JDK-8202837 : PBES2 AlgorithmId encoding error in PKCS12 KeyStore
  • Type: Bug
  • Component: security-libs
  • Sub-Component: java.security
  • Priority: P3
  • Status: Closed
  • Resolution: Fixed
  • Submitted: 2018-05-09
  • Updated: 2020-04-22
  • Resolved: 2018-07-18
The Version table provides details related to the release that this issue/RFE will be addressed.

Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.

To download the current JDK release, click here.
JDK 11 JDK 12
11 b24Fixed 12Fixed
Related Reports
Blocks :  
Relates :  
Relates :  

               algParams = getPBEAlgorithmParameters(algorithm);
           ObjectIdentifier pbeOID = mapPBEAlgorithmToOID(algorithm);
           cipher.init(Cipher.ENCRYPT_MODE, skey, algParams);
           algid = new AlgorithmId(pbeOID, cipher.getParameters());
           EncryptedPrivateKeyInfo encrInfo =
               new EncryptedPrivateKeyInfo(algid, encryptedKey);

Here, pbeOID is pkcs5PBES2, but pkcs5PBES2 is also contained in algParams, and algid is encoded with a dup inside.

0002:000B  [0]     OID 1.2.840.113549.1.5.13 (pkcs5PBES2)
000D:0069  [1]     SEQUENCE
000F:000B  [10]         OID 1.2.840.113549.1.5.13 (pkcs5PBES2)
001A:005C  [11]         SEQUENCE
001C:003B  [110]             SEQUENCE
001E:000B  [1100]                 OID 1.2.840.113549.1.5.12 (pkcs5PBKDF2)
0029:002E  [1101]                 SEQUENCE

Also, in PBES2Parameters::parseKDF, keyLength and prf fields are required. They should be optional.