Sean Mullan
7474815db8
Merge
2013-08-02 08:37:25 -04:00
Sean Mullan
0844d3e77b
8001319: Add SecurityPermission "insertProvider" target name
...
Reviewed-by: vinnie
2013-08-02 08:30:46 -04:00
Sean Mullan
5c30826657
Merge
2013-07-25 11:09:28 -04:00
Sean Mullan
74a0cc9f37
8010748: Add PKIXRevocationChecker NO_FALLBACK option and improve SOFT_FAIL option
...
Reviewed-by: vinnie
2013-07-25 10:58:00 -04:00
Vinnie Ryan
3300eed0bb
8019627: RuntimeException gets obscured during OCSP cert revocation checking
...
Reviewed-by: mullan
2013-07-12 20:44:34 +01:00
Vinnie Ryan
53ecefacac
8019259: Failover to CRL checking does not happen if wrong OCSP responder URL is set
...
Reviewed-by: xuelei
2013-07-01 14:39:47 +01:00
Weijun Wang
af996219c7
8001326: Improve Kerberos caching
...
Reviewed-by: valeriep
2013-06-21 18:26:13 +08:00
Deven You
c778d84388
8014620: Signature.getAlgorithm return null in special case
...
Reviewed-by: wetmore
2013-06-17 17:36:20 -07:00
Jeff Nisewanger
c0c2397857
8014097: add doPrivileged methods with limited privilege scope
...
Reviewed-by: mchung
2013-06-04 15:33:42 -07:00
David Holmes
390cc1d7a1
Merge
2013-02-17 16:44:19 -05:00
Vinnie Ryan
3d55cc1e02
8007934: algorithm parameters for PBE Scheme 2 not decoded correctly in PKCS12 keystore
...
Reviewed-by: mullan
2013-02-13 16:01:26 +00:00
David Holmes
eb1726c151
Merge
2013-02-04 18:08:50 -05:00
Vinnie Ryan
ddbfa5fe53
8006994: Cleanup PKCS12 tests to ensure streams get closed
...
Reviewed-by: mullan
2013-02-04 17:20:26 +00:00
Vinnie Ryan
3727e751f6
8006855: PKCS12 test failures due to unsupported algorithm
...
Reviewed-by: mullan
2013-01-24 16:44:15 +00:00
Vinnie Ryan
7dcd0b38a8
8006591: Protect keystore entries using stronger PBE algorithms
...
Reviewed-by: mullan
2013-01-23 21:25:49 +00:00
Alan Bateman
a23a1a942b
8004502: Compact Profiles contents
...
Reviewed-by: dholmes, mchung
2013-01-21 23:35:36 -05:00
Alan Bateman
c12b624078
8005978: shell tests need to use the $COMPILEJDK for javac, jar and other tools
...
Reviewed-by: chegar
2013-01-11 20:19:55 +00:00
Sean Mullan
86b40c8697
Merge
2013-01-09 08:59:58 -05:00
Sean Mullan
d01edb0815
Merge
2013-01-08 19:02:55 -05:00
Sean Mullan
b492dc9bac
7019834: Eliminate dependency from PolicyFile to com.sun.security.auth.PrincipalComparator
...
Add new java.security.Principal.implies method
Reviewed-by: alanb
2013-01-08 19:00:12 -05:00
Lana Steuck
b7af263526
Merge
2012-12-28 18:36:41 -08:00
Xue-Lei Andrew Fan
6d41a58c82
7109274: Restrict the use of certificates with RSA keys less than 1024 bits
...
This restriction is applied via the Java Security property, "jdk.certpath.disabledAlgorithms". This will impact providers that adhere to this security property.
Reviewed-by: mullan
2012-12-28 00:48:12 -08:00
David Katleman
306cab1006
8004982: JDK8 source with GPL header errors
...
Reviewed-by: ohair
2012-12-20 16:24:50 -08:00
Mark Sheppard
c9063f559f
8003890: corelibs test scripts should pass TESTVMOPTS
...
Reviewed-by: chegar, alanb
2012-12-13 14:47:35 +00:00
Sean Mullan
3f59d3882d
Merge
2012-11-26 08:23:20 -05:00
Sean Mullan
c9b91fa45a
7167056: Clarify that BasicPermission names that contain non-wildcard asterisks are not invalid
...
Reviewed-by: weijun, xuelei
2012-11-26 08:12:19 -05:00
Sean Mullan
4e6425e134
Merge
2012-11-05 12:08:04 -05:00
Sean Mullan
5b23307a8f
7171570: JEP 124 Potential API Changes
...
Reviewed-by: vinnie, xuelei
2012-11-05 10:30:49 -05:00
Alan Bateman
430592a30e
7197491: update copyright year to match last edit in jdk8 jdk repository
...
Reviewed-by: chegar, ksrini
2012-11-02 15:50:11 +00:00
Sean Mullan
6ad27831e0
7176326: CertPath/CertPathBuilderTest failures after webrev 6854712_6637288_7126011
...
Reviewed-by: xuelei
2012-06-15 08:43:31 -04:00
Jonathan Lu
775655b44a
7172149: ArrayIndexOutOfBoundsException from Signature.verify
...
Take care of integer addition overflow
Reviewed-by: xuelei, wetmore
2012-06-06 18:39:09 -07:00
Sean Mullan
63e39d6ee7
Merge
2012-05-31 17:07:28 -04:00
Sean Mullan
14c586557e
6854712: Revocation checking enhancements (JEP-124)
...
6637288: Add OCSP support to PKIX CertPathBuilder implementation
7126011: ReverseBuilder.getMatchingCACerts may throws NPE
Reviewed-by: xuelei
2012-05-30 17:19:46 -04:00
Sean Mullan
ac620e811d
7152564: Improve CodeSource.matchLocation(CodeSource) performance
...
7155693: CodeSource.matchLocation getPort test can be improved
Reviewed-by: chegar
2012-04-13 09:46:25 -04:00
Alan Bateman
3269d85838
7113349: Initial changeset for Macosx port to jdk
...
Co-authored-by: Alexander Potochkin <alexander.potochkin@oracle.com>
Co-authored-by: Alexander Zuev <alexander.zuev@oracle.com>
Co-authored-by: Andrew Brygin <andrew.brygin@oracle.com>
Co-authored-by: Artem Ananiev <artem.ananiev@oracle.com>
Co-authored-by: Alex Strange <astrange@apple.com>
Co-authored-by: Bino George <bino@apple.com>
Co-authored-by: Christine Lu <christine.lu@oracle.com>
Co-authored-by: David Katleman <david.katleman@oracle.com>
Co-authored-by: David Durrence <david_durrence@apple.com>
Co-authored-by: Dmitry Cherepanov <dmitry.cherepanov@oracle.com>
Co-authored-by: Greg Lewis <glewis@eyesbeyond.com>
Co-authored-by: Kevin Miller <kevin_m_miller@apple.com>
Co-authored-by: Kurt Miller <kurt@intricatesoftware.com>
Co-authored-by: Landon Fuller <landonf@plausiblelabs.com>
Co-authored-by: Leonid Romanov <leonid.romanov@oracle.com>
Co-authored-by: Loefty Walkowiak <loefty@apple.com>
Co-authored-by: Mark Reinhold <mark.reinhold@oracle.com>
Co-authored-by: Naoto Sato <naoto.sato@oracle.com>
Co-authored-by: Philip Race <philip.race@oracle.com>
Co-authored-by: Roger Hoover <rhoover@apple.com>
Co-authored-by: Scott Kovatch <scott.kovatch@oracle.com>
Co-authored-by: Sergey ByloKhov <sergey.bylokhov@oracle.com>
Co-authored-by: Mike Swingler <swingler@apple.com>
Co-authored-by: Tomas Hurka <tomas.hurka@oracle.com>
Reviewed-by: jjh, alanb, dholmes, anthony, ohrstrom, ksrini, jrose, weijun, smarks
2012-03-06 20:34:38 +00:00
Valerie Peng
eafb7ad68c
7088989: Improve the performance for T4 by utilizing the newly provided crypto APIs
...
Added the OracleUcrypto provider for utilizing the Solaris ucrypto API.
Reviewed-by: weijun
2012-01-12 16:04:03 -08:00
Weijun Wang
b0fb95c8d3
7081411: DSA keypair generation affected by Solaris bug
...
Reviewed-by: xuelei, mullan, alanb
2011-09-05 18:17:55 +08:00
Weijun Wang
610c9dd4e3
7055363: jdk_security3 test target cleanup
...
Reviewed-by: alanb, xuelei
2011-08-12 12:26:31 +08:00
Lana Steuck
69ce407621
Merge
2011-06-22 23:23:58 -07:00
Weijun Wang
700f4e1951
7054918: jdk_security1 test target cleanup
...
Reviewed-by: alanb, smarks, vinnie
2011-06-20 19:17:47 +08:00
Weijun Wang
8bdce645f3
7054428: test/java/security/SecureClassLoader/DefineClassByteBuffer.java error
...
Reviewed-by: alanb
2011-06-20 17:38:15 +08:00
Bradford Wetmore
33be52be86
7052537: java/security/Security/NotInstalledProviders.java is causing -samevm tests to fail
...
Reviewed-by: valeriep, asaha, alanb
2011-06-09 14:24:09 -07:00
Lana Steuck
4ce35dcaa5
Merge
2011-06-06 19:04:30 -07:00
Sean Mullan
998c791227
7050329: test/java/security/Policy/GetPermissions/JarURL.java fails on Windows
...
Reviewed-by: alanb
2011-06-04 06:45:17 -07:00
Abhijit Saha
cfdb3ec24b
Merge
2011-05-26 21:37:40 -07:00
Deepak Bhole
b49a7d2768
7044443: Permissions resolved incorrectly for jar protocol (Patch from bugs.openjdk.java.net)
...
Reviewed-by: alanb, chegar
2011-05-24 14:15:14 -07:00
Vinnie Ryan
87259cf6b3
6738532: Error in Elliptic Curve NamedCurve determination. (related to PKCS11)
...
Reviewed-by: valeriep
2011-05-04 20:38:45 +01:00
Abhijit Saha
68c514a747
Merge
2011-04-20 09:31:11 -07:00
Kelly O'Hair
d2b1e20c7d
7033660: Update copyright year to 2011 on any files changed in 2011
...
Reviewed-by: dholmes
2011-04-06 22:06:11 -07:00
Weijun Wang
314c75c742
7020531: test: java/security/cert/CertificateFactory/openssl/OpenSSLCert.java file not closed after run
...
Reviewed-by: alanb, smarks
2011-03-01 16:22:22 +08:00
Weijun Wang
e8b79573d2
6618658: Deserialization allows creation of mutable SignedObject
...
Reviewed-by: hawtin, mullan
2011-02-09 11:50:29 +08:00
Kelly O'Hair
6b6a611c8e
6962318: Update copyright year
...
Reviewed-by: xdono
2010-12-28 15:53:50 -08:00
Vinnie Ryan
26382e27dd
6799854: CodeSigner.hashCode() does not work with serialization
...
Reviewed-by: mullan
2010-12-13 14:58:52 +00:00
Valerie Peng
b3d5652149
6203816: Can not run test/java/security/Security/ClassLoaderDeadlock.sh from the command line
...
Fixed the script to not delete the provider sub-directory
Reviewed-by: weijun
2010-11-19 16:59:48 -08:00
Sean Mullan
8676006f11
6994717: expired certificate in test ValidateCertPath
...
Reviewed-by: vinnie
2010-11-08 11:33:24 -05:00
Kelly O'Hair
f7e31fc6c2
6982137: Rebranding pass 2 - missed copyright changes
...
Reviewed-by: mbykov
2010-09-09 16:26:46 -07:00
Lana Steuck
fd45b4188c
Merge
2010-05-28 12:10:14 -07:00
Kelly O'Hair
fe008ae27a
6943119: Rebrand source copyright notices
...
Reviewed-by: darcy, weijun
2010-05-25 15:58:33 -07:00
Weijun Wang
37ae69dba3
6948781: CertificateFactory.generateCertificate doesn't throw CertificateException for malformed certificate
...
Reviewed-by: mullan
2010-05-24 09:37:16 +08:00
Weijun Wang
512e4f93a3
6813340: X509Factory should not depend on is.available()==0
...
Reviewed-by: xuelei
2010-03-25 12:07:42 +08:00
Vinnie Ryan
0f70e6a821
6921001: api/java_security/IdentityScope/IdentityScopeTests.html#getSystemScope fails starting from b78 JDK7
...
Reviewed-by: mullan
2010-03-01 17:54:31 +00:00
Pavel Tisnovsky
f57059f5b4
6917663: test/java/security/Provider/Turkish.java not samevm friendly
...
Added othervm flag to ensure that this test will run in isolation.
Reviewed-by: alanb
2010-01-18 17:53:26 +01:00
Joe Darcy
c40412f4f4
6907177: Update jdk tests to remove unncessary -source and -target options
...
Reviewed-by: ohair
2009-12-03 18:19:10 -08:00
Bradford Wetmore
fc188b8b29
6867657: Many JSN tests do not run under cygwin
...
Reviewed-by: ohair
2009-08-06 17:56:59 -07:00
Tim Bell
a2d17d381e
Merge
2009-07-13 23:58:49 -07:00
Xue-Lei Andrew Fan
5ba2fd7d33
6852744: PIT b61: PKI test suite fails because self signed certificates are beingrejected
...
Make the builder aware of SKID/AKID, break the internal circular dependences
Reviewed-by: mullan
2009-07-10 17:27:13 +08:00
Andy Herrick
974a4682e4
Merge
2009-06-29 12:06:42 -04:00
Andy Herrick
e487e25584
6797688: Umbrella: Merge all JDK 6u4 - 6u12 deployment code into JDK7
...
6845973: Update JDK7 with deployment changes in 6u13, 6u14
4802695: Support 64-bit Java Plug-in and Java webstart on Windows/Linux on AMD64
6825019: DownloadManager should not be loaded and referenced for full JRE
6738770: REGRESSION:JSException throws when use LiveConnect javascript facility
6772884: plugin2 : java.lang.OutOfMemoryError or crash
6707535: Crossing domain hole affecting multiple sites/domains using plug-in
6728071: Non-verification of Update files may allow unintended updates
6704154: Code loaded from local filesystem should not get access to localhost
6727081: Web Start security restrictions bypass using special extension jnlp
6727079: Java Web Start Socket() restriction bypass
6727071: Cache location/user name information disclosure in SingleInstanceImpl
6716217: AppletClassLoader adds permissions based on codebase regardless of CS
6694892: Java Webstart inclusion via system properties override [CVE-2008-2086]
6704074: localhost socket access due to cache location exposed
6703909: Java webstart arbitrary file creation using nativelib
6665315: browser crashes when deployment.properties has more slashes ( / )
6660121: Encoding values in JNLP files can cause buffer overflow
6606110: URLConnection.setProxiedHost for resources that are loaded via proxy
6581221: SSV(VISTA): Redirection FAILS to work if user does a downgrade install
6609756: Buffer Overflow in Java ActiveX component
6608712: Bypassing the same origin policy in Java with crafted names
6534630: "gnumake clobber" doesn't
6849953: JDK7 - replacement of bufferoverflowU.lib on amd64 breaks build
6849029: Need some JDK7 merge clean-up after comments on the webrev
6847582: Build problem on JDK7 with isSecureProperty in merge
6827935: JDK 7 deployment merging - problem in Compiler-msvm.gmk
6823215: latest merge fixes from 6u12 -> JDK7
6816153: further mergers for JDK7 deployment integration
6807074: Fix Java Kernel and JQS in initial JDK7 builds
Initial changeset for implementing 6uX Deployment Features into JDK7
Reviewed-by: dgu, billyh
2009-06-12 14:56:32 -04:00
Xue-Lei Andrew Fan
06370a8f01
6845286: Add regression test for name constraints
...
Create regression test cases on name constraints
Reviewed-by: weijun
2009-05-27 17:48:22 +08:00
Xue-Lei Andrew Fan
93614a3c7d
6720721: CRL check with circular depency support needed
...
Checking AKID of certificates and CRLs
Reviewed-by: mullan, weijun
2009-05-26 16:43:22 +08:00
Kelly O'Hair
2756e99316
6835241: Annotate some tests with @ignore that have shown to be unpredictable
...
Reviewed-by: tbell
2009-04-28 14:43:44 -07:00
Valerie Peng
bca01e0826
6829098: Regression test java/security/Security/ClassLoaderDeadlock/Deadlock2.java error - missing ";"
...
Added back the missing ";"
Reviewed-by: weijun
2009-04-13 18:20:51 -07:00
Valerie Peng
a2a7ded4d4
6440846: (cl) Deadlock between AppClassLoader and ExtClassLoader
...
Fixed a deadlock between the two class loaders
Reviewed-by: alanb
2009-04-06 18:52:03 -07:00
Xue-Lei Andrew Fan
6a44e920f6
6383095: CRL revoked certificate failures masked by OCSP failures
...
Remove the mask if certificate revoked
Reviewed-by: mullan
2009-03-17 11:54:13 +08:00
Xue-Lei Andrew Fan
ff67e1ba9a
6549506: Specification of Permission.toString() method contradicts with JDK implementation
...
Update the spec, and add double quotes around component.
Reviewed-by: weijun
2009-03-02 23:17:53 +08:00
Weijun Wang
7465090acf
6535697: keytool can be more flexible on format of PEM-encoded X.509 certificates
...
Reviewed-by: vinnie
2009-02-23 10:03:36 +08:00
Sean Mullan
cb4eb96188
6765046: CertPathValidatorException(Throwable).getMessage() always returns null since b37
...
Reviewed-by: vinnie
2008-11-06 12:12:39 -05:00
Sean Mullan
545b7e4f62
6465942: Add problem identification facility to the CertPathValidator framework
...
Add support to the java.security.cert APIs for determining the reason that a certification path is invalid.
Reviewed-by: vinnie
2008-09-11 14:05:16 -04:00
Sean Mullan
f44f03f9ea
6714842: CertPathBuilder returns incorrect CertPath for BasicConstraints in builderParams
...
Do not consider CA target certificates if selector.getBasicConstraints() == -2
Reviewed-by: vinnie
2008-06-19 14:20:43 -04:00
Sean Mullan
5a0ae8fa6f
6631361: Spec of AccessControlContext constructor is not complete
...
Add NullPointerException to @throws clause and treat empty array and array of nulls as equivalent
Reviewed-by: valeriep
2008-04-14 10:25:05 -04:00
Xue-Lei Andrew Fan
5fc030e9d3
6648816: REGRESSION: setting -Djava.security.debug=failure result in NPE in ACC
...
Unchecking the null pointer of the debug handle
Reviewed-by: mullan, weijun
2008-03-15 13:43:05 -04:00
J. Duke
319a3b9947
Initial load
2007-12-01 00:00:00 +00:00