Our implementation of X25519 does not zero the MSB of the `u` coordinate as required by RFC 7748. Currently the test `jdk/sun/security/ec/xec/TestXDH.java` zeroes the bit manually while parsing test vectors, which is likely why this went uncaught.
Ben Perez has updated the pull request incrementally with one additional commit since the last revision: removed @build statement ------------- Changes: - all: https://git.openjdk.org/jdk/pull/29750/files - new: https://git.openjdk.org/jdk/pull/29750/files/e00bd0fe..028e5ba0 Webrevs: - full: https://webrevs.openjdk.org/?repo=jdk&pr=29750&range=04 - incr: https://webrevs.openjdk.org/?repo=jdk&pr=29750&range=03-04 Stats: 1 line in 1 file changed: 0 ins; 1 del; 0 mod Patch: https://git.openjdk.org/jdk/pull/29750.diff Fetch: git fetch https://git.openjdk.org/jdk.git pull/29750/head:pull/29750 PR: https://git.openjdk.org/jdk/pull/29750