Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8226712

Certificate selection should be affected by the supported groups

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Closed
    • Priority: P3
    • Resolution: Duplicate
    • Affects Version/s: 11, 12, 13
    • Fix Version/s: 14
    • Component/s: security-libs
    • Labels:

      Description

      Please consider the below case,
      1. The key store contains two ECDSA certificates, which use secp256r1 and secp384r1 respectively.
      2. Limit the supported groups to sepc384r1 only.
      The ECDSA with secp256r1 certificate may be selected as unexpected.

      This issue would raise on TLSv1.2 and earlier protocols.

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              xuelei Xue-Lei Fan
              Reporter:
              jjiang John Jiang
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved: