infernap12/jdk
1
0
Fork 0
mirror of https://github.com/openjdk/jdk.git synced 2026-01-31 13:38:47 +00:00
Code Issues Packages Projects Releases Wiki Activity
80,484 Commits 356 Branches 1,071 Tags
Commit Graph

76 Commits

Author SHA1 Message Date
Daniel Fuchs
03bc6b359f 8328286: Enhance HTTP client 
Reviewed-by: aefimov, michaelm
 2024-10-15 17:04:27 +05:30
Rajan Halade
f554c3ffce 8341059: Change Entrust TLS distrust date to November 12, 2024 
Reviewed-by: mullan
 2024-09-27 17:16:13 +00:00
Francisco Ferrari Bihurriet
c6f1d5f374 8319332: Security properties files inclusion 
Co-authored-by: Francisco Ferrari Bihurriet <fferrari@openjdk.org>
Co-authored-by: Martin Balao <mbalao@openjdk.org>
Reviewed-by: weijun, mullan, kdriver
 2024-09-23 17:45:38 +00:00
Mark Powers
bbb516163d 8337664: Distrust TLS server certificates issued after Oct 2024 and anchored by Entrust Root CAs 
Reviewed-by: mullan, rhalade
 2024-09-03 19:55:58 +00:00
Weijun Wang
da3001daf7 8331975: Enable case-insensitive check in ccache and keytab entry lookup 
Reviewed-by: mpowers, valeriep
 2024-05-24 01:16:43 +00:00
Bradford Wetmore
4276d5c004 8329637: Apparent typo in java.security file property jdk.tls.keyLimits 
Reviewed-by: ascarpino
 2024-04-04 17:48:41 +00:00
Jamil Nimeh
282a93a4cc 8300285: Enhance TLS data handling 
Reviewed-by: ahgross, ascarpino, rhalade
 2023-07-18 21:17:06 +00:00
Sergey Bylokhov
bdd81b3182 8304885: Reuse stale data to improve DNS resolver resiliency 
Reviewed-by: michaelm, dfuchs
 2023-06-09 23:20:06 +00:00
Weijun Wang
f0aebc8141 8305972: Update XML Security for Java to 3.0.2 
Reviewed-by: mullan
 2023-05-19 17:46:41 +00:00
Sean Mullan
7901f459dc 8301260: Add system property to toggle XML Signature secure validation mode 
Reviewed-by: weijun, coffeys
 2023-02-09 18:18:21 +00:00
Sean Coffey
d0a7938eb7 8286575: Document how properties in java.security are parsed 
Reviewed-by: mullan
 2022-11-21 14:28:07 +00:00
Sean Mullan
00d22f605d 8279164: Disable TLS_ECDH_* cipher suites 
Reviewed-by: xuelei, rhalade, wetmore
 2022-11-07 14:07:10 +00:00
Sean Mullan
16744b3449 8256660: Disable DTLS 1.0 
Reviewed-by: xuelei, hchao, wetmore
 2022-10-31 16:46:40 +00:00
Aleksei Efimov
d37ce4cdd1 8290368: Introduce LDAP and RMI protocol-specific object factory filters to JNDI implementation 
Reviewed-by: dfuchs, rriggs, jpai
 2022-10-19 14:41:28 +00:00
Sean Coffey
9d7c13eb14 8155246: Throw error if default java.security file is missing 
Reviewed-by: mullan
 2022-08-15 09:07:17 +00:00
Hai-May Chao
2ed75be659 8286090: Add RC2/RC4 to jdk.security.legacyAlgorithms 
Reviewed-by: mullan
 2022-05-17 21:47:54 +00:00
Joe Darcy
59ef76a365 8285497: Add system property for Java SE specification maintenance version 
Reviewed-by: mullan, jpai, iris
 2022-05-05 22:23:41 +00:00
Hai-May Chao
09e6ee96bd 8255552: Add DES/3DES/MD5 to jdk.security.legacyAlgorithms 
Reviewed-by: mullan, weijun
 2022-05-04 20:35:16 +00:00
Weijun Wang
cfcba1fccc 8285827: Describe the keystore.pkcs12.legacy system property in the java.security file 
Reviewed-by: mullan
 2022-05-02 14:03:24 +00:00
Magnus Ihse Bursie
fb469fb894 8284893: Fix typos in java.base 
Reviewed-by: iris, wetmore, lancea, mullan, naoto
 2022-04-19 20:07:57 +00:00
Michael McMahon
7f2a3ca289 8281561: Disable http DIGEST mechanism with MD5 and SHA-1 by default 
Reviewed-by: weijun, dfuchs
 2022-03-28 13:51:55 +00:00
Weijun Wang
ab867f6c7c 8272162: S4U2Self ticket without forwardable flag 
Reviewed-by: valeriep
 2021-12-01 00:48:28 +00:00
Sean Mullan
6d91a3eb7b 8269039: Disable SHA-1 Signed JARs 
Reviewed-by: weijun
 2021-09-21 13:45:47 +00:00
Roger Riggs
6889a39a3f 8268826: Cleanup Override in Context-Specific Deserialization Filters 
Reviewed-by: dfuchs, bchristi
 2021-07-09 14:33:56 +00:00
Weijun Wang
e2d7ec38af 8267100: [BACKOUT] JDK-8196415 Disable SHA-1 Signed JARs 
Co-authored-by: Sean Mullan <mullan@openjdk.org>
Reviewed-by: hchao, xuelei
 2021-06-22 00:41:45 +00:00
Roger Riggs
13d6180421 8264859: Implement Context-Specific Deserialization Filters 
Reviewed-by: bchristi, dfuchs, chegar
 2021-06-09 12:30:07 +00:00
Stuart Marks
7c85f3510c 8267123: Remove RMI Activation 
Reviewed-by: erikj, rriggs, alanb
 2021-05-27 15:19:45 +00:00
Sean Mullan
278057756a 8196415: Disable SHA-1 Signed JARs 
Reviewed-by: coffeys
 2021-04-28 17:13:21 +00:00
Aleksei Efimov
17a741d6bc 8244473: Contextualize registration for JNDI 
Also reviewed by Chris Ries <chris.ries@oracle.com>

Reviewed-by: dfuchs, rriggs, rhalade, skoivu, mullan
 2021-04-20 21:45:52 +00:00
Sean Mullan
a6427c85ee 8259709: Disable SHA-1 XML Signatures 
Reviewed-by: rhalade, weijun
 2021-03-04 17:21:37 +00:00
Sean Mullan
baf46bac41 8259801: Enable XML Signature secure validation mode by default 
Reviewed-by: weijun, rhalade
 2021-01-28 14:28:27 +00:00
Jamil Nimeh
8554fe6ebc 8253866: Security Libs Terminology Refresh 
Reviewed-by: erikj, weijun, mullan
 2021-01-14 16:36:51 +00:00
Bradford Wetmore
fe5cccc1ec 8254631: Better support ALPN byte wire values in SunJSSE 
Reviewed-by: xuelei, dfuchs
 2020-12-02 04:14:28 +00:00
Sean Mullan
3a4b90f086 8202343: Disable TLS 1.0 and 1.1 
Reviewed-by: xuelei, dfuchs, coffeys
 2020-11-19 14:15:57 +00:00
Weijun Wang
f77a658557 8153005: Upgrade the default PKCS12 encryption/MAC algorithms 
Reviewed-by: mullan
 2020-10-30 13:23:33 +00:00
Anthony Scarpino
0b83fc0150 8235710: Remove the legacy elliptic curves 
Reviewed-by: xuelei, erikj
 2020-09-25 02:40:36 +00:00
Mikael Vidstedt
071bd521bc 8244224: Implementation of JEP 381: Remove the Solaris and SPARC Ports 
Reviewed-by: alanb, bchristi, dcubed, dfuchs, eosterlund, erikj, glaubitz, ihse, iignatyev, jjiang, kbarrett, ksrini, kvn, naoto, prr, rriggs, serb, sspitsyn, stefank, tschatzl, valeriep, weijun, weijun
 2020-05-20 17:33:37 -07:00
Hai-May Chao
f04a7e5cb4 8172404: Tools should warn if weak algorithms are used before restricting them 
Reviewed-by: mullan, weijun
 2020-04-17 20:11:39 +08:00
Martin Balao
1c651455a7 8241888: Mirror jdk.security.allowNonCaAnchor system property with a security one 
Reviewed-by: mullan
 2020-04-02 18:18:23 -03:00
Sean Mullan
fb37c54630 8238560: Cleanup and consolidate algorithms in the jdk.tls.legacyAlgorithms security property 
Reviewed-by: xuelei
 2020-02-20 16:36:38 -05:00
Sean Mullan
2fbbce2b23 8191395: policy.allowSystemProperty and policy.expandProperties also apply to JAAS configurations 
Reviewed-by: weijun
 2020-02-12 10:28:59 -05:00
Anthony Scarpino
ca112043f1 8233228: Disable weak named curves by default in TLS, CertPath, and Signed JAR 
Reviewed-by: mullan, xuelei, weijun
 2019-12-18 12:10:09 -08:00
Sean Mullan
dd321330ce 8234870: Deprecate the OracleUcrypto JCE Provider for removal 
Reviewed-by: alanb, rriggs
 2019-12-11 17:17:28 -05:00
Martin Balao
0e5a288dfe 8233404: System property to set the number of PBE iterations in JCEKS keystores 
Reviewed-by: weijun
 2019-11-12 00:30:55 -03:00
Weijun Wang
9eb755e85e 8209901: Canonical file handling 
Reviewed-by: mullan, alanb, ahgross
 2019-04-22 13:01:57 +08:00
Weijun Wang
cb06712f5a 8220302: Better Kerberos ccache handling 
Reviewed-by: valeriep
 2019-04-19 10:22:20 +08:00
Weijun Wang
ca919052e9 8229767: Typo in java.security: Sasl.createClient and Sasl.createServer 
Reviewed-by: xuelei
 2019-08-15 15:39:43 +08:00
Xue-Lei Andrew Fan
316140ff92 8226374: Restrict TLS signature schemes and named groups 
Reviewed-by: mullan
 2019-08-12 21:36:29 -07:00
Martin Balao
5aae9ef0db 8215032: Support Kerberos cross-realm referrals (RFC 6806) 
Reviewed-by: weijun
 2019-06-05 01:42:11 -03:00
Lance Andersen
2c002e9355 8224682: Remove the com.sun.CORBA.ORBIorTypeCheckRegistryFilter security property 
Reviewed-by: bchristi
 2019-05-24 15:06:58 -04:00