Open Bug 1304301 Opened 8 years ago Updated 2 years ago

PK11_ImportPublicKey will import ECDH keys that aren't supported

Tracking

(Not tracked)

Status:

NEW

People

(Reporter: mt, Unassigned)

References

(Blocks 1 open bug)

Details

Martin Thomson [:mt:]

Reporter

Description

•

8 years ago

With only softoken installed, a sect283r1 public key can be successfully installed, even when softoken doesn't actually support that curve. The same is true for a couple of other curves too.

Tim Taubert [:ttaubert] (inactive)

Updated

•

7 years ago

Blocks: 1399364

Priority: -- → P3

Jaime Hablutzel

Comment 1

•

5 years ago

Is this bug confirmed?. I think that I've just stumbled upon it when importing a SSL client certificate with a sect283r1 key where the import operation didn't produce any warning but the client authentication itself failed without a clear error indication, just the client closing the connection abruptly.

BMO Automation

Updated

•

2 years ago

Severity: normal → S3

You need to log in before you can comment on or make changes to this bug.

Bugzilla

PK11_ImportPublicKey will import ECDH keys that aren't supported

Categories

(NSS :: Libraries, defect, P3)

Tracking

(Not tracked)

People

(Reporter: mt, Unassigned)

References

(Blocks 1 open bug)

Details

Crash Data

Security

(public)

User Story

Description

Updated

Comment 1

Updated