Maintenance Notice

The bugs.java.com site will be undergoing maintenance on 15th Dec 2017 21:00 PST to 16th Dec 2017 1:00 AM PST.
JDK-7054637 : Enable PKCS11 to use raw encoding for the EC point in an Elliptic Curve public key
  • Type: Bug
  • Component: security-libs
  • Sub-Component: java.security
  • Affected Version: 7
  • Priority: P3
  • Status: Closed
  • Resolution: Fixed
  • OS: solaris
  • CPU: x86
  • Submitted: 2011-06-14
  • Updated: 2012-10-03
  • Resolved: 2011-10-06
The Version table provides details related to the release that this issue/RFE will be addressed.

Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availabitlity Release.

To download the current JDK release, click here.
JDK 7 JDK 8
7u2 b08Fixed 8Resolved
Related Reports
Relates :  
Description
see comments

Comments
EVALUATION Some older PKCS11 tokens support only the raw encoding for an EC poing in an Elliptic Curve public key. By default, the DER-encoding is used. Should introduce a PKCS11 config attribute to enable the raw encoding to be used as necessary.
2011-09-15

WORK AROUND This problem affects only ECC-key certs that are passed to the SunPKCS11 provider on Solaris 11. The workaround is to use the SunEC provider instead.
2011-06-20