On Thu, 10 Apr 2025 05:52:17 GMT, Alan Bateman wrote:
>> Hi, this is a proposal to fix 8352728.
>>
>> The main idea is to replace
>> [`java.nio.file.Path::toRealPath`](https://docs.oracle.com/en/java/javase/24/docs/api/java.base/java/nio/file/Path.html#toRealPath(java.nio.file.LinkOption...))
>
On Mon, 14 Apr 2025 18:42:40 GMT, Sean Coffey wrote:
>> Breaking the parent JDK-8044609 JBS issue into sub tasks.
>>
>> This patch addresses the main issue which is that `javax.net.debug=ssl `
>> option is completely broken since TLSv1.3 support was introduced. This
>> patch should be easier
On Fri, 11 Apr 2025 20:41:13 GMT, Weijun Wang wrote:
>> Implement HPKE as defined in https://datatracker.ietf.org/doc/rfc9180/.
>> 
>
> Weijun Wang has updated the pull request incrementally with one additiona
On Mon, 14 Apr 2025 19:01:00 GMT, Francisco Ferrari Bihurriet
wrote:
>> For the TlsXXX issue I check the pseudo-mechanism. That works if all
>> algorithms are known to the map. I'll check how many we have and see what
>> are the pros/cons of having them in the map. I prefer symmetric key
>> a
On Thu, 10 Apr 2025 23:54:03 GMT, Martin Balao wrote:
>> Hi,
>>
>> I would like to request a review for the fix of JDK-8350661. In this fix, we
>> translate the native PKCS 11 error code into an
>> `InvalidAlgorithmParameterException`, as documented in the `KDF::deriveKey`
>> API. With that s
On Fri, 11 Apr 2025 23:36:17 GMT, Martin Balao wrote:
>> src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/P11HKDF.java line
>> 246:
>>
>>> 244: alg.equalsIgnoreCase("Generic")) {
>>> 245: return ki.keyType;
>>> 246: }
>>
>> W
> As part of [https://bugs.openjdk.org/browse/JDK-8301553](JDK-8301553),
> SunPKCS11 provider added support for PBE SecretKeyFactories for
> `HmacPBESHAxxx` and `PBEWithHmacSHAxxxAndAES_yyy`. These impls produce keys
> whose encoding contains the PBKDF2 derived bytes. Given that SunJCE provider
On Thu, 10 Apr 2025 03:11:42 GMT, Bradford Wetmore wrote:
>> Sean Coffey has updated the pull request incrementally with one additional
>> commit since the last revision:
>>
>> Incorporate latest review feedback
>
> Depending on the followup discussion of what `ssl` alone means.
>
> Howeve
> Breaking the parent JDK-8044609 JBS issue into sub tasks.
>
> This patch addresses the main issue which is that `javax.net.debug=ssl `
> option is completely broken since TLSv1.3 support was introduced. This patch
> should be easier for backporting also.
>
> Wider corrections can be followe
On Mon, 14 Apr 2025 16:14:03 GMT, Roger Riggs wrote:
>> The JavaIOFilePermissionAccess interface is removed from SharedSecrets and
>> its implementation (FilePermCompat.java) used by the test is moved to
>> java.io FilePermission where cross package access is not needed.
>> The test FilePermis
Hello,
This existing email thread seems to hold the most historical context
regarding usability of Console in jshell.
On 12/07/22 15:52, Naoto Sato wrote:
> On Tue, 29 Nov 2022 19:38:02 GMT, Naoto Sato wrote:
>> This is to allow Console to be used even when it is not attached
> to the platform p
On Wed, 2 Apr 2025 20:35:29 GMT, Weijun Wang wrote:
>> Implement HPKE as defined in https://datatracker.ietf.org/doc/rfc9180/.
>> 
>
> Weijun Wang has updated the pull request incrementally with two additional
On Fri, 11 Apr 2025 20:41:13 GMT, Weijun Wang wrote:
>> Implement HPKE as defined in https://datatracker.ietf.org/doc/rfc9180/.
>> 
>
> Weijun Wang has updated the pull request incrementally with one additiona
On Mon, 14 Apr 2025 16:14:03 GMT, Roger Riggs wrote:
>> The JavaIOFilePermissionAccess interface is removed from SharedSecrets and
>> its implementation (FilePermCompat.java) used by the test is moved to
>> java.io FilePermission where cross package access is not needed.
>> The test FilePermis
> The JavaIOFilePermissionAccess interface is removed from SharedSecrets and
> its implementation (FilePermCompat.java) used by the test is moved to java.io
> FilePermission where cross package access is not needed.
> The test FilePermissionCollectionMerge is updated to access the internal
> im
On Thu, 10 Apr 2025 05:09:52 GMT, Koushik Muthukrishnan Thirupattur
wrote:
>> java.security.debug is a widely used debug system property for JDK security
>> libs. It's time to capture details about this property via javadoc.
>>
>> ![image](https://github.com/user-attachments/assets/b8a589d1-69
> MD5 algorithm is prohibited by TLSv1.3 RFC to be used in certificates:
>
>
> Any endpoint receiving any certificate which it would need to
> validate using any signature algorithm using an MD5 hash MUST abort
> the handshake with a "bad_certificate" alert.
>
>
>
> The bug manifests itself wh
On Fri, 11 Apr 2025 20:34:39 GMT, Sean Mullan wrote:
> Workaround for `sed` issue on MacOS 15.4. See
> https://bugs.openjdk.org/browse/JDK-8353948 for more details.
>
> This is a leftover resource file from long ago which serves no purpose, and
> has been removed in the next Apache release:
>
On Sat, 5 Apr 2025 01:30:49 GMT, Shaojin Wen wrote:
>> During JVM startup, the class KnownOIDs is loaded. KnownOIDs has 10
>> anonymous classes, which slows down the startup. This PR is to improve
>> KnownOIDs and eliminate unnecessary embedded classes.
>>
>>
>> Here's how to reproduce this:
On Fri, 11 Apr 2025 21:26:08 GMT, Roger Riggs wrote:
> The JavaIOFilePermissionAccess interface is removed from SharedSecrets and
> its implementation (FilePermCompat.java) used by the test is moved to java.io
> FilePermission where cross package access is not needed.
> The test FilePermission
On Thu, 10 Apr 2025 21:26:21 GMT, Michael McMahon wrote:
>> Hi,
>>
>> Enhanced exception messages are designed to hide sensitive information such
>> as hostnames, IP
>> addresses from exception message strings, unless the enhanced mode for the
>> specific category
>> has been explicitly enab
On Fri, 11 Apr 2025 20:34:39 GMT, Sean Mullan wrote:
> Workaround for `sed` issue on MacOS 15.4. See
> https://bugs.openjdk.org/browse/JDK-8353948 for more details.
>
> This is a leftover resource file from long ago which serves no purpose, and
> has been removed in the next Apache release:
>
On Thu, 10 Apr 2025 16:50:29 GMT, Andrew Dinn wrote:
>> Ferenc Rakoczi has updated the pull request incrementally with two
>> additional commits since the last revision:
>>
>> - Code rearrange, some renaming, fixing comments
>> - Changes suggested by Andrew Dinn.
>
> @ferakocz Hi Ferenc. Than
> Session resumption without server side state was added under
> [JDK-8211018](https://bugs.openjdk.org/browse/JDK-8211018).
> While it is TLSv1.2 session resumption, the client hello message is being
> parsed in SSLSessionImpl for each extensions.
>
> Customer has reported handshake failure and
On Mon, 14 Apr 2025 12:11:22 GMT, Nibedita Jena wrote:
>> Session resumption without server side state was added under
>> [JDK-8211018](https://bugs.openjdk.org/browse/JDK-8211018).
>> While it is TLSv1.2 session resumption, the client hello message is being
>> parsed in SSLSessionImpl for each
On Sun, 13 Apr 2025 20:01:28 GMT, Weijun Wang wrote:
> I remember the implies method of the file permission class depends on whether
> this system property is set. Although file permission is no longer used in
> access control check the class and the method are still there.
Right, and I wasn't
26 matches
Mail list logo
