infernap12/jdk
1
0
Fork 0
mirror of https://github.com/openjdk/jdk.git synced 2026-01-30 04:58:25 +00:00
Code Issues Packages Projects Releases Wiki Activity
69,482 Commits 357 Branches 1,071 Tags
Commit Graph

61 Commits

Author SHA1 Message Date
Hai-May Chao
2ed75be659 8286090: Add RC2/RC4 to jdk.security.legacyAlgorithms 
Reviewed-by: mullan
 2022-05-17 21:47:54 +00:00
Joe Darcy
59ef76a365 8285497: Add system property for Java SE specification maintenance version 
Reviewed-by: mullan, jpai, iris
 2022-05-05 22:23:41 +00:00
Hai-May Chao
09e6ee96bd 8255552: Add DES/3DES/MD5 to jdk.security.legacyAlgorithms 
Reviewed-by: mullan, weijun
 2022-05-04 20:35:16 +00:00
Weijun Wang
cfcba1fccc 8285827: Describe the keystore.pkcs12.legacy system property in the java.security file 
Reviewed-by: mullan
 2022-05-02 14:03:24 +00:00
Magnus Ihse Bursie
fb469fb894 8284893: Fix typos in java.base 
Reviewed-by: iris, wetmore, lancea, mullan, naoto
 2022-04-19 20:07:57 +00:00
Michael McMahon
7f2a3ca289 8281561: Disable http DIGEST mechanism with MD5 and SHA-1 by default 
Reviewed-by: weijun, dfuchs
 2022-03-28 13:51:55 +00:00
Weijun Wang
ab867f6c7c 8272162: S4U2Self ticket without forwardable flag 
Reviewed-by: valeriep
 2021-12-01 00:48:28 +00:00
Sean Mullan
6d91a3eb7b 8269039: Disable SHA-1 Signed JARs 
Reviewed-by: weijun
 2021-09-21 13:45:47 +00:00
Roger Riggs
6889a39a3f 8268826: Cleanup Override in Context-Specific Deserialization Filters 
Reviewed-by: dfuchs, bchristi
 2021-07-09 14:33:56 +00:00
Weijun Wang
e2d7ec38af 8267100: [BACKOUT] JDK-8196415 Disable SHA-1 Signed JARs 
Co-authored-by: Sean Mullan <mullan@openjdk.org>
Reviewed-by: hchao, xuelei
 2021-06-22 00:41:45 +00:00
Roger Riggs
13d6180421 8264859: Implement Context-Specific Deserialization Filters 
Reviewed-by: bchristi, dfuchs, chegar
 2021-06-09 12:30:07 +00:00
Stuart Marks
7c85f3510c 8267123: Remove RMI Activation 
Reviewed-by: erikj, rriggs, alanb
 2021-05-27 15:19:45 +00:00
Sean Mullan
278057756a 8196415: Disable SHA-1 Signed JARs 
Reviewed-by: coffeys
 2021-04-28 17:13:21 +00:00
Aleksei Efimov
17a741d6bc 8244473: Contextualize registration for JNDI 
Also reviewed by Chris Ries <chris.ries@oracle.com>

Reviewed-by: dfuchs, rriggs, rhalade, skoivu, mullan
 2021-04-20 21:45:52 +00:00
Sean Mullan
a6427c85ee 8259709: Disable SHA-1 XML Signatures 
Reviewed-by: rhalade, weijun
 2021-03-04 17:21:37 +00:00
Sean Mullan
baf46bac41 8259801: Enable XML Signature secure validation mode by default 
Reviewed-by: weijun, rhalade
 2021-01-28 14:28:27 +00:00
Jamil Nimeh
8554fe6ebc 8253866: Security Libs Terminology Refresh 
Reviewed-by: erikj, weijun, mullan
 2021-01-14 16:36:51 +00:00
Bradford Wetmore
fe5cccc1ec 8254631: Better support ALPN byte wire values in SunJSSE 
Reviewed-by: xuelei, dfuchs
 2020-12-02 04:14:28 +00:00
Sean Mullan
3a4b90f086 8202343: Disable TLS 1.0 and 1.1 
Reviewed-by: xuelei, dfuchs, coffeys
 2020-11-19 14:15:57 +00:00
Weijun Wang
f77a658557 8153005: Upgrade the default PKCS12 encryption/MAC algorithms 
Reviewed-by: mullan
 2020-10-30 13:23:33 +00:00
Anthony Scarpino
0b83fc0150 8235710: Remove the legacy elliptic curves 
Reviewed-by: xuelei, erikj
 2020-09-25 02:40:36 +00:00
Mikael Vidstedt
071bd521bc 8244224: Implementation of JEP 381: Remove the Solaris and SPARC Ports 
Reviewed-by: alanb, bchristi, dcubed, dfuchs, eosterlund, erikj, glaubitz, ihse, iignatyev, jjiang, kbarrett, ksrini, kvn, naoto, prr, rriggs, serb, sspitsyn, stefank, tschatzl, valeriep, weijun, weijun
 2020-05-20 17:33:37 -07:00
Hai-May Chao
f04a7e5cb4 8172404: Tools should warn if weak algorithms are used before restricting them 
Reviewed-by: mullan, weijun
 2020-04-17 20:11:39 +08:00
Martin Balao
1c651455a7 8241888: Mirror jdk.security.allowNonCaAnchor system property with a security one 
Reviewed-by: mullan
 2020-04-02 18:18:23 -03:00
Sean Mullan
fb37c54630 8238560: Cleanup and consolidate algorithms in the jdk.tls.legacyAlgorithms security property 
Reviewed-by: xuelei
 2020-02-20 16:36:38 -05:00
Sean Mullan
2fbbce2b23 8191395: policy.allowSystemProperty and policy.expandProperties also apply to JAAS configurations 
Reviewed-by: weijun
 2020-02-12 10:28:59 -05:00
Anthony Scarpino
ca112043f1 8233228: Disable weak named curves by default in TLS, CertPath, and Signed JAR 
Reviewed-by: mullan, xuelei, weijun
 2019-12-18 12:10:09 -08:00
Sean Mullan
dd321330ce 8234870: Deprecate the OracleUcrypto JCE Provider for removal 
Reviewed-by: alanb, rriggs
 2019-12-11 17:17:28 -05:00
Martin Balao
0e5a288dfe 8233404: System property to set the number of PBE iterations in JCEKS keystores 
Reviewed-by: weijun
 2019-11-12 00:30:55 -03:00
Weijun Wang
9eb755e85e 8209901: Canonical file handling 
Reviewed-by: mullan, alanb, ahgross
 2019-04-22 13:01:57 +08:00
Weijun Wang
cb06712f5a 8220302: Better Kerberos ccache handling 
Reviewed-by: valeriep
 2019-04-19 10:22:20 +08:00
Weijun Wang
ca919052e9 8229767: Typo in java.security: Sasl.createClient and Sasl.createServer 
Reviewed-by: xuelei
 2019-08-15 15:39:43 +08:00
Xue-Lei Andrew Fan
316140ff92 8226374: Restrict TLS signature schemes and named groups 
Reviewed-by: mullan
 2019-08-12 21:36:29 -07:00
Martin Balao
5aae9ef0db 8215032: Support Kerberos cross-realm referrals (RFC 6806) 
Reviewed-by: weijun
 2019-06-05 01:42:11 -03:00
Lance Andersen
2c002e9355 8224682: Remove the com.sun.CORBA.ORBIorTypeCheckRegistryFilter security property 
Reviewed-by: bchristi
 2019-05-24 15:06:58 -04:00
Weijun Wang
31af27a1ee 8200400: Restrict Sasl mechanisms 
Reviewed-by: mullan
 2019-05-10 09:39:49 +08:00
Jesper Wilhelmsson
bc920bd00d Merge 2019-01-22 19:56:19 +01:00
Sean Mullan
c9bea6a8ea 8216280: Allow later Symantec Policy distrust date for two Apple SubCAs 
Reviewed-by: coffeys
 2019-01-22 09:27:19 -05:00
Jesper Wilhelmsson
a8c5f1e59a Merge 2019-01-15 22:54:09 +01:00
Roger Riggs
0ec2218c50 8202675: Replace process-wide terminology in serial filtering to be consistent 
Reviewed-by: alanb, lancea
 2019-01-15 15:56:41 -05:00
Henry Jen
d77f96b0b2 Merge 2018-12-13 11:47:35 -08:00
Weijun Wang
9136c7d1d0 8076190: Customizing the generation of a PKCS12 keystore 
Reviewed-by: mullan
 2018-12-13 11:16:33 +08:00
Sean Mullan
dfd58a59ff 8207258: Distrust TLS server certificates anchored by Symantec Root CAs 
Reviewed-by: weijun
 2018-12-11 13:22:20 -05:00
Roger Riggs
48d68d182a 8214014: Remove vestiges of gopher: protocol proxy support 
Reviewed-by: lancea, alanb
 2018-11-28 16:04:36 -05:00
Michael McMahon
ef75339a1e 8209094: Improve web server connections 
Reviewed-by: chegar, dfuchs, mschoene, igerasim
 2018-10-05 08:54:10 +01:00
Michael McMahon
028f2e14b3 8213189: Make restricted headers in HTTP Client configurable and remove Date by default 
Reviewed-by: dfuchs
 2018-11-14 14:23:21 +00:00
Sean Mullan
7727e4ca2f 8211883: Disable anon and NULL cipher suites 
Reviewed-by: jnimeh
 2018-10-25 13:55:28 -04:00
Matthias Baesken
be56cc5bf3 8207768: Improve exception messages during manifest parsing of jar archives 
Reviewed-by: clanger, mullan, weijun
 2018-09-12 11:13:09 +02:00
Jamil Nimeh
8eb45613db 8208350: Disable all DES cipher suites 
Reviewed-by: xuelei, mullan
 2018-08-20 15:37:47 -07:00
Sean Mullan
ac3d4a6722 8208691: Tighten up jdk.includeInExceptions security property 
Add stronger warning on usage and add test to check that property is not set

Reviewed-by: alanb, rriggs
 2018-08-07 10:29:01 -04:00