8360564: Implement JEP 524: PEM Encodings of Cryptographic Objects (Second Preview)

[ascarpino]

Hi

Please review the Second Preview for the PEM API. The most significant changes from JEP 470 are:

• Renamed the name of PEMRecord class to PEM.
• Revised the new encryptKey methods of the EncryptedPrivateKeyInfo class to accept DEREncodable objects rather than just PrivateKey objects so that cryptographic objects with public keys, i.e., KeyPair and PKCS8EncodedKeySpec, can also be encrypted.
• Enhanced the PEMEncoder and PEMDecoder classes to support the encryption and decryption of KeyPair and PKCS8EncodedKeySpec objects.

thanks

Tony

---

Progress

• Change must be properly reviewed (1 review required, with at least 1 Reviewer)
• Change requires CSR request JDK-8367431 to be approved
• Change must not contain extraneous whitespace
• Commit message must refer to an issue

Issues

• JDK-8360564: Implement JEP 524: PEM Encodings of Cryptographic Objects (Second Preview) (Enhancement - P4)
• JDK-8367431: Implement JEP 524: PEM Encodings of Cryptographic Objects (Second Preview) (CSR)

Reviewers

• Weijun Wang (@wangweij - Reviewer)
• Sean Mullan (@seanjmullan - Reviewer) Review applies to 0d95043c

Reviewers without OpenJDK IDs

• @koushikthirupattur (no known openjdk.org user name / role) Review applies to 0d95043c

Reviewing

Using git

Checkout this PR locally:
$ git fetch https://git.openjdk.org/jdk.git pull/27147/head:pull/27147
$ git checkout pull/27147

Update a local copy of the PR:
$ git checkout pull/27147
$ git pull https://git.openjdk.org/jdk.git pull/27147/head

Using Skara CLI tools

Checkout this PR locally:
$ git pr checkout 27147

View PR using the GUI difftool:
$ git pr show -t 27147

Using diff file

Download this PR as a diff file:
https://git.openjdk.org/jdk/pull/27147.diff

Using Webrev

Link to Webrev Comment

[bridgekeeper]

👋 Welcome back ascarpino! A progress list of the required criteria for merging this PR into master will be added to the body of your pull request. There are additional pull request commands available for use with this pull request.

[openjdk]

@ascarpino This change now passes all automated pre-integration checks.

ℹ️ This project also has non-automated pre-integration requirements. Please see the file CONTRIBUTING.md for details.

After integration, the commit message for the final commit will be:

8360564: Implement JEP 524: PEM Encodings of Cryptographic Objects (Second Preview)

Reviewed-by: weijun, mullan

You can use pull request commands such as /summary, /contributor and /issue to adjust it as needed.

At the time when this comment was updated there had been 98 new commits pushed to the master branch:

• cc05530: 8371732: [redo] Change java.time month/day field types to 'byte'
• 91b97a4: 8371922: Remove unused NonblockingQueue class
• 3924a28: 8371083: FollowReferences reports non-class objects as JVMTI_HEAP_REFERENCE_SYSTEM_CLASS
• ... and 95 more: https://git.openjdk.org/jdk/compare/c8656449c28581ae9c3d815105e338e42253bb43...master

As there are no conflicts, your changes will automatically be rebased on top of these commits when integrating. If you prefer to avoid this automatic rebasing, please check the documentation for the /integrate command for further details.

➡️ To integrate this PR with the above commit message to the master branch, type /integrate in a new comment.

[openjdk]

@ascarpino The following label will be automatically applied to this pull request:

• security

When this pull request is ready to be reviewed, an "RFR" email will be sent to the corresponding mailing list. If you would like to change these labels, use the /label pull request command.

[ascarpino]

/csr

[openjdk]

@ascarpino has indicated that a compatibility and specification (CSR) request is needed for this pull request.

@ascarpino please create a CSR request for issue JDK-8360564 with the correct fix version. This pull request cannot be integrated until the CSR request is approved.

[mlbridge]

Webrevs

• 14: Full - Incremental (2ee3e7a4)
• 13: Full - Incremental (5cba4d9e)
• 12: Full - Incremental (0d95043c)
• 11: Full - Incremental (e1405c06)
• 10: Full - Incremental (4bf48dda)
• 09: Full - Incremental (e08d0626)
• 08: Full - Incremental (682bfa17)
• 07: Full - Incremental (45f30dd3)
• 06: Full - Incremental (2e9332b9)
• 05: Full - Incremental (3e183c5a)
• 04: Full - Incremental (db913c3c)
• 03: Full - Incremental (e13bff47)
• 02: Full - Incremental (24be35c1)
• 01: Full - Incremental (b2d0defd)
• 00: Full (c493fa08)

[wangweij]

Some comments.

[wangweij]

Is it correct to put the 2 new methods here? Seems not closely related to PEM.

[ascarpino]

They are needed by PEM and EKPI, so this seems like the right place.

[wangweij]

This method is very similar to PKCS8Key::parseKey. Maybe we should combine them.

[ascarpino]

Before the code review, I intentionally split these apart. I didn't like how the code looked and that returning a DEREncodable complicated parseKey(). It made PKCS8Key much more complicated with typecasting and passing in pair.

If I redo PKCS8Key.java, this would be on the list to find a more elegant way to merge them.

[wangweij]

So there are 2 ways to extract public key from PKCS8. Are you going to check whether they match?

Also, can we add a test case for this format?

[ascarpino]

In this method, there is only one path for SEC1v2 requires the version to be 1, PKCS8 requires the version to be 2. The two should not intersect in this method.

It is true that a version 2 OneAsymmetricKey could contain a SEC1v2 private key encoding. At that point a KeyFactory needs to generate both keys to verify. I think that goes beyond what is necessary for what amounts to a "user error" in putting the wrong public and private key pair together.

I would like to explore redoing PKCS8Key.java as it has taken on many more tasks with encoding & decoding different algorithms. But I don't want that to be tied to a JEP, rather a bug or RFE.

[wangweij]

If any of these ifs is false null is returned. Would you rather throw an IAE?

[wangweij]

I see there could be a

parameters [0] ECDomainParameters {{ SECGCurveNames }} OPTIONAL,

Shall we skip it?

[ascarpino]

This only checks if one is available in the private key material. If there is none, null is fine.

The domain parameters are kept as part of private key SEC1v2 encoding and can be read when generating a private key with a KeyFactory. Translating the encoding could be error-prone, and maybe incompatible.

[wangweij]

Oh, I meant if both [0] and [1] are there you can skip [0] and read [1]. Currently you just check for [1].

[ascarpino]

Oh yes, I didn't add a skip.

[seanjmullan]

Suggest rewording as "... if there was no data preceding the PEM header ..."

Why do you allow null when there is a ctor that does not have a leadingData parameter - is there a reason for this?

[ascarpino]

I thought it was more friendly to specify a constructor when leadingData was known to be not needed. The other constructor is used by PEMDecoder decoding is not known until decoding the stream occurs.

[wangweij]

Very minor comments.

[wangweij]

Some tiny comments.

[koushikthirupattur]

LGTM!

[myankelev]

This method doesn't seem to be covered by the tests. I have created a ticket to add this https://bugs.openjdk.org/browse/JDK-8371574.
It also covers the 2 methods in PEM.java in utils, which could be covered further

[ascarpino]

/integrate

[openjdk]

Going to push as commit ad3dfaf.
Since your change was applied there have been 98 commits pushed to the master branch:

• cc05530: 8371732: [redo] Change java.time month/day field types to 'byte'
• 91b97a4: 8371922: Remove unused NonblockingQueue class
• 3924a28: 8371083: FollowReferences reports non-class objects as JVMTI_HEAP_REFERENCE_SYSTEM_CLASS
• ... and 95 more: https://git.openjdk.org/jdk/compare/c8656449c28581ae9c3d815105e338e42253bb43...master

Your commit was automatically rebased without conflicts.

[openjdk]

@ascarpino Pushed as commit ad3dfaf.

💡 You may see a message that your pull request was closed with unmerged commits. This can be safely ignored.