Re: Jar's CodeSigner null on Java 10, non-null on Java 8

What are the Hashes, signatures algorithms and key Sizes? Maybe one of the newer security properties turning those off? Does it have a timestamp? Gruss Bernd -- http://bernd.eckenfels.net Von: -2123340816m Auftrag von Gesendet: Freitag, Oktober 5, 2018 10:13 PM An

Re: Jar's CodeSigner null on Java 10, non-null on Java 8

On what version of Java 8 does it work? I am not sure what the problem is without additional information. Also, have you tried running with -Djava.security.debug=all? Did anything unusual (exceptions, etc) get logged? I would also suggest filing a bug with a reproducible test case, if possib

Jar's CodeSigner null on Java 10, non-null on Java 8

Excuse me if this isn’t the right place to ask this. I’ve been trying to debug something related to verifying that a class was signed with a particular certificate. The certificate is self-signed and long expired, if that makes a difference. I have the following code to check the signature:

Re: RFR (12): 8191053: Provide a mechanism to make system's security manager immutable

On 05/10/2018 18:52, dean.l...@oracle.com wrote: Isn't this an implementation detail that could change?  Could it say instead "system class loader or one of its ancestors" or something equally flexible? I don't think there is much flexibility here. If the custom security manager class is

Re: RFR (12): 8191053: Provide a mechanism to make system's security manager immutable

On 10/5/18 6:34 AM, Alan Bateman wrote: On 05/10/2018 13:59, Sean Mullan wrote: On 10/5/18 6:40 AM, Alan Bateman wrote: The only issue I see is the statement "The class is loaded by the system class loader ..." as it's actually the built-in application class loader. Is the "built-in applic

Re: RFR (12): 8191053: Provide a mechanism to make system's security manager immutable

On 05/10/2018 13:59, Sean Mullan wrote: On 10/5/18 6:40 AM, Alan Bateman wrote: The only issue I see is the statement "The class is loaded by the system class loader ..." as it's actually the built-in application class loader. Is the "built-in application class loader" something that is sp

Re: RFR (12): 8191053: Provide a mechanism to make system's security manager immutable

On 10/5/18 6:40 AM, Alan Bateman wrote: The only issue I see is the statement "The class is loaded by the system class loader ..." as it's actually the built-in application class loader. Is the "built-in application class loader" something that is specified somewhere else? I'd like to link to

Re: RFR (12): 8191053: Provide a mechanism to make system's security manager immutable

On 04/10/2018 22:04, Sean Mullan wrote: Excellent comments, Stuart. Thanks for taking the time to review this. I have posted another review that should address most of your comments, but also responded inline with replies below. http://cr.openjdk.java.net/~mullan/webrevs/8191053/webrev.02/ I