Loading...

XML

Word

Printable

Type: Bug
Resolution: Fixed
Priority: P4
Fix Version/s: 26
Affects Version/s: 21
Component/s: security-libs
Labels:

Subcomponent:
javax.crypto
Resolved In Build:
b06

Issue	Fix Version	Assignee	Priority	Status	Resolution	Resolved In Build
JDK-8369790	25.0.3-oracle	Oumaiyma Intissar	P4	Resolved	Fixed	b01
JDK-8375081	25.0.3	Victor Rudometov	P4	Resolved	Fixed	master
JDK-8369789	21.0.11-oracle	Oumaiyma Intissar	P4	Resolved	Fixed	b01

The javadoc of javax.crypto.Cipher class specifies:

A transformation is of the form:
"algorithm/mode/padding" or
"algorithm"
(in the latter case, provider-specific default values for the mode and padding scheme are used).

Thus, we should reject transformations in "algorithm/mode/padding" syntax with empty mode and/or padding.

backported by

JDK-8369789 Stricter checking for cipher transformations

Resolved

JDK-8369790 Stricter checking for cipher transformations

Resolved

JDK-8375081 Stricter checking for cipher transformations

Resolved

caused by

JDK-8288050 Add support of SHA-512/224 and SHA-512/256 to the PBKDF2 and PBES2 impls in SunJCE provider

Resolved

relates to

JDK-8358159 Empty mode/padding in cipher transformations

Resolved

links to

Commit(master) openjdk/jdk25u-dev/41d860f0

Commit(master) openjdk/jdk/ec7c6be6

Review(master) openjdk/jdk25u-dev/130

Review(master) openjdk/jdk/25808

Review(pr/2554) openjdk/jdk21u-dev/2555

(5 links to)

Assignee:: Valerie Peng
Reporter:: Valerie Peng
Votes:: 0 Vote for this issue
Watchers:: 6 Start watching this issue

Created:: 2025-06-12 13:45
Updated:: 17 hours ago
Resolved:: 2025-07-07 16:41

Details

Backports

Description

Attachments

Issue Links

Activity

People

Dates