Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8260693

Provide the support for specifying a signer in keytool -genkeypair

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: P4
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 17
    • Component/s: security-libs
    • Labels:
      None

      Description

      RFC 8410 section 10.2 provides an example of X25519 certificate using Ed25519 to sign an X25519 public key. The keytool -genkeypair command currently can not generate the key agreement certificate, such as X25519 certificate.
      Add -signer option to keytool -genkeypair command so the signer’s private key can be used to sign and generate a key agreement certificate. Also, the keytool needs to be able to display the appropriate key size of an XDH key, instead of XDH key of unknown size.

        Attachments

          Issue Links

          csr for

          CSR - null JDK-8264325 Provide the support for specifying a signer in keytool -genkeypair

          • P4 - Minor loss of function, or other problem where easy workaround is present.
          • Closed
          links to

          Commit Commit openjdk/jdk/719f95e5

          Review Review openjdk/jdk/3281

            Activity

              People

              Assignee:
              hchao Haimay Chao
              Reporter:
              weijun Weijun Wang
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved: