Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8226712

Certificate selection should be affected by the supported groups

    Details

    • Type: Bug
    • Status: Closed
    • Priority: P3
    • Resolution: Duplicate
    • Affects Version/s: 11, 12, 13
    • Fix Version/s: 14
    • Component/s: security-libs
    • Labels:

      Description

      Please consider the below case,
      1. The key store contains two ECDSA certificates, which use secp256r1 and secp384r1 respectively.
      2. Limit the supported groups to sepc384r1 only.
      The ECDSA with secp256r1 certificate may be selected as unexpected.

      This issue would raise on TLSv1.2 and earlier protocols.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                xuelei Xue-Lei Fan
                Reporter:
                jjiang John Jiang
              • Votes:
                0 Vote for this issue
                Watchers:
                2 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: