JDK-8347612 : Release Note: Updated HSS/LMS Public Key Encoding
  • Type: Sub-task
  • Component: security-libs
  • Sub-Component: java.security
  • Affected Version: 21.0.8-oracle,24
  • Priority: P4
  • Status: Resolved
  • Resolution: Delivered
  • Submitted: 2025-01-13
  • Updated: 2025-05-21
  • Resolved: 2025-01-24
The Version table provides details related to the release that this issue/RFE will be addressed.

Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.

To download the current JDK release, click here.
JDK 21 JDK 24
21.0.8-oracleResolved 24Resolved
Description
The X.509 encoded format for HSS/LMS public keys has been updated to align with the latest standard outlined in [RFC 9708](https://www.rfc-editor.org/rfc/rfc9708.html#name-hss-lms-public-key-identifi). Notably, the additional OCTET STRING wrapping around the public key value has been removed. For compatibility, public key encodings generated by earlier JDK releases are still recognized.