Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8207857

PK11Key: Properly check unextractable key

    Details

    • Type: Enhancement
    • Status: Open
    • Priority: P4
    • Resolution: Unresolved
    • Affects Version/s: None
    • Fix Version/s: None
    • Component/s: security-libs
    • Labels:
      None

      Description

      This was found during the TLS 1.3 review. It appears unextractable keys will never equal as getEncoded() will always return false. There are no known bugs filed against this apparent lack of support


      http://hg.openjdk.java.net/jdk/sandbox/file/56aaa6cb3693/src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/P11Key.java#l154

              String thisFormat = getFormat();
              if (thisFormat == null) {
                  // no encoding, key only equal to itself
                  // XXX getEncoded() for unextractable keys will change that
                  return false;
              }

      Is there a bug to handle unextractable keys?

        Attachments

          Activity

            People

            • Assignee:
              Unassigned
              Reporter:
              ascarpino Anthony Scarpino
            • Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated: