Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8029661

Support TLS v1.2 algorithm in SunPKCS11 provider

    XMLWordPrintable

Details

    Backports

      Description

        See the comment in SunPKCS11.java. Need to consider whether we can support SunTls12Prf, SunTls12RsaPremasterSecret, etc. in SunPKCS11 in the future.

                /*
                 * TLS 1.2 uses a different hash algorithm than 1.0/1.1 for the
                 * PRF calculations. As of 2010, there is no PKCS11-level
                 * support for TLS 1.2 PRF calculations, and no known OS's have
                 * an internal variant we could use. Therefore for TLS 1.2, we
                 * are updating JSSE to request different provider algorithms
                 * (e.g. "SunTls12Prf"), and currently only SunJCE has these
                 * TLS 1.2 algorithms.
                 *
                 * If we reused the names such as "SunTlsPrf", the PKCS11
                 * providers would need be updated to fail correctly when
                 * presented with the wrong version number (via
                 * Provider.Service.supportsParameters()), and we would also
                 * need to add the appropriate supportsParamters() checks into
                 * KeyGenerators (not currently there).
                 *
                 * In the future, if PKCS11 support is added, we will restructure
                 * this.
                 */

        Attachments

          Issue Links

            backported by

            Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8213778 Support TLS v1.2 algorithm in SunPKCS11 provider

            • P3 - Major loss of function.
            • Resolved

            Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8213925 Support TLS v1.2 algorithm in SunPKCS11 provider

            • P3 - Major loss of function.
            • Resolved

            Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8214080 Support TLS v1.2 algorithm in SunPKCS11 provider

            • P3 - Major loss of function.
            • Resolved

            Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8214291 Support TLS v1.2 algorithm in SunPKCS11 provider

            • P3 - Major loss of function.
            • Resolved

            Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8215531 Support TLS v1.2 algorithm in SunPKCS11 provider

            • P3 - Major loss of function.
            • Resolved

            Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8215861 Support TLS v1.2 algorithm in SunPKCS11 provider

            • P3 - Major loss of function.
            • Resolved

            Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8216163 Support TLS v1.2 algorithm in SunPKCS11 provider

            • P3 - Major loss of function.
            • Resolved

            Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8220980 Support TLS v1.2 algorithm in SunPKCS11 provider

            • P3 - Major loss of function.
            • Resolved

            Backport - A issue that is required to port a Bug or Feature into another product release. This issue type is generally associated with the main Bug/Feature to represent each individual release of the port. JDK-8215191 Support TLS v1.2 algorithm in SunPKCS11 provider

            • P3 - Major loss of function.
            • Closed
            duplicates

            New Feature - A new feature of the product, which has yet to be developed. JDK-8080076 PKCS#11 v2.40 Support for TLSv1.2 feature

            • P4 - Minor loss of function, or other problem where easy workaround is present.
            • Resolved
            is blocked by

            Enhancement - null JDK-8080462 Update SunPKCS11 provider with PKCS11 v2.40 support

            • P3 - Major loss of function.
            • Resolved
            relates to

            Bug - A problem which impairs or prevents the functions of the product. JDK-8213154 Update copyright headers of files in src tree that are missing Classpath exception

            • P2 - Crashes, loss of data, severe memory leak.
            • Resolved

            Enhancement - null JDK-8220753 Re-introduce the test case for TLS 1.2 algorithms in SunPKCS11 crypto provider

            • P4 - Minor loss of function, or other problem where easy workaround is present.
            • Resolved

            Bug - A problem which impairs or prevents the functions of the product. JDK-8210912 Build error in src/jdk.crypto.cryptoki/share/native/libj2pkcs11/p11_convert.c after JDK-8029661

            • P1 - Blocks development and/or testing work, production could not run.
            • Closed

            Activity

              People

                mbalao Martin Balao
                xuelei Xuelei Fan
                Votes:
                0 Vote for this issue
                Watchers:
                8 Start watching this issue

                Dates

                  Created:
                  Updated:
                  Resolved: