On Thu, 10 Apr 2025 23:54:03 GMT, Martin Balao wrote:
>> Hi,
>>
>> I would like to request a review for the fix of JDK-8350661. In this fix, we
>> translate the native PKCS 11 error code into an
>> `InvalidAlgorithmParameterException`, as documented in the `KDF::deriveKey`
>> API. With that s
Please find her a patch that deprecate networking permission classes for
removal. The method `URL::getPermission` now serves little purpose and is also
deprecated. That method was overridden in subclasses and specified to return
some of the deprecated permissions.
-
Commit message
On Fri, 11 Apr 2025 09:00:05 GMT, Daniel Fuchs wrote:
> Please find her a patch that deprecate networking permission classes for
> removal. The method `URL::getPermission` now serves little purpose and is
> also deprecated. That method was overridden in subclasses and specified to
> return so
> Please find her a patch that deprecate networking permission classes for
> removal. The method `URL::getPermission` now serves little purpose and is
> also deprecated. That method was overridden in subclasses and specified to
> return some of the deprecated permissions.
Daniel Fuchs has upda
On Fri, 11 Apr 2025 10:01:26 GMT, Daniel Fuchs wrote:
>> Please find her a patch that deprecate networking permission classes for
>> removal. The method `URL::getPermission` now serves little purpose and is
>> also deprecated. That method was overridden in subclasses and specified to
>> retur
On Fri, 11 Apr 2025 10:55:10 GMT, Daniel Jeliński wrote:
>> Daniel Fuchs has updated the pull request incrementally with one additional
>> commit since the last revision:
>>
>> Missing white spaces
>
> src/java.base/share/classes/java/security/CodeSource.java line 468:
>
>> 466:
On Fri, 11 Apr 2025 10:01:26 GMT, Daniel Fuchs wrote:
>> Please find her a patch that deprecate networking permission classes for
>> removal. The method `URL::getPermission` now serves little purpose and is
>> also deprecated. That method was overridden in subclasses and specified to
>> retur
On Fri, 11 Apr 2025 10:45:20 GMT, Daniel Jeliński wrote:
>> Daniel Fuchs has updated the pull request incrementally with one additional
>> commit since the last revision:
>>
>> Missing white spaces
>
> src/java.base/share/classes/java/net/HttpURLConnection.java line 617:
>
>> 615: * {@l
On Fri, 11 Apr 2025 11:10:10 GMT, Daniel Jeliński wrote:
>> src/java.base/share/classes/java/security/CodeSource.java line 468:
>>
>>> 466: }
>>> 467: @SuppressWarnings("removal")
>>> 468: var result = this.sp.implies(that.sp);
>>
>> Will we need
On Fri, 11 Apr 2025 11:30:54 GMT, Daniel Fuchs wrote:
>> src/java.base/share/classes/java/net/HttpURLConnection.java line 617:
>>
>>> 615: * {@link java.security.AllPermission}.
>>> 616: */
>>> 617: @Deprecated(since = "25")
>>
>> can this (and all other getPermission methods) be
On Fri, 11 Apr 2025 11:34:36 GMT, Alan Bateman wrote:
>> Possibly. @AlanBateman may have some thoughts on this.
>
> I think we should at least consider deprecating URLConnection.getPermission
> and HttpURLConnection.getPermission for removal, only because I don't
> immediately see the advantage
On Fri, 11 Apr 2025 10:01:26 GMT, Daniel Fuchs wrote:
>> Please find her a patch that deprecate networking permission classes for
>> removal. The method `URL::getPermission` now serves little purpose and is
>> also deprecated. That method was overridden in subclasses and specified to
>> retur
On Fri, 11 Apr 2025 12:01:52 GMT, Daniel Jeliński wrote:
> The GHA failure (Windows) appears to be related.
Yes - I missed one windows specific file in my original patch. I have a test
running in the CI and I am waiting for it to pass before updating the PR.
-
PR Comment: https://
On Fri, 11 Apr 2025 10:01:26 GMT, Daniel Fuchs wrote:
>> Please find her a patch that deprecate networking permission classes for
>> removal. The method `URL::getPermission` now serves little purpose and is
>> also deprecated. That method was overridden in subclasses and specified to
>> retur
On Fri, 11 Apr 2025 12:31:04 GMT, Daniel Fuchs wrote:
> The GHA failure (Windows) appears to be related.
Should be fixed now
-
PR Comment: https://git.openjdk.org/jdk/pull/24592#issuecomment-2796995066
On Fri, 11 Apr 2025 11:47:21 GMT, Daniel Fuchs wrote:
>> I think we should at least consider deprecating URLConnection.getPermission
>> and HttpURLConnection.getPermission for removal, only because I don't
>> immediately see the advantage of doing it in two steps for these two APIs.
>
> Thanks
> Please find her a patch that deprecate networking permission classes for
> removal. The method `URL::getPermission` now serves little purpose and is
> also deprecated. That method was overridden in subclasses and specified to
> return some of the deprecated permissions.
Daniel Fuchs has upda
On Fri, 11 Apr 2025 13:47:10 GMT, Michael McMahon wrote:
>> Daniel Fuchs has updated the pull request incrementally with one additional
>> commit since the last revision:
>>
>> Missing white spaces
>
> src/java.base/share/classes/java/security/CodeSource.java line 461:
>
>> 459:
On Fri, 11 Apr 2025 13:56:18 GMT, Daniel Fuchs wrote:
>> Please find her a patch that deprecate networking permission classes for
>> removal. The method `URL::getPermission` now serves little purpose and is
>> also deprecated. That method was overridden in subclasses and specified to
>> retur
> MD5 algorithm is prohibited by TLSv1.3 RFC to be used in certificates:
>
>
> Any endpoint receiving any certificate which it would need to
> validate using any signature algorithm using an MD5 hash MUST abort
> the handshake with a "bad_certificate" alert.
>
>
>
> The bug manifests itself wh
On Wed, 2 Apr 2025 20:35:29 GMT, Weijun Wang wrote:
>> Implement HPKE as defined in https://datatracker.ietf.org/doc/rfc9180/.
>> 
>
> Weijun Wang has updated the pull request incrementally with two additional
On Fri, 11 Apr 2025 13:56:18 GMT, Daniel Fuchs wrote:
>> Please find her a patch that deprecate networking permission classes for
>> removal. The method `URL::getPermission` now serves little purpose and is
>> also deprecated. That method was overridden in subclasses and specified to
>> retur
On Fri, 11 Apr 2025 00:00:39 GMT, Martin Balao wrote:
> What I have found with Tls* keys is that they are in the map but we need to
> translate their pseudo-mechanism to a valid one (`CKK_GENERIC_SECRET`). Is
> that enough for #24393?
What I found is that there are more "TlsXXX" than those def
Workaround for `sed` issue on MacOS 15.4. See
https://bugs.openjdk.org/browse/JDK-8353948 for more details.
This is a leftover resource file from long ago which serves no purpose, and has
been removed in the next Apache release:
https://issues.apache.org/jira/browse/SANTUARIO-624
Running throu
> Implement HPKE as defined in https://datatracker.ietf.org/doc/rfc9180/.
> 
Weijun Wang has updated the pull request incrementally with one additional
commit since the last revision:
toString, exportData,
On Fri, 11 Apr 2025 20:34:39 GMT, Sean Mullan wrote:
> Workaround for `sed` issue on MacOS 15.4. See
> https://bugs.openjdk.org/browse/JDK-8353948 for more details.
>
> This is a leftover resource file from long ago which serves no purpose, and
> has been removed in the next Apache release:
>
The JavaIOFilePermissionAccess interface is removed from SharedSecrets and its
implementation (FilePermCompat.java) used by the test is moved to java.io
FilePermission where cross package access is not needed.
The test FilePermissionCollectionMerge is updated to access the internal
implementati
On Thu, 10 Apr 2025 23:54:03 GMT, Martin Balao wrote:
>> Hi,
>>
>> I would like to request a review for the fix of JDK-8350661. In this fix, we
>> translate the native PKCS 11 error code into an
>> `InvalidAlgorithmParameterException`, as documented in the `KDF::deriveKey`
>> API. With that s
On Thu, 10 Apr 2025 23:54:03 GMT, Martin Balao wrote:
>> Hi,
>>
>> I would like to request a review for the fix of JDK-8350661. In this fix, we
>> translate the native PKCS 11 error code into an
>> `InvalidAlgorithmParameterException`, as documented in the `KDF::deriveKey`
>> API. With that s
On Sat, 5 Apr 2025 01:30:49 GMT, Shaojin Wen wrote:
>> During JVM startup, the class KnownOIDs is loaded. KnownOIDs has 10
>> anonymous classes, which slows down the startup. This PR is to improve
>> KnownOIDs and eliminate unnecessary embedded classes.
>>
>>
>> Here's how to reproduce this:
On Fri, 11 Apr 2025 21:28:30 GMT, Valerie Peng wrote:
>> Martin Balao has updated the pull request incrementally with two additional
>> commits since the last revision:
>>
>> - Algorithm and key size checking before derivation. Mechanism
>> normalization for TLS.
>> - Minor import adjustment
On Fri, 11 Apr 2025 19:47:38 GMT, Valerie Peng wrote:
> > What I have found with Tls* keys is that they are in the map but we need to
> > translate their pseudo-mechanism to a valid one (`CKK_GENERIC_SECRET`). Is
> > that enough for #24393?
>
> What I found is that there are more "TlsXXX" than
On Fri, 11 Apr 2025 21:32:47 GMT, Valerie Peng wrote:
>> Martin Balao has updated the pull request incrementally with two additional
>> commits since the last revision:
>>
>> - Algorithm and key size checking before derivation. Mechanism
>> normalization for TLS.
>> - Minor import adjustment
On Fri, 14 Feb 2025 21:24:37 GMT, Weijun Wang wrote:
> This code change adds supports for getting public key from an EC private key
> and slicing a secret key in PKCS #11. These are necessary to support DHKEM
> for keys in SunPKCS11. The first support is still not complete and there is
> no wa
34 matches
Mail list logo
