Allow inherited DSAKey and ECKey parameters
RFC 3279 sections 2.3.2 and 2.3.5 say that DSA and EC keys respectively
may inherit from its issuer's key parameters.
When setting "jdk.certpath.disabledAlgorithms=DSA keySize < 1024" and
running the NIST PKIX test 4.1.5 Valid DSA Parameter Inheritance Test5
an exception is thrown because the key size of the DSA with inherited
parameters is checked. However, inherited parameter DSA keys have null
DSAParams which causes a NullPointerException.
It's okay to skip checking this key, because the parent key from which
it inherits its parameters will be rejected when it is tested and the
certpath will fail to build.
Bug: 26984935
Change-Id: I071578b19729a41d6ad64e9fe18e45b492ad4cff
1 file changed
