> Additional Tests for KEM API.
Sibabrata Sahoo has updated the pull request incrementally with one additional
commit since the last revision:
Comment added
-
Changes:
- all: https://git.openjdk.org/jdk/pull/14113/files
- new: https://git.openjdk.org/jdk/pull/14113/files/f70d
On Fri, 2 Jun 2023 00:57:49 GMT, Andrew John Hughes wrote:
> Currently, security properties are held within the `java.security` file in
> the JDK tree for each installed JDK. The system property
> `java.security.properties` can be used to point to a file containing
> additional properties. The
On Thu, 1 Jun 2023 23:47:46 GMT, Francisco Ferrari Bihurriet
wrote:
>> src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/P11PBECipher.java
>> line 221:
>>
>>> 219: // for the underlying cipher is equal to the PBE service key
>>> length.
>>> 220: // Otherwise, initializ
Currently, security properties are held within the `java.security` file in the
JDK tree for each installed JDK. The system property `java.security.properties`
can be used to point to a file containing additional properties. These can be
appended to the existing set or override all existing prope
On Thu, 1 Jun 2023 21:04:32 GMT, Valerie Peng wrote:
>> Martin Balao has updated the pull request incrementally with one additional
>> commit since the last revision:
>>
>> 8301553: Support Password-Based Cryptography in SunPKCS11 (iteration #4)
>>
>> Co-authored-by: Francisco Ferrari
>
On Thu, 1 Jun 2023 21:04:32 GMT, Valerie Peng wrote:
> For example: For SecretKeyFactory.PBEWithHmacSHA1AndAES_128, use
> `CKM_PKCS5_PBKD2 (required CKM_SHA_1_HMAC)` instead of `CKM_PKCS5_PBKD2 and
> CKM_SHA_1_HMAC`.
Ah, ok, now I see. Unfortunately I don't yet have a JBS user, but I'll send t
On Tue, 30 May 2023 23:42:24 GMT, Valerie Peng wrote:
>> Martin Balao has updated the pull request incrementally with one additional
>> commit since the last revision:
>>
>> 8301553: Support Password-Based Cryptography in SunPKCS11 (iteration #4)
>>
>> Co-authored-by: Francisco Ferrari
On Thu, 1 Jun 2023 22:06:04 GMT, Francisco Ferrari Bihurriet
wrote:
>> src/java.base/share/classes/sun/security/util/PBEUtil.java line 105:
>>
>>> 103: "needed for decryption");
>>> 104: }
>>> 105: }
>>
>> Isn't there also def
On Tue, 30 May 2023 22:03:44 GMT, Valerie Peng wrote:
>> Martin Balao has updated the pull request incrementally with one additional
>> commit since the last revision:
>>
>> 8301553: Support Password-Based Cryptography in SunPKCS11 (iteration #4)
>>
>> Co-authored-by: Francisco Ferrari
> The new approach uses test URLs directly to verify interoperability with CA
> infrastructure. This would help us avoid having regular test fixes to update
> test artifacts as long as CAs keep test domains up to date.
Rajan Halade has updated the pull request incrementally with one additional
On Sat, 27 May 2023 06:24:36 GMT, Martin Balao wrote:
>> We would like to propose an implementation for the [JDK-8301553: Support
>> Password-Based Cryptography in
>> SunPKCS11](https://bugs.openjdk.org/browse/JDK-8301553) enhancement
>> requirement.
>>
>> In addition to pursuing the requirem
On Thu, 1 Jun 2023 20:25:16 GMT, Sean Mullan wrote:
>> Rajan Halade has updated the pull request incrementally with one additional
>> commit since the last revision:
>>
>> 8308592: Framework for CA interoperability testing
>
> test/jdk/security/infra/java/security/cert/CertPathValidator/certi
> The new approach uses test URLs directly to verify interoperability with CA
> infrastructure. This would help us avoid having regular test fixes to update
> test artifacts as long as CAs keep test domains up to date.
Rajan Halade has updated the pull request incrementally with one additional
On Thu, 1 Jun 2023 20:15:10 GMT, Sean Mullan wrote:
>> Rajan Halade has updated the pull request incrementally with one additional
>> commit since the last revision:
>>
>> 8308592: remove unused imports
>
> test/jdk/security/infra/java/security/cert/CertPathValidator/certification/ValidatePat
On Wed, 31 May 2023 22:46:53 GMT, Rajan Halade wrote:
>> The new approach uses test URLs directly to verify interoperability with CA
>> infrastructure. This would help us avoid having regular test fixes to update
>> test artifacts as long as CAs keep test domains up to date.
>
> Rajan Halade ha
On Thu, 1 Jun 2023 20:09:39 GMT, Rajan Halade wrote:
>> The new approach uses test URLs directly to verify interoperability with CA
>> infrastructure. This would help us avoid having regular test fixes to update
>> test artifacts as long as CAs keep test domains up to date.
>
> Rajan Halade has
> The new approach uses test URLs directly to verify interoperability with CA
> infrastructure. This would help us avoid having regular test fixes to update
> test artifacts as long as CAs keep test domains up to date.
Rajan Halade has updated the pull request incrementally with one additional
> The new approach uses test URLs directly to verify interoperability with CA
> infrastructure. This would help us avoid having regular test fixes to update
> test artifacts as long as CAs keep test domains up to date.
Rajan Halade has updated the pull request incrementally with one additional
On Wed, 31 May 2023 22:46:53 GMT, Rajan Halade wrote:
>> The new approach uses test URLs directly to verify interoperability with CA
>> infrastructure. This would help us avoid having regular test fixes to update
>> test artifacts as long as CAs keep test domains up to date.
>
> Rajan Halade ha
On Fri, 26 May 2023 21:09:35 GMT, Mat Carter wrote:
> Added ability to load keystores from SST files on Windows. Example usage:
>
> KeyStore keyStore = KeyStore.getInstance("Windows-SST");
> try (FileInputStream fis = new FileInputStream("mykeystore.sst")) {
>keyStore.load(fis, null);
> }
>
On Fri, 26 May 2023 21:09:35 GMT, Mat Carter wrote:
> Added ability to load keystores from SST files on Windows. Example usage:
>
> KeyStore keyStore = KeyStore.getInstance("Windows-SST");
> try (FileInputStream fis = new FileInputStream("mykeystore.sst")) {
>keyStore.load(fis, null);
> }
>
On Fri, 26 May 2023 21:09:35 GMT, Mat Carter wrote:
> Added ability to load keystores from SST files on Windows. Example usage:
>
> KeyStore keyStore = KeyStore.getInstance("Windows-SST");
> try (FileInputStream fis = new FileInputStream("mykeystore.sst")) {
>keyStore.load(fis, null);
> }
>
On Fri, 26 May 2023 21:09:35 GMT, Mat Carter wrote:
> Added ability to load keystores from SST files on Windows. Example usage:
>
> KeyStore keyStore = KeyStore.getInstance("Windows-SST");
> try (FileInputStream fis = new FileInputStream("mykeystore.sst")) {
>keyStore.load(fis, null);
> }
>
On Wed, 31 May 2023 22:46:53 GMT, Rajan Halade wrote:
>> The new approach uses test URLs directly to verify interoperability with CA
>> infrastructure. This would help us avoid having regular test fixes to update
>> test artifacts as long as CAs keep test domains up to date.
>
> Rajan Halade ha
On Fri, 26 May 2023 21:09:35 GMT, Mat Carter wrote:
> Added ability to load keystores from SST files on Windows. Example usage:
>
> KeyStore keyStore = KeyStore.getInstance("Windows-SST");
> try (FileInputStream fis = new FileInputStream("mykeystore.sst")) {
>keyStore.load(fis, null);
> }
>
> This provides a solid speedup of about 3-4x over the Java implementation.
>
> I have a vectorized version of this which uses a bunch of tricks to speed it
> up, but it's complex and can still be improved. We're getting close to ramp
> down, so I'm submitting this simple intrinsic so that we ca
On Thu, 1 Jun 2023 15:00:26 GMT, Andrew Haley wrote:
> This comment and the next one both need correcting. They mention U_0HI and
> U_1HI and, as the previous comment says, those registers are dead.
>
> What actually happens here is best summarized as
>
> // U_2:U_1:U_0 += (U2 >> 2) * 5
>
> or,
On Thu, 1 Jun 2023 15:02:16 GMT, Artem Semenov wrote:
>> src/java.security.jgss/share/native/libj2gss/gssapi.h line 47:
>>
>>> 45:
>>> 46: // Condition was copied from
>>> 47: //
>>> Xcode.app/Contents/Developer/Platforms/MacOSX.platform/Developer/SDKs/MacOSX.sdk/usr/include/gssapi/gssapi.h
>>
On Wed, 31 May 2023 13:52:39 GMT, Weijun Wang wrote:
>> Artem Semenov has updated the pull request incrementally with one additional
>> commit since the last revision:
>>
>> update
>
> src/java.security.jgss/share/native/libj2gss/gssapi.h line 47:
>
>> 45:
>> 46: // Condition was copied fro
> When using the clang compiler to build OpenJDk on Linux, we encounter various
> "warnings as errors".
> They can be fixed with small changes.
Artem Semenov has updated the pull request incrementally with one additional
commit since the last revision:
update
-
Changes:
- all:
On Thu, 1 Jun 2023 12:16:45 GMT, Andrew Dinn wrote:
> This comment and the next one both need correcting. They mention U_0HI and
> U_1HI and, as the previous comment says, those registers are dead.
>
> What actually happens here is best summarized as
>
> // U_2:U_1:U_0 += (U2 >> 2) * 5
>
> or, i
On Thu, 1 Jun 2023 14:44:53 GMT, Sibabrata Sahoo wrote:
>> test/jdk/javax/crypto/KEM/KemTest.java line 138:
>>
>>> 136:
>>> decT.decapsulate(enc.encapsulation()).getEncoded().length);
>>> 137:
>>> Asserts.assertEQ(decT.decapsulate(enc.encapsulation()).ge
On Thu, 1 Jun 2023 14:16:23 GMT, Weijun Wang wrote:
>> Sibabrata Sahoo has updated the pull request incrementally with one
>> additional commit since the last revision:
>>
>> Comments addressed
>
> test/jdk/javax/crypto/KEM/GenLargeNumberOfKeys.java line 79:
>
>> 77: sk.getEn
On Thu, 1 Jun 2023 07:37:38 GMT, Sibabrata Sahoo wrote:
>> Additional Tests for KEM API.
>
> Sibabrata Sahoo has updated the pull request incrementally with one
> additional commit since the last revision:
>
> Comments addressed
Looks good to me. Thanks!
-
Marked as reviewed by
On Wed, 31 May 2023 22:46:53 GMT, Rajan Halade wrote:
>> The new approach uses test URLs directly to verify interoperability with CA
>> infrastructure. This would help us avoid having regular test fixes to update
>> test artifacts as long as CAs keep test domains up to date.
>
> Rajan Halade ha
On Thu, 1 Jun 2023 07:37:38 GMT, Sibabrata Sahoo wrote:
>> Additional Tests for KEM API.
>
> Sibabrata Sahoo has updated the pull request incrementally with one
> additional commit since the last revision:
>
> Comments addressed
test/jdk/javax/crypto/KEM/GenLargeNumberOfKeys.java line 79:
>
On Thu, 11 May 2023 19:06:59 GMT, Mark Powers wrote:
> https://bugs.openjdk.org/browse/JDK-8307794
This pull request has now been integrated.
Changeset: d9871764
Author:Mark Powers
Committer: Weijun Wang
URL:
https://git.openjdk.org/jdk/commit/d987176412b0a1812c9b99aaaeaf65ac96fa05
On Thu, 27 Apr 2023 14:16:34 GMT, Ferenc Rakoczi wrote:
> Implement support for Leighton-Micali Signatures (LMS) as described in RFC
> 8554. LMS is an approved software signing algorithm for CNSA 2.0, with
> SHA-256/192 parameters recommended.
This pull request has now been integrated.
Change
On Wed, 24 May 2023 16:17:14 GMT, Andrew Haley wrote:
>> This provides a solid speedup of about 3-4x over the Java implementation.
>>
>> I have a vectorized version of this which uses a bunch of tricks to speed it
>> up, but it's complex and can still be improved. We're getting close to ramp
>
On Wed, 31 May 2023 13:00:15 GMT, Weijun Wang wrote:
>> Sibabrata Sahoo has updated the pull request incrementally with one
>> additional commit since the last revision:
>>
>> 8308711: Comment addressed
>
> test/jdk/javax/crypto/KEM/GenLargeNumberOfKeys.java line 45:
>
>> 43: * X448 pro
> Additional Tests for KEM API.
Sibabrata Sahoo has updated the pull request incrementally with one additional
commit since the last revision:
Comments addressed
-
Changes:
- all: https://git.openjdk.org/jdk/pull/14113/files
- new: https://git.openjdk.org/jdk/pull/14113/files
41 matches
Mail list logo
