mirrors/JetBrainsRuntime
1
0
Fork 0
mirror of https://github.com/JetBrains/JetBrainsRuntime.git synced 2025-12-06 09:29:38 +01:00
Code Issues Packages Projects Releases Wiki Activity

8325254: CKA_TOKEN private and secret keys are not necessarily sensitive

Browse Source 
Backport-of: 0f5f3c9b97
This commit is contained in:
Martin Balao
2024-02-23 07:43:47 +00:00
committed by Vitaly Provodin
parent d24c6f2a88
commit 6fe25eff11
1 changed files with 3 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/P11Key.java
View File

@@ -401,8 +401,9 @@ abstract class P11Key implements Key, Length {
new CK_ATTRIBUTE(CKA_EXTRACTABLE),
});
boolean keySensitive = (attrs[0].getBoolean() ||
attrs[1].getBoolean() || !attrs[2].getBoolean());
boolean keySensitive =
(attrs[0].getBoolean() && P11Util.isNSS(session.token)) ||
attrs[1].getBoolean() || !attrs[2].getBoolean();
return switch (algorithm) {
case "RSA" -> P11RSAPrivateKeyInternal.of(session, keyID, algorithm,