Loading...

XML

Word

Printable

Type: Enhancement
Resolution: Unresolved
Priority: P4
Fix Version/s: None
Affects Version/s: None
Component/s: security-libs
Labels:
None

Subcomponent:
javax.net.ssl
Understanding:
Fix Understood

RSASSA-PSS is currently the only signature algorithm we support that comes with algorithm parameters. We don't check for those parameters when validating certificates against supported signature algorithm constraints.

relates to

JDK-8366211 Block signature scheme names to be used with CertificateSignature algorithm constraints usage

Closed

links to

Review(master) openjdk/jdk/27146

Assignee:: Artur Barashev

Reporter:: Artur Barashev

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Created:: 2025-09-08 07:14

Updated:: 2025-09-09 11:48

Details

Description

Attachments

Issue Links

Activity

People

Dates