RE: RFR (S): JDK-8149169 - SSLSocketInputRecord.decodeInputRecord buffer overflow

Sorry, forgot the new webrev: http://cr.openjdk.java.net/~clanger/webrevs/8149169.2/ > -Original Message- > From: Langer, Christoph > Sent: Freitag, 18. März 2016 10:29 > To: 'Xuelei Fan' > Cc: security-dev@openjdk.java.net > Subject: RE: RFR (S): JDK-8149169 - SSLSocketInputRecord.decod

Re: RFR 8140422: Add mechanism to allow non default root CAs to be not subject to algorithm restrictions

I believe I got everyone's comments. I've updated the webrev. http://cr.openjdk.java.net/~ascarpino/8140422/webrev.02/ Thanks Tony On 02/29/2016 08:55 AM, Anthony Scarpino wrote: Currently CertPath algorithm restrictions allow or deny all certificates. This change adds the ability to reject

Re: RFR 8140422: Add mechanism to allow non default root CAs to be not subject to algorithm restrictions

ok.. thanks Tony On 03/18/2016 10:27 AM, Erik Joelsson wrote: Much better, and thank you for fixing the existing mkdir/echo lines too. Just one nit, for this continuation: $(TOOL_CACERTSHASHER) -i $(GENDATA_CACERTSHASHER_IN) \ -o $(GENDATA_CACERTSHASHER) please use tab+4spa

Re: JDK 9 RFR of JDK-8151763; Use more informative format for problem list

Just a follow-up, to avoid causing additional merge headaches, I'll revise the patch to make this change once the next round of Jigsaw changes get back in jdk9/dev (http://mail.openjdk.java.net/pipermail/jdk9-dev/2016-March/003877.html). Thanks, -Joe On 3/12/2016 1:28 PM, Chris Hegarty wrote