RFR: 8350134: Support DHKEM with PKCS11 [v3]
Weijun Wang
weijun at openjdk.org
Fri Apr 4 19:56:04 UTC 2025
> This code change adds supports for getting public key from an EC private key and slicing a secret key in PKCS #11. These are necessary to support DHKEM for keys in SunPKCS11. The first support is still not complete and there is no way to get the public key if the private key is unwrapped from an encrypted form. PKCS #11 3.0 defined CKA_PUBLIC_KEY_INFO but I haven't yet found a library supporting it.
Weijun Wang has updated the pull request incrementally with one additional commit since the last revision:
revert auth support
-------------
Changes:
- all: https://git.openjdk.org/jdk/pull/23651/files
- new: https://git.openjdk.org/jdk/pull/23651/files/7fd44849..e8c2f8a7
Webrevs:
- full: https://webrevs.openjdk.org/?repo=jdk&pr=23651&range=02
- incr: https://webrevs.openjdk.org/?repo=jdk&pr=23651&range=01-02
Stats: 61 lines in 1 file changed: 2 ins; 46 del; 13 mod
Patch: https://git.openjdk.org/jdk/pull/23651.diff
Fetch: git fetch https://git.openjdk.org/jdk.git pull/23651/head:pull/23651
PR: https://git.openjdk.org/jdk/pull/23651
More information about the security-dev
mailing list