Loading...

XML

Word

Printable

Type: Bug
Resolution: Fixed
Priority: P2
Fix Version/s: 17
Affects Version/s: 8, 8u351, 11, 11.0.17-oracle, 17
Component/s: security-libs
Labels:

Subcomponent:
java.security
Resolved In Build:
b16
Verification:
Verified

Issue	Fix Version	Assignee	Priority	Status	Resolution	Resolved In Build
JDK-8290955	11.0.17-oracle	Dukebot	P2	Closed	Fixed	b04
JDK-8267052	11.0.12	Valerie Peng	P2	Resolved	Fixed	b03
JDK-8305974	openjdk8u382	Paul Hohensee	P2	Resolved	Fixed	b01
JDK-8306378	openjdk8u372	Paul Hohensee	P2	Resolved	Fixed	master
JDK-8290991	8u351	Dukebot	P2	Closed	Fixed	b04

This is a regression introduced by ~~JDK-8254717~~. @kganapureddy reported this bug.

In RSAKeyFactory.engineGetKeySpec, when the input key is a private key, the method tries to cast the key to RSAPrivateCrtKey when the keySpec class is RSAPrivateCrtKeySpec or its subclasses.

~~JDK-8254717~~ fixes all isAssignableFrom checks in engineGetKeySpec. But it introduces the regression that RSAKeyFactory.engineGetKeySpec tries to cast the private key when the keySpec is RSAPrivateCrtKeySpec or its **superclasses** (i.e., RSAPrivateKeySpec). This caused the following exception when the input key is only a RSAPrivateKey:
java.security.spec.InvalidKeySpecException: RSAPrivateCrtKeySpec can only be used with CRT keys.

backported by

JDK-8267052 RsaPrivateKeySpec is always recognized as RSAPrivateCrtKeySpec in RSAKeyFactory.engineGetKeySpec

Resolved

JDK-8305974 RsaPrivateKeySpec is always recognized as RSAPrivateCrtKeySpec in RSAKeyFactory.engineGetKeySpec

Resolved

JDK-8306378 RsaPrivateKeySpec is always recognized as RSAPrivateCrtKeySpec in RSAKeyFactory.engineGetKeySpec

Resolved

JDK-8290955 RsaPrivateKeySpec is always recognized as RSAPrivateCrtKeySpec in RSAKeyFactory.engineGetKeySpec

Closed

JDK-8290991 RsaPrivateKeySpec is always recognized as RSAPrivateCrtKeySpec in RSAKeyFactory.engineGetKeySpec

Closed

relates to

JDK-8254717 isAssignableFrom checks in KeyFactorySpi.engineGetKeySpec appear to be backwards

Resolved

JDK-8268558 [TESTBUG] Case 2 in TestP11KeyFactoryGetRSAKeySpec is skipped

Resolved

links to

Commit openjdk/jdk8u-dev/4445e5cc

Commit openjdk/jdk/a5d7de23

Review openjdk/jdk8u-dev/214

Review openjdk/jdk8u-dev/302

Review openjdk/jdk8u/41

Review openjdk/jdk/2949

(2 relates to, 6 links to)

Assignee:: Ziyi Luo (Inactive)

Reporter:: Ziyi Luo (Inactive)

Votes:: 0 Vote for this issue

Watchers:: 9 Start watching this issue

Created:: 2021-03-10 15:29

Updated:: 2023-08-07 14:52

Resolved:: 2021-03-29 13:15

Details

Backports

Description

Attachments

Issue Links

Activity

People

Dates