Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8184673

Fix compatibility issue in AlgorithmChecker for 3rd party JCE providers

    Details

    • Subcomponent:
    • Introduced In Version:
    • Resolved In Build:
      b16
    • Verification:
      Verified

      Backports

        Description

        The change http://hg.openjdk.java.net/jdk9/dev/jdk/rev/d911fe42d2da to sun.security.provider.certpath.AlgorithmChecker has introduced an incompatibility to legacy JCE providers that would return old naming convention names, like SHA1/RSA, for X509Certificate.getSigAlgName().

        Although the new naming such as SHA1withRSA should be implemented by the providers, it is safe to revert this place to take the signature algorithm name from the internal certificate implementation object that exists at this place anyway. By doing this we can overcome the potential incompatibility.

          Attachments

            Issue Links

              Activity

                People

                • Assignee:
                  clanger Christoph Langer
                  Reporter:
                  clanger Christoph Langer
                • Votes:
                  0 Vote for this issue
                  Watchers:
                  10 Start watching this issue

                  Dates

                  • Created:
                    Updated:
                    Resolved: