength of the digest algorithm is weaker than the security strength of the key used to sign the signature (e.g. using (2048, 256)-bit DSA keys with SHA1withDSA signature), the operation will fail with the error message: "The security strength of SHA1 digest algorithm is not sufficient for this key size."

        See https://www.oracle.com/technetwork/java/javase/8u91-relnotes-2949462.html

        Attachments

          Issue Links

            backported by

            Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8243560 JDK Provider Guide should document that DSA signature generation is now subject to a key strength check

            • P3 - Major loss of function.
            • Resolved

            Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8243561 JDK Provider Guide should document that DSA signature generation is now subject to a key strength check

            • P3 - Major loss of function.
            • Resolved

            Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8244671 JDK Provider Guide should document that DSA signature generation is now subject to a key strength check

            • P3 - Major loss of function.
            • Resolved

            Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8248778 JDK Provider Guide should document that DSA signature generation is now subject to a key strength check

            • P3 - Major loss of function.
            • Resolved

            Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8251825 JDK Provider Guide should document that DSA signature generation is now subject to a key strength check

            • P3 - Major loss of function.
            • Resolved
            relates to

            Bug - A problem which impairs or prevents the functions of the product. JDK-8136759 Regression in Applet startup time with Internet Explorer on 8u60 and 8u65-b14

            • P2 - Crashes, loss of data, severe memory leak.
            • Closed

            Bug - A problem which impairs or prevents the functions of the product. JDK-8242928 Weak DHE_DSS cipher suites cannot work with pre-TLSv1.2 protocols

            • P3 - Major loss of function.
            • Closed

            Activity

              People

                rgallard Raymond Gallardo
                mullan Sean Mullan
                Votes:
                0 Vote for this issue
                Watchers:
                4 Start watching this issue

                Dates

                  Created:
                  Updated:
                  Resolved: