Re: [10] RFR 8166222: Don't treat signed jars with invalid timestamps as unsigned

I assume we will backport this to jdk9u. So I'd like to fix the newly found regression JDK-8180289 along with this bug, since both are about CertPath validation warning messages. I'll need some time thinking about a proper fix. The current warning message on cert expiration is only on "signer

Re: [9] RFR: 8180307: Add new JDK 9 Required Algorithms to Cipher class

On 5/12/2017 4:03 PM, Valerie Peng wrote: GCM mode does not need padding, so the required algorithm should just be AES/GCM/NoPadding only. +1. Brad Valerie On 5/12/2017 10:59 AM, Sean Mullan wrote: A couple of new required algorithms for JDK 9 were accidentally omitted for the Cipher cl

Re: [9] RFR: 8180307: Add new JDK 9 Required Algorithms to Cipher class

GCM mode does not need padding, so the required algorithm should just be AES/GCM/NoPadding only. Valerie On 5/12/2017 10:59 AM, Sean Mullan wrote: A couple of new required algorithms for JDK 9 were accidentally omitted for the Cipher class as part of JDK-8015388. Docs only change. diff --

Re: [9] RFR: 8180307: Add new JDK 9 Required Algorithms to Cipher class

Is the PKCS5 Padding a real padding with GCM or only an ignored alias? If it is an alias, should it be documented here? 2017-05-12 19:59 GMT+02:00 Sean Mullan : > A couple of new required algorithms for JDK 9 were accidentally omitted > for the Cipher class as part of JDK-8015388. Docs only chang

[9] RFR: 8180307: Add new JDK 9 Required Algorithms to Cipher class

A couple of new required algorithms for JDK 9 were accidentally omitted for the Cipher class as part of JDK-8015388. Docs only change. diff --git a/src/java.base/share/classes/javax/crypto/Cipher.java b/src/java.base/share/classes/javax/crypto/Cipher.java --- a/src/java.base/share/classes/java

Re: SecurityManager.checkPackageAccess for qualified exports

> On May 12, 2017, at 8:01 AM, Sean Mullan wrote: > > On 5/12/17 9:14 AM, Langer, Christoph wrote: >> >> I think the package access check walking down the whole stack is fine and >> should be done here, not just the module access check. One thing to mention is that the application class loade

Re: RFR 9 test-only RFR 8177328 : java/lang/ClassLoader/securityManager/ClassLoaderTest.java times out with -Xcomp

> On May 11, 2017, at 3:25 PM, Brent Christian > wrote: > > Hi, > > I have one more update, with a couple of suggested changes to simplify the > execute() calls: > > * execute() takes a vararg, so explicit String[] creation can be omitted > (mostly). > > * args common to every execute() ca

RE: FW: SecurityManager.checkPackageAccess for qualified exports

Hi Sean, it's great that you seem to agree. :) So, I would definitely like if you could file a bug. And, it's ok if it won't make it into JDK 9 - the "workaround" is to explicitly grant the permission to my module. Please let me know once you created the bug - or just add me as watcher. Thanks

Re: FW: SecurityManager.checkPackageAccess for qualified exports

On 5/12/17 9:14 AM, Langer, Christoph wrote: Hi Sean, thanks for your response. *Implementation Note:*** This implementation also restricts all non-exported packages of modules loaded bythe platform class loader

RE: FW: SecurityManager.checkPackageAccess for qualified exports

Hi Sean, thanks for your response. > > > > *Implementation Note:*** > > > > This implementation also restricts all non-exported packages of modules > > loaded bythe platform class loader > > > getPlatformClassLoader-->or >

Re: FW: SecurityManager.checkPackageAccess for qualified exports

On 5/12/17 3:26 AM, Langer, Christoph wrote: Adding security-dev… Any comments? - Hi all, while playing with the security manager (using -Djava.security.manager) in Java 9 and testing platform modules that we have add

FW: SecurityManager.checkPackageAccess for qualified exports

Adding security-dev... Any comments? - Hi all, while playing with the security manager (using -Djava.security.manager) in Java 9 and testing platform modules that we have added specifically in our build, I came across