jfclere commented on PR #517: URL: https://github.com/apache/tomcat/pull/517#issuecomment-1139658305
On 27/05/2022 08:58, Mark Thomas wrote: > @ChristopherSchultz <https://github.com/ChristopherSchultz> The code you > referenced is decoding PKCS#1 format keys. Tomcat already handles those. > This issue is about PKCS#8 format keys. Take a look at the sub-classes > of |com.sun.crypto.provider.PBEKeyFactory|. There is no support for the > combination of |HmacSHA256| and |TripleDES|. Basically you can parse the asn1 but will end in the hmacWithSHA256/des-ede3-cbc encoded stuff... And I am not sure we can decrypt it... And According to what Mark says we can't :-( > > — > Reply to this email directly, view it on GitHub > <https://github.com/apache/tomcat/pull/517#issuecomment-1139340297>, or > unsubscribe > <https://github.com/notifications/unsubscribe-auth/AACNKB7AHWD22Z75CGMKQV3VMBXCBANCNFSM5W5YVK4Q>. > You are receiving this because you authored the thread.Message ID: > ***@***.***> > -- Cheers Jean-Frederic -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
