Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8226712

Certificate selection should be affected by the supported groups

    XMLWordPrintable

Details

    • Bug
    • Resolution: Duplicate
    • P3
    • 14
    • 11, 12, 13
    • security-libs

    Description

      Please consider the below case,
      1. The key store contains two ECDSA certificates, which use secp256r1 and secp384r1 respectively.
      2. Limit the supported groups to sepc384r1 only.
      The ECDSA with secp256r1 certificate may be selected as unexpected.

      This issue would raise on TLSv1.2 and earlier protocols.

      Attachments

        Issue Links

          Activity

            People

              xuelei Xuelei Fan
              jjiang John Jiang
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: