Open Bug 1304301 Opened 8 years ago Updated 2 years ago

PK11_ImportPublicKey will import ECDH keys that aren't supported

Categories

(NSS :: Libraries, defect, P3)

Tracking

(Not tracked)

People

(Reporter: mt, Unassigned)

References

(Blocks 1 open bug)

Details

With only softoken installed, a sect283r1 public key can be successfully installed, even when softoken doesn't actually support that curve.  The same is true for a couple of other curves too.
Blocks: 1399364
Priority: -- → P3

Is this bug confirmed?. I think that I've just stumbled upon it when importing a SSL client certificate with a sect283r1 key where the import operation didn't produce any warning but the client authentication itself failed without a clear error indication, just the client closing the connection abruptly.

Severity: normal → S3
You need to log in before you can comment on or make changes to this bug.