RFR: JDK-8166596: TLS support for the EdDSA signature algorithm [v3]
Jamil Nimeh
jnimeh at openjdk.java.net
Wed Dec 2 15:35:58 UTC 2020
On Fri, 20 Nov 2020 20:05:09 GMT, Weijun Wang <weijun at openjdk.org> wrote:
>> src/java.base/share/classes/sun/security/ssl/JsseJce.java line 97:
>>
>>> 95: */
>>> 96: static final String SIGNATURE_EDDSA = "EdDSA";
>>> 97:
>>
>> Please update the copyright year.
>>
>> Is it possible that "ed25519" or "ed448" is used as the signature algorithm, especially in the X.509 certificate implementation?
>
> SunEC's algorithm name for keys are always "EdDSA", but I know BC returns "Ed25519" or "Ed448".
Filed and took ownership of JDK-8257607 to address BC JCE provider issues for both XDH and EdDSA when used with SunJSSE.
-------------
PR: https://git.openjdk.java.net/jdk/pull/1197
More information about the security-dev
mailing list