Re: [9] RFR 8159488 "Deprivilege java.xml.crypto" and 8161171 "Missed the make/common/Modules.gmk file when integrating JDK-8154191"

On 07/18/2016 05:38 PM, Valerie Peng wrote: Hi Sean, I found these two classes in java.xml.crypto module reading local files: src/java.xml.crypto/share/classes/com/sun/org/apache/xml/internal/security/keys/storage/implementations/CertsInFilesystemDirectoryResolver.java src/java.xml.crypto/share

[9] RFR 8161571: Verifying ECDSA signatures permits trailing bytes

Please review this fix to apply stricter length checks when verifying public key signatures. Thanks. Bug: https://bugs.openjdk.java.net/browse/JDK-8161571 Webrev: http://cr.openjdk.java.net/~vinnie/8161571/webrev.00/