JDK-8210165 : supported_groups affects signatures in TLS 1.3
  • Type: Bug
  • Component: security-libs
  • Sub-Component: javax.net.ssl
  • Affected Version: 11
  • Priority: P3
  • Status: Closed
  • Resolution: Duplicate
  • Submitted: 2018-08-29
  • Updated: 2019-06-15
  • Resolved: 2019-06-15
The Version table provides details related to the release that this issue/RFE will be addressed.

Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.

To download the current JDK release, click here.
Other
tbdResolved
Related Reports
Duplicate :  
JDK-8225766 - Curve in certificate should not affect signature scheme when using TLSv1.3
Description
The TLS 1.3 implementation in SunJSSE incorrectly uses the supported_groups extension to constrain the elliptic curves used in ECDSA. This behavior was correct in TLS 1.2 (when the extension was called elliptic_curves), but groups used in signatures should be independent from supported_groups when TLS 1.3 is negotiated. 

The constraints on signatures happens whether the supported_groups extension is received, or the supported groups are configured using the jdk.tls.namedGroups system property. To test, run a server with a single ECDSA certificate, and set jdk.tls.namedGroups (in either the client or server) so that the curve in the certificate is not included. The connection will fail with "No available authentication scheme."