Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8252377

Incorrect encoding for EC AlgorithmIdentifier

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: P3
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 16
    • Component/s: security-libs
    • Labels:
      None

      Description

      The AlgorithmIdentifier for ECDSA should omit the parameters field. See https://tools.ietf.org/html/rfc5758#section-3.2 :

         When the ecdsa-with-SHA224, ecdsa-with-SHA256, ecdsa-with-SHA384, or
         ecdsa-with-SHA512 algorithm identifier appears in the algorithm field
         as an AlgorithmIdentifier, the encoding MUST omit the parameters
         field.

      However, the JDK encodes the parameters as NULL. The bug is in sun.security.x509.AlgorithmId.derEncode()

        Attachments

          Issue Links

            Activity

              People

              Assignee:
              hchao Haimay Chao
              Reporter:
              mullan Sean Mullan
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved: