Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8038349

Signing XML with DSA throws Exception when key is larger than 1024 bits

    Details

    • Type: Bug
    • Status: Closed
    • Priority: P3
    • Resolution: Fixed
    • Affects Version/s: 8
    • Fix Version/s: 9
    • Component/s: security-libs
    • Labels:
      None

      Backports

        Description

          Activity

          Hide
          mullan Sean Mullan added a comment - - edited
          Add support for signing and verifying XML Signatures with 2048-bit DSA keys. Also add support for the DSA-SHA256 algorithm which was added in XML Signature 1.1: http://www.w3.org/TR/xmldsig-core1/#sec-DSA

          JDK 8 already includes the underlying support for both of these in the Sun provider. For 2048 bit keys, the ASN.1 parsing code in the XML Signature layer needed to be adapted to handle 2048 bit keys, and for SHA-256 it was just a matter of registering the algorithm URI and instantiating a Signature object with the SHA256WithDSA algorithm.
          Show
          mullan Sean Mullan added a comment - - edited Add support for signing and verifying XML Signatures with 2048-bit DSA keys. Also add support for the DSA-SHA256 algorithm which was added in XML Signature 1.1: http://www.w3.org/TR/xmldsig-core1/#sec-DSA JDK 8 already includes the underlying support for both of these in the Sun provider. For 2048 bit keys, the ASN.1 parsing code in the XML Signature layer needed to be adapted to handle 2048 bit keys, and for SHA-256 it was just a matter of registering the algorithm URI and instantiating a Signature object with the SHA256WithDSA algorithm.
          Hide
          hgupdate HG Updates added a comment -
          URL: http://hg.openjdk.java.net/jdk9/dev/jdk/rev/d7640cee30d8
          User: mullan
          Date: 2014-05-02 14:09:21 +0000
          Show
          hgupdate HG Updates added a comment - URL: http://hg.openjdk.java.net/jdk9/dev/jdk/rev/d7640cee30d8 User: mullan Date: 2014-05-02 14:09:21 +0000
          Hide
          hgupdate HG Updates added a comment -
          URL: http://hg.openjdk.java.net/jdk9/jdk9/jdk/rev/d7640cee30d8
          User: lana
          Date: 2014-05-14 17:13:30 +0000
          Show
          hgupdate HG Updates added a comment - URL: http://hg.openjdk.java.net/jdk9/jdk9/jdk/rev/d7640cee30d8 User: lana Date: 2014-05-14 17:13:30 +0000
          Hide
          tidu Tim Du added a comment -
          Show
          tidu Tim Du added a comment - The affected testcase could pass in nightly result: http://aurora.ru.oracle.com/functional/faces/RunDetails.xhtml?names=669066.CORELIBS-JDK-NIGHTLY-JTREG-15 Verified it

            People

            • Assignee:
              mullan Sean Mullan
              Reporter:
              mullan Sean Mullan
            • Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: