Arithmetic error in SunEC
Adam Petcher
adam.petcher at oracle.com
Tue Oct 17 20:24:58 UTC 2017
On 10/17/2017 4:55 AM, Tobias Wagner wrote:
> Hi,
>
> we found an error in the GF(p)-arithmetics of SunEC, while adding
> support for brainpool-curves in ECDHE for TLS connections as
> suggested in RFC 7027.
<snip>
Thanks! I created JDK-8189594[1] to track this issue. My understanding
is that this error doesn't cause any bugs in the existing JDK code, but
it may cause bugs if we add new curves that use this optimization. If I
am wrong about this, please let me know.
[1] https://bugs.openjdk.java.net/browse/JDK-8189594
>
> Regards
> Tobias
>
More information about the security-dev
mailing list