Loading...

XML

Word

Printable

Type: Enhancement
Resolution: Fixed
Priority: P4
Fix Version/s: 26
Affects Version/s: None
Component/s: security-libs
Labels:
None

Subcomponent:
javax.net.ssl
Resolved In Build:
b17

RSASSA-PSS is currently the only signature algorithm we support that comes with algorithm parameters. We don't check for those parameters when validating certificates against supported signature algorithm constraints.

relates to

JDK-8366211 Block signature scheme names to be used with CertificateSignature algorithm constraints usage

Closed

links to

Commit(master) openjdk/jdk/3798dcf7

Review(master) openjdk/jdk/27146

Assignee:: Artur Barashev

Reporter:: Artur Barashev

Votes:: 0 Vote for this issue

Watchers:: 4 Start watching this issue

Created:: 2025-09-08 07:14

Updated:: 2025-09-29 16:26

Resolved:: 2025-09-19 06:09

Details

Description

Attachments

Issue Links

Activity

People

Dates