> Hi All, > > DES and DESede keys are supported by JKS/JCEKS but not supported by PKCS#12 > keystores. > This issue prevents the migration of legacy applications to PKCS#12 keystore. > For example, an application has some old 3DES keys that are required for > certain legacy features. Java PKCS12 keystore does not support DES/3DES keys, > thus, application can’t migrate to PKCS#12 > This patch adds OIDs for the DES/DESede algorithms. It is the only changes > required to support DES/3DES keys in the PKCS#12 keystore. > sun/security/pkcs12/P12SecretKey test is updated to verify new secret keys in > the PKCS#12 keystore.
Alexey Bakhtin has updated the pull request incrementally with one additional commit since the last revision: DES oid is 1.3.14.3.2.7 ------------- Changes: - all: https://git.openjdk.java.net/jdk/pull/877/files - new: https://git.openjdk.java.net/jdk/pull/877/files/09354ca6..94423b3d Webrevs: - full: https://webrevs.openjdk.java.net/?repo=jdk&pr=877&range=01 - incr: https://webrevs.openjdk.java.net/?repo=jdk&pr=877&range=00-01 Stats: 2 lines in 1 file changed: 0 ins; 1 del; 1 mod Patch: https://git.openjdk.java.net/jdk/pull/877.diff Fetch: git fetch https://git.openjdk.java.net/jdk pull/877/head:pull/877 PR: https://git.openjdk.java.net/jdk/pull/877