-
Bug
-
Resolution: Fixed
-
P4
-
None
-
b25
| Issue | Fix Version | Assignee | Priority | Status | Resolution | Resolved In Build |
|---|---|---|---|---|---|---|
| JDK-8304259 | 17.0.8-oracle | Prasadarao Koppula | P4 | Resolved | Fixed | b01 |
| JDK-8306274 | 17.0.8 | Goetz Lindenmaier | P4 | Resolved | Fixed | b01 |
| JDK-8304540 | 11.0.20-oracle | Prasadarao Koppula | P4 | Resolved | Fixed | b01 |
| JDK-8308868 | 11.0.20 | Lutz Schmidt | P4 | Resolved | Fixed | b05 |
| JDK-8304935 | 8u381 | Prasadarao Koppula | P4 | Resolved | Fixed | b01 |
| JDK-8304942 | 7u391 | Prasadarao Koppula | P4 | Resolved | Fixed | b01 |
P, Q, and G are optional according to the XML Signature Recommendation as they might be known from application context, but the JDK implementation does not provide a mechanism or API for an application to supply the missing parameters, so they are required to be specified in the DSAKeyValue element of a KeyInfo element.
Thus, it seems a more robust fix is to have the XML Signature implementation check for null or missing parameters and throw a MarshalException before trying to create a DSA public key from its XML encoding. This will allow the code to fail earlier and not depend on the provider to detect illegal or missing parameters.
- backported by
-
JDK-8304259 DSAKeyValue should check for missing params instead of relying on KeyFactory provider
-
- Resolved
-
-
-
- Resolved
-
-
-
- Resolved
-
-
-
- Resolved
-
-
-
- Resolved
-
-
-
- Resolved
-
- links to
-
Commit
openjdk/jdk11u-dev/5fa213a8
-
Commit
openjdk/jdk17u-dev/fc037105
-
Commit
openjdk/jdk/f235955e
-
Review
openjdk/jdk11u-dev/1895
-
Review
openjdk/jdk17u-dev/1244
-
Review
openjdk/jdk/8870