Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Fixed
Priority: P2
Fix Version/s: 15
Affects Version/s: 15
Component/s: security-libs
Labels:
- autoverify
- noreg-hard

Subcomponent:
javax.net.ssl
Introduced In Version:

15
Resolved In Build:
b27
Verification:
Not verified

Description

In the SunJSSE provider, if the Signature is available in crypto for a certain signature algorithm, the algorithm will be requested in the signature_algorithms extension. With the integration of ed25519 and ed448, the signature algorithm are now available in crypto, and thus is activated in JSSE. Ed25519 and Ed448 are present in handshake messages, which is not the expected behavior before ~~JDK-8166596~~ get addressed.

    "signature_algorithms (13)": {
      "signature schemes": [ed25519, ed448, ecdsa_secp256r1_sha256, ecdsa_secp38
4r1_sha384, ecdsa_secp521r1_sha512, rsa_pss_rsae_sha256, rsa_pss_rsae_sha384, rs
a_pss_rsae_sha512, rsa_pss_pss_sha256, rsa_pss_pss_sha384, rsa_pss_pss_sha512, r
sa_pkcs1_sha256, rsa_pkcs1_sha384, rsa_pkcs1_sha512, dsa_sha256, ecdsa_sha1, rsa
_pkcs1_sha1, dsa_sha1]
    },
    "signature_algorithms_cert (50)": {
      "signature schemes": [ed25519, ed448, ecdsa_secp256r1_sha256, ecdsa_secp38
4r1_sha384, ecdsa_secp521r1_sha512, rsa_pss_rsae_sha256, rsa_pss_rsae_sha384, rs
a_pss_rsae_sha512, rsa_pss_pss_sha256, rsa_pss_pss_sha384, rsa_pss_pss_sha512, r
sa_pkcs1_sha256, rsa_pkcs1_sha384, rsa_pkcs1_sha512, dsa_sha256, ecdsa_sha1, rsa
_pkcs1_sha1, dsa_sha1]

Attachments

Issue Links

relates to

JDK-8166596 TLS support for the EdDSA signature algorithm

Resolved

JDK-8199231 JEP 339: Edwards-Curve Digital Signature Algorithm (EdDSA)

Closed

Activity

People

Assignee:: Anthony Scarpino

Reporter:: Xuelei Fan

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 2020-05-24 12:10

Updated:: 2020-06-18 01:08

Resolved:: 2020-06-09 18:30