Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8260693

Provide the support for specifying a signer in keytool -genkeypair

    XMLWordPrintable

Details

    • Bug
    • Resolution: Fixed
    • P4
    • 17
    • None
    • security-libs
    • None

    Description

      RFC 8410 section 10.2 provides an example of X25519 certificate using Ed25519 to sign an X25519 public key. The keytool -genkeypair command currently can not generate the key agreement certificate, such as X25519 certificate.
      Add -signer option to keytool -genkeypair command so the signer’s private key can be used to sign and generate a key agreement certificate. Also, the keytool needs to be able to display the appropriate key size of an XDH key, instead of XDH key of unknown size.

      Attachments

        Issue Links

          csr for

          CSR - null JDK-8264325 Provide the support for specifying a signer in keytool -genkeypair

          • P4 - Minor loss of function, or other problem where easy workaround is present.
          • Closed
          links to

          Commit Commit openjdk/jdk/719f95e5

          Review Review openjdk/jdk/3281

          There are no Sub-Tasks for this issue.

          Activity

            People

              hchao Haimay Chao
              weijun Weijun Wang
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: