infernap12/jdk
1
0
Fork 0
mirror of https://github.com/openjdk/jdk.git synced 2026-06-06 18:53:37 +00:00
Code Issues Packages Projects Releases Wiki Activity
88,467 Commits 308 Branches 1,094 Tags
Commit Graph

913 Commits

Author SHA1 Message Date
Kirill Shirokov
2d97d4e7f8 8373426: Remove ffdhe6144 and ffdhe8192 from default list of TLS named groups 
Reviewed-by: mullan, jnimeh
 2026-05-27 18:45:04 +00:00
Ferenc Rakoczi
bcbde75d4e 8372044: Implementation Review Based on ML-KEM Security Considerations 
Reviewed-by: weijun
 2026-05-12 13:07:36 +00:00
Mark Powers
d204824268 8383813: pkcs12 keystore fails to load because of incorrect DER length-encoding 
Reviewed-by: weijun, myankelevich
 2026-05-11 13:31:09 +00:00
Artur Barashev
44313a4537 8345277: TLSv1.2 - unable to sign a secp256r1 key with ecdsa_secp384r1_sha384 
Co-authored-by: Steffen Heil <contact@secforge.de>
Reviewed-by: jnimeh, djelinski
 2026-04-29 14:36:29 +00:00
Justin Lu
38a8e3cc96 8381436: Remove Obsolete Translation Resources 
Reviewed-by: prr, hchao, naoto, iris
 2026-04-27 20:12:00 +00:00
Anthony Scarpino
64779a2541 8377975: Fails to parse PEM text with trailing whitespace on the first line 
Reviewed-by: myankelevich, weijun
 2026-04-27 18:44:18 +00:00
Artur Barashev
135451eed0 8381771: Add a check for DNS label not to end with a hyphen 
Reviewed-by: weijun, myankelevich
 2026-04-22 17:29:00 +00:00
Artur Barashev
0fa512eb26 8371830: Enhance certificate chain validation 
Reviewed-by: jnibedita, rhalade, pkumaraswamy, ahgross, weijun, mullan
 2026-04-22 12:14:03 +05:30
Anthony Scarpino
3f242123e0 8348014: Enhance certificate processing 
Reviewed-by: jnimeh, mschoene, rhalade, jnibedita, valeriep, weijun
 2026-04-22 12:14:02 +05:30
Artur Barashev
0a8dbed7ef 8370656: Re-examine use of InterruptedIOException in sun.security.ssl code 
Reviewed-by: weijun, alanb
 2026-04-17 17:02:59 +00:00
Artur Barashev
8a710ae201 8372526: Add support for ZLIB TLS Certificate Compression 
Co-authored-by: Xue-Lei Andrew Fan <xuelei@openjdk.org>
Reviewed-by: jnimeh, xuelei
 2026-04-17 13:27:25 +00:00
Mark Powers
531dad0cd7 8369917: LMS/HSS RFC 9858 Support 
Reviewed-by: weijun
 2026-04-13 20:37:18 +00:00
Daniel Jeliński
547ebe7236 8381316: HttpClient / Http3: poor exception messages on SSL handshake errors 
Reviewed-by: dfuchs
 2026-04-07 11:48:01 +00:00
Daniel Jeliński
06c9aebce3 8377550: [REDO] Need to keep leading zeros in TlsPremasterSecret of TLS1.3 DHKeyAgreement 
Reviewed-by: hchao, mullan
 2026-04-02 13:40:51 +00:00
Weijun Wang
9131c72d63 8368692: Restrict Password::readPassword from reading from System.in 
Reviewed-by: mullan
 2026-04-01 17:49:31 +00:00
Koushik Thirupattur
7e0a1499ee 8345954: Revisit Class Initializers and Locking in X509TrustManagerImpl 
Reviewed-by: weijun
 2026-03-30 12:50:42 +00:00
Hai-May Chao
cf424480f4 8375275: Error handling to raise illegal_parameter or internal_error alert in hybrid key exchange 
Reviewed-by: wetmore, mpowers
 2026-03-25 15:29:34 +00:00
Hai-May Chao
cdd64dbb5d 8379433: Throwing proper exception for invalid encapsulation length in Hybrid 
Reviewed-by: weijun
 2026-03-19 19:12:27 +00:00
Shawn Emery
fdb129ad94 8378893: X25519 should utilize a larger limb size 
Co-authored-by: Ferenc Rakoczi <ferenc.r.rakoczi@oracle.com>
Reviewed-by: ascarpino, bperez
 2026-03-13 16:34:30 +00:00
Ben Perez
e9446e1554 8368841: X25519 implementation differs from the specification in RFC 7748 
Reviewed-by: ascarpino, semery
 2026-03-13 15:02:02 +00:00
Weijun Wang
375f821627 8379515: draft-ietf-lamps-kyber-certificates is now RFC 9935 
Reviewed-by: mullan
 2026-03-09 13:54:11 +00:00
Artur Barashev
b349f661ea 8379191: SunX509KeyManagerImpl alias chooser methods returns null for EC_EC 
Reviewed-by: myankelevich, mullan
 2026-03-06 14:27:53 +00:00
Sean Coffey
93fe49abef 8371333: Optimize static initialization of SSLContextImpl classes and improve logging 
Reviewed-by: hchao, jnimeh
 2026-02-25 12:57:30 +00:00
Sean Coffey
c988a4e534 8044609: javax.net.debug options not working and documented as expected 
Reviewed-by: wetmore
 2026-02-12 09:45:59 +00:00
Daniel Jeliński
d97ea5a8cd 8377549: [BACKOUT] Need to keep leading zeros in TlsPremasterSecret of TLS1.3 DHKeyAgreement 
Reviewed-by: mullan
 2026-02-10 14:48:52 +00:00
Mikhail Yankelevich
264fdc5b4e 8374808: Add new methods to KeyStore and KeyStoreSpi that return the creation date as an Instant instead of Date 
Reviewed-by: weijun
 2026-02-10 12:18:03 +00:00
Weijun Wang
e51ccef9cb 8347938: Add Support for the Latest ML-KEM and ML-DSA Private Key Encodings 
Reviewed-by: mullan, bperez, mpowers
 2026-02-03 16:32:21 +00:00
Valerie Peng
e55124041e 8375549: ConcurrentModificationException if jdk.crypto.disabledAlgorithms has multiple entries with known oid 
Reviewed-by: mullan, coffeys
 2026-01-23 19:46:40 +00:00
Daniel Jeliński
25d2b52ab9 8328046: Need to keep leading zeros in TlsPremasterSecret of TLS1.3 DHKeyAgreement 
Reviewed-by: hchao
 2026-01-22 21:48:28 +00:00
Hai-May Chao
96a2649e29 8373408: SHA1withECDSA is not required for ECDHE and ECDSA 
Reviewed-by: djelinski, ascarpino
 2026-01-22 17:41:00 +00:00
Artur Barashev
025041ba04 8370885: Default namedGroups values are not being filtered against algorithm constraints 
Reviewed-by: hchao
 2026-01-22 13:11:42 +00:00
Brent Christian
e25a5a4821 Merge 
Reviewed-by: kcr, prr, smarks
 2026-01-21 01:28:38 +00:00
Hai-May Chao
21dc41f744 8314323: Implement JEP 527: TLS 1.3 Hybrid Key Exchange 
Co-authored-by: Jamil Nimeh <jnimeh@openjdk.org>
Co-authored-by: Weijun Wang <weijun@openjdk.org>
Reviewed-by: wetmore, mullan
 2026-01-20 16:16:38 +00:00
Jamil Nimeh
07f981f6b0 8368032: Enhance Certificate Checking 
Reviewed-by: ahgross, coffeys, rhalade, mullan, abarashev
 2026-01-18 20:22:55 -08:00
Hai-May Chao
a1b039aa98 8286032: keytool -list -alias should not assume it is always a certificate 
Reviewed-by: weijun
 2026-01-15 22:33:34 +00:00
Artur Barashev
78a106ffbb 8375183: Remove unused SSLConfiguration.maximumProtocolVersion variable 
Reviewed-by: djelinski, myankelevich, hchao
 2026-01-15 13:18:20 +00:00
John Jiang
a726e834b6 8373231: ECDSAOperations::toAffinePoint is redundant 
Reviewed-by: mullan
 2026-01-10 00:52:34 +00:00
Mark Powers
92abc6dfe4 8369282: Distrust TLS server certificates anchored by Chunghwa ePKI Root CA 
Reviewed-by: mullan
 2026-01-08 17:35:43 +00:00
Weijun Wang
fbc59ac0a1 8374555: No need for visible input warning in s.s.u.Password when not reading from System.in 
Reviewed-by: coffeys, hchao
 2026-01-06 18:05:27 +00:00
Fernando Guallini
532a0a65b1 8372950: Pem.pemEncoded should cache the Pattern 
Reviewed-by: ascarpino
 2026-01-06 10:53:27 +00:00
Artur Barashev
3439512401 8374317: Change GCM IV size to 12 bytes when encrypting/decrypting TLS session ticket 
Reviewed-by: djelinski, mpowers, ascarpino
 2026-01-02 13:28:15 +00:00
Sergey Bylokhov
36d2c277c4 8374327: Update copyright year to 2025 for files in java.base added/updated by commits in 2025 
Reviewed-by: jpai
 2025-12-31 09:13:32 +00:00
Damon Nguyen
fb99ba6ccd 8373119: JDK 26 RDP1 L10n resource files update 
Reviewed-by: jlu, asemenyuk, almatvee
 2025-12-16 21:19:33 +00:00
Ferenc Rakoczi
6ec36d348b 8373059: Test sun/security/provider/acvp/ML_DSA_Intrinsic_Test.java should pass on Aarch64 
Reviewed-by: weijun, vpaprotski
 2025-12-12 16:04:56 +00:00
Artur Barashev
a99f340e1b 8371721: Refactor checkTrusted methods in X509TrustManagerImpl 
Reviewed-by: coffeys, djelinski
 2025-12-12 14:39:42 +00:00
Hai-May Chao
c2ea75b81f 8353749: Improve security warning when using JKS or JCEKS keystores 
Reviewed-by: weijun
 2025-11-21 01:10:35 +00:00
Weijun Wang
45a2fd37f0 8325448: Hybrid Public Key Encryption 
Reviewed-by: mullan, ascarpino, abarashev
 2025-11-20 15:15:41 +00:00
Sean Coffey
852141b9d4 8372004: Have SSLLogger implement System.Logger 
Reviewed-by: dfuchs, weijun
 2025-11-20 07:32:06 +00:00
Mark Powers
52ffe8a096 8371156: PBKDF2 default values should not be DER encoded 
Reviewed-by: weijun
 2025-11-17 14:59:30 +00:00
Anthony Scarpino
ad3dfaf1fc 8360564: Implement JEP 524: PEM Encodings of Cryptographic Objects (Second Preview) 
Reviewed-by: weijun, mullan
 2025-11-14 21:08:36 +00:00