96811524d7
* Modify JVM Crypto rules: Change title * changed names * Apply suggestions from code review * fixed includes
45 lines
1010 B
Plaintext
45 lines
1010 B
Plaintext
== How to fix it in Java Cryptography Extension
|
|
|
|
=== Code examples
|
|
|
|
include::../../common/fix/code-rationale.adoc[]
|
|
|
|
==== Noncompliant code example
|
|
|
|
[source,java,diff-id=1,diff-type=noncompliant]
|
|
----
|
|
import javax.crypto.Cipher;
|
|
import java.security.NoSuchAlgorithmException;
|
|
import javax.crypto.NoSuchPaddingException;
|
|
|
|
public static void main(String[] args) {
|
|
try {
|
|
Cipher des = Cipher.getInstance("DES"); // Noncompliant
|
|
} catch(NoSuchAlgorithmException|NoSuchPaddingException e) {
|
|
// ...
|
|
}
|
|
}
|
|
----
|
|
|
|
==== Compliant solution
|
|
|
|
[source,java,diff-id=1,diff-type=compliant]
|
|
----
|
|
import javax.crypto.Cipher;
|
|
import java.security.NoSuchAlgorithmException;
|
|
import javax.crypto.NoSuchPaddingException;
|
|
|
|
public static void main(String[] args) {
|
|
try {
|
|
Cipher aes = Cipher.getInstance("AES/GCM/NoPadding");
|
|
} catch(NoSuchAlgorithmException|NoSuchPaddingException e) {
|
|
// ...
|
|
}
|
|
}
|
|
----
|
|
|
|
=== How does this work?
|
|
|
|
include::../../common/fix/strong-cryptography.adoc[]
|
|
|