JDK-7054637 : Enable PKCS11 to use raw encoding for the EC point in an Elliptic Curve public key
  • Type: Bug
  • Component: security-libs
  • Sub-Component: java.security
  • Affected Version: 7
  • Priority: P3
  • Status: Closed
  • Resolution: Fixed
  • OS: solaris
  • CPU: x86
  • Submitted: 2011-06-14
  • Updated: 2012-10-03
  • Resolved: 2011-10-06
The Version table provides details related to the release that this issue/RFE will be addressed.

Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.

To download the current JDK release, click here.
JDK 7 JDK 8
7u2 b08Fixed 8Resolved
Related Reports
Relates :  
JDK-7099228 - Use a PKCS11 config attribute to control encoding of an EC point
Description
see comments
Comments
EVALUATION Some older PKCS11 tokens support only the raw encoding for an EC poing in an Elliptic Curve public key. By default, the DER-encoding is used. Should introduce a PKCS11 config attribute to enable the raw encoding to be used as necessary.
15-09-2011
WORK AROUND This problem affects only ECC-key certs that are passed to the SunPKCS11 provider on Solaris 11. The workaround is to use the SunEC provider instead.
20-06-2011