RFR: 8271199: Mutual TLS handshake fails signing client certificate with custom sensitive PKCS11 key [v2]
Alexey Bakhtin
abakhtin at openjdk.java.net
Thu Oct 21 12:59:35 UTC 2021
> Hello,
>
> Could you please review the small patch for the issue described in JDK-8271199: Mutual TLS handshake fails signing client certificate with custom sensitive PKCS11 key
>
> I suggest updating the RSAPSSSignature.isValid() method to verify if provided key components can be applied to SunRSASign implementation.
> If not applied, implementation can try to select signer from other providers
>
> Regards
> Alexey
Alexey Bakhtin has updated the pull request incrementally with one additional commit since the last revision:
Refactoring isValid() for private and public keys
-------------
Changes:
- all: https://git.openjdk.java.net/jdk/pull/4887/files
- new: https://git.openjdk.java.net/jdk/pull/4887/files/d2b371d5..b336e36e
Webrevs:
- full: https://webrevs.openjdk.java.net/?repo=jdk&pr=4887&range=01
- incr: https://webrevs.openjdk.java.net/?repo=jdk&pr=4887&range=00-01
Stats: 105 lines in 2 files changed: 68 ins; 32 del; 5 mod
Patch: https://git.openjdk.java.net/jdk/pull/4887.diff
Fetch: git fetch https://git.openjdk.java.net/jdk pull/4887/head:pull/4887
PR: https://git.openjdk.java.net/jdk/pull/4887
More information about the security-dev
mailing list