Details
-
Bug
-
Status: Closed
-
P4
-
Resolution: Fixed
-
9, 11, 14
-
b16
-
generic
-
generic
-
Not verified
Backports
Issue | Fix Version | Assignee | Priority | Status | Resolution | Resolved In Build |
---|---|---|---|---|---|---|
JDK-8245803 | 13.0.4 | Valerie Peng | P4 | Resolved | Fixed | b03 |
JDK-8232520 | 11.0.6-oracle | Valerie Peng | P4 | Resolved | Fixed | b02 |
JDK-8234249 | 11.0.6 | Valerie Peng | P4 | Resolved | Fixed | b04 |
JDK-8272519 | openjdk8u322 | Alexey Bakhtin | P4 | Resolved | Fixed | b01 |
Description
Currently, SunPKCS11 provider assumes the listed supported mechanism can be used fully, i.e. cipher mechanisms can perform both encrypt and decrypt operations, signature mechanisms can perform both signing and verification. This may be true initially, however, as mechanisms become weak or obsolete, this may not hold true anymore.
One example, in S11.4, RC4 can no longer be used for encryption. However, it still shows up as supported mechanism which supports decryption for older applications. SunPKCS11 provider needs to be updated accordingly,
One example, in S11.4, RC4 can no longer be used for encryption. However, it still shows up as supported mechanism which supports decryption for older applications. SunPKCS11 provider needs to be updated accordingly,
Attachments
Issue Links
- backported by
-
JDK-8232520 SunPKCS11 provider needs to check more details on PKCS11 Mechanism
-
- Resolved
-
-
JDK-8234249 SunPKCS11 provider needs to check more details on PKCS11 Mechanism
-
- Resolved
-
-
JDK-8245803 SunPKCS11 provider needs to check more details on PKCS11 Mechanism
-
- Resolved
-
-
JDK-8272519 SunPKCS11 provider needs to check more details on PKCS11 Mechanism
-
- Resolved
-
- duplicates
-
JDK-8215139 sun/security/pkcs11/Cipher/ tests fails with Could not initialize cipher
-
- Closed
-
- relates to
-
JDK-8272643 Backout JDK-8176837 from 8u312
-
- Resolved
-
(1 relates to)