Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8239950

Update PKCS9 Attributes to PKCS#9 v2.0 Encodings

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: P4
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 16
    • Component/s: security-libs
    • Labels:
      None

      Description

      Of the PKCS#9 attributes we support, some of them are coded to the v1.1 revision of the specification. With RFC 2985 (PKCS#9 v2.0) some of these attributes had their encodings changed. We should update our code to conform to these newer definitions.

      Of note:
      * unstructuredName is currently (IA5String | PrintableString). It should be (IA5String | DirectoryString)
      * unstructuredAddress is currently (PrintableString | T61String). It should be DirectoryString.
      * signingTime currently only accepts UTCTime objects, but they can also come in as GeneralizedTime. The criteria for which time encoding to use depends on the date being encoded. We may choose to accept both encodings for all dates, or be more strict and enforce only the proper encoding for a given date.

      There may be other discrepancies as well.

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              jnimeh Jamil Nimeh
              Reporter:
              jnimeh Jamil Nimeh
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved: