Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8245618 Disable CKM_TLS_KEY_AND_MAC_DERIVE Mechanism in Solaris PKCS11 Configuration File
  3. JDK-8343841

Release Note: Disable CKM_TLS_KEY_AND_MAC_DERIVE Mechanism in Solaris PKCS11 Configuration File

XMLWordPrintable

      On Solaris, the `CKM_TLS_KEY_AND_MAC_DERIVE` mechanism offered by the SunPKCS11-Solaris provider and specific to TLSv1.0, can derive incorrect key data causing TLSv1.0 communication failure. That mechanism has been disabled via the `$JAVA_HOME/jre/lib/security/sunpkcs11-solaris.cfg` configuration file.
      The JCE provider now manages these cryptographic requests.

            pkumaraswamy Prajwal Kumaraswamy
            pkumaraswamy Prajwal Kumaraswamy
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Created:
              Updated:
              Resolved: