[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Bug classpath/54057] call to javax.crypto.Mac.init() with 5 character p
|
From: |
guillerodriguez.dev at gmail dot com |
|
Subject: |
[Bug classpath/54057] call to javax.crypto.Mac.init() with 5 character password produces java.security.InvalidKeyException: Key too short |
|
Date: |
Wed, 14 Jun 2017 16:55:00 +0000 |
https://gcc.gnu.org/bugzilla/show_bug.cgi?id=54057
Guillermo Rodriguez <guillerodriguez.dev at gmail dot com> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |guillerodriguez.dev at gmail
dot c
| |om
--- Comment #6 from Guillermo Rodriguez <guillerodriguez.dev at gmail dot com>
---
Why does (In reply to Andrew John Hughes from comment #4)
> Commenting the code out isn't a solution.
>
> If you set the attribute gnu.crypto.hmac.pkcs5 to true, the test will be
> skipped as you wish.
Why does gnu.crypto.mac.HMac try to enforce that the key size is >= the output
block size of the underlying algorithm? In general there is no such requirement
for HMAC algorithms and while this test may make sense in some cases, in others
obviously it does not.
I think that this test should be removed.
| [Prev in Thread] |
Current Thread |
[Next in Thread] |
- [Bug classpath/54057] call to javax.crypto.Mac.init() with 5 character password produces java.security.InvalidKeyException: Key too short,
guillerodriguez.dev at gmail dot com <=