RFR: 8210989 TLSv1.2 not authenticating using PSS certificates
Jamil Nimeh
jamil.j.nimeh at oracle.com
Sun Oct 7 16:33:49 UTC 2018
Hello all, this fixes an issue where for TLSv1.2 connections
specifically, clients will not authenticate using PSS certs even when
PSS signature algorithms are asserted in the CertificateRequest
message. This brings in a method for client certificate selection
similar to how we do it for TLS 1.3. TLS 1.3, 1.1 and 1.0 client
certificate selection is not affected by this fix.
JBS: https://bugs.openjdk.java.net/browse/JDK-8210989
Webrev: http://cr.openjdk.java.net/~jnimeh/reviews/8210989/webrev.01/
--Jamil
More information about the security-dev
mailing list