JDK-8248981 : Specify list of standard message digest and mgf algorithms for RSASSA-PSS signature
  • Type: Enhancement
  • Component: security-libs
  • Sub-Component: java.security
  • Priority: P4
  • Status: Resolved
  • Resolution: Fixed
  • Submitted: 2020-07-07
  • Updated: 2024-06-27
  • Resolved: 2024-06-25
The Version table provides details related to the release that this issue/RFE will be addressed.

Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.

To download the current JDK release, click here.
JDK 24
24 b04Fixed
Related Reports
CSR :  
Relates :  
Sub Tasks
JDK-8334257 :  
JDK-8335003 :  
Description
Consider documenting the "required" support for message digest algorithms for RSASSA-PSS signature in "Java Security Standard Algorithm Names" doc, e.g. https://docs.oracle.com/en/java/javase/14/docs/specs/security/standard-names.html. RSASSA-PSS is not a required signature algorithm for Java SE, but it'd help promote interoperability to define the list of required message digest algorithm support for providers who support RSASSA-PSS.

In addition, it may be useful to include the supported message digest algorithms for the RSASSA-PSS signature impl in SunRsaSign provider in the "JDK providers" doc, e.g. https://docs.oracle.com/en/java/javase/14/security/oracle-providers.html#GUID-17E3589E-E4BA-4881-9B12-9880DD2D128D
Comments
Changeset: 75a2afac Author: Sean Mullan <mullan@openjdk.org> Date: 2024-06-25 12:21:46 +0000 URL: https://git.openjdk.org/jdk/commit/75a2afacc8f5fdec53350b1cb66076cdfeae12f0
25-06-2024

A pull request was submitted for review. URL: https://git.openjdk.org/jdk/pull/19724 Date: 2024-06-14 15:32:15 +0000
14-06-2024

Since RSASSA-PSS is not a required algorithm, the standard names specification cannot state that certain message digest (or hash) algorithms are required. RFC 8017 does not state that implementations MUST (or even SHOULD) support a required set of hash algorithms. However, what we can do in the standard algorithms names is list the set of hash algorithms that https://datatracker.ietf.org/doc/html/rfc8017#appendix-A.2.1 of RFC 8017 says can be specified with RSASSA-PSS: SHA-1, SHA-224, SHA-256, SHA-384, SHA-512, SHA-512/224, and SHA-512/256. For the Oracle Providers doc, I will open a separate subtask to list what hash algorithms the SunRsaSign provider supports for RSASSA-PSS.
23-05-2024