infernap12/jdk
1
0
Fork 0
mirror of https://github.com/openjdk/jdk.git synced 2026-06-07 02:55:21 +00:00
Code Issues Packages Projects Releases Wiki Activity
86,843 Commits 309 Branches 1,094 Tags
Commit Graph

886 Commits

Author SHA1 Message Date
Valerie Peng
e55124041e 8375549: ConcurrentModificationException if jdk.crypto.disabledAlgorithms has multiple entries with known oid 
Reviewed-by: mullan, coffeys
 2026-01-23 19:46:40 +00:00
Daniel Jeliński
25d2b52ab9 8328046: Need to keep leading zeros in TlsPremasterSecret of TLS1.3 DHKeyAgreement 
Reviewed-by: hchao
 2026-01-22 21:48:28 +00:00
Hai-May Chao
96a2649e29 8373408: SHA1withECDSA is not required for ECDHE and ECDSA 
Reviewed-by: djelinski, ascarpino
 2026-01-22 17:41:00 +00:00
Artur Barashev
025041ba04 8370885: Default namedGroups values are not being filtered against algorithm constraints 
Reviewed-by: hchao
 2026-01-22 13:11:42 +00:00
Brent Christian
e25a5a4821 Merge 
Reviewed-by: kcr, prr, smarks
 2026-01-21 01:28:38 +00:00
Hai-May Chao
21dc41f744 8314323: Implement JEP 527: TLS 1.3 Hybrid Key Exchange 
Co-authored-by: Jamil Nimeh <jnimeh@openjdk.org>
Co-authored-by: Weijun Wang <weijun@openjdk.org>
Reviewed-by: wetmore, mullan
 2026-01-20 16:16:38 +00:00
Jamil Nimeh
07f981f6b0 8368032: Enhance Certificate Checking 
Reviewed-by: ahgross, coffeys, rhalade, mullan, abarashev
 2026-01-18 20:22:55 -08:00
Hai-May Chao
a1b039aa98 8286032: keytool -list -alias should not assume it is always a certificate 
Reviewed-by: weijun
 2026-01-15 22:33:34 +00:00
Artur Barashev
78a106ffbb 8375183: Remove unused SSLConfiguration.maximumProtocolVersion variable 
Reviewed-by: djelinski, myankelevich, hchao
 2026-01-15 13:18:20 +00:00
John Jiang
a726e834b6 8373231: ECDSAOperations::toAffinePoint is redundant 
Reviewed-by: mullan
 2026-01-10 00:52:34 +00:00
Mark Powers
92abc6dfe4 8369282: Distrust TLS server certificates anchored by Chunghwa ePKI Root CA 
Reviewed-by: mullan
 2026-01-08 17:35:43 +00:00
Weijun Wang
fbc59ac0a1 8374555: No need for visible input warning in s.s.u.Password when not reading from System.in 
Reviewed-by: coffeys, hchao
 2026-01-06 18:05:27 +00:00
Fernando Guallini
532a0a65b1 8372950: Pem.pemEncoded should cache the Pattern 
Reviewed-by: ascarpino
 2026-01-06 10:53:27 +00:00
Artur Barashev
3439512401 8374317: Change GCM IV size to 12 bytes when encrypting/decrypting TLS session ticket 
Reviewed-by: djelinski, mpowers, ascarpino
 2026-01-02 13:28:15 +00:00
Sergey Bylokhov
36d2c277c4 8374327: Update copyright year to 2025 for files in java.base added/updated by commits in 2025 
Reviewed-by: jpai
 2025-12-31 09:13:32 +00:00
Damon Nguyen
fb99ba6ccd 8373119: JDK 26 RDP1 L10n resource files update 
Reviewed-by: jlu, asemenyuk, almatvee
 2025-12-16 21:19:33 +00:00
Ferenc Rakoczi
6ec36d348b 8373059: Test sun/security/provider/acvp/ML_DSA_Intrinsic_Test.java should pass on Aarch64 
Reviewed-by: weijun, vpaprotski
 2025-12-12 16:04:56 +00:00
Artur Barashev
a99f340e1b 8371721: Refactor checkTrusted methods in X509TrustManagerImpl 
Reviewed-by: coffeys, djelinski
 2025-12-12 14:39:42 +00:00
Hai-May Chao
c2ea75b81f 8353749: Improve security warning when using JKS or JCEKS keystores 
Reviewed-by: weijun
 2025-11-21 01:10:35 +00:00
Weijun Wang
45a2fd37f0 8325448: Hybrid Public Key Encryption 
Reviewed-by: mullan, ascarpino, abarashev
 2025-11-20 15:15:41 +00:00
Sean Coffey
852141b9d4 8372004: Have SSLLogger implement System.Logger 
Reviewed-by: dfuchs, weijun
 2025-11-20 07:32:06 +00:00
Mark Powers
52ffe8a096 8371156: PBKDF2 default values should not be DER encoded 
Reviewed-by: weijun
 2025-11-17 14:59:30 +00:00
Anthony Scarpino
ad3dfaf1fc 8360564: Implement JEP 524: PEM Encodings of Cryptographic Objects (Second Preview) 
Reviewed-by: weijun, mullan
 2025-11-14 21:08:36 +00:00
Weijun Wang
2d4f2fde22 8349732: Add support for JARs signed with ML-DSA 
Reviewed-by: mullan
 2025-11-10 14:39:22 +00:00
Volkan Yazici
866faa9d40 8366577: Deprecate java.net.Socket::setPerformancePreferences 
Reviewed-by: dfuchs, alanb, jpai
 2025-11-07 08:15:42 +00:00
Artur Barashev
02a7217491 8366364: Return enabled signature schemes with SSLConfiguration#getSSLParameters() call 
Reviewed-by: mullan
 2025-11-03 15:05:16 +00:00
Mark Powers
1781b186b5 8343232: PKCS#12 KeyStore support for RFC 9879: Use of Password-Based Message Authentication Code 1 (PBMAC1) 
Reviewed-by: weijun, mullan
 2025-10-31 17:52:48 +00:00
Artur Barashev
436dc687ba 8367059: DTLS: loss of NewSessionTicket message results in handshake failure 
Reviewed-by: jnimeh, djelinski
 2025-10-29 17:25:31 +00:00
Pavel Rappo
28f2591bad 8370568: Refer to Thread.interrupted as "interrupted status" consistently 
Reviewed-by: jpai, rriggs, alanb
 2025-10-29 15:36:43 +00:00
Weijun Wang
012b4eb6ce 8370082: Intermediate objects clean up in ECDH, EdDSA, XDH, DHKEM, and HKDF 
Reviewed-by: ascarpino, abarashev, fandreuzzi
 2025-10-28 19:56:56 +00:00
Mikhail Yankelevich
5ebc2c7212 8369995: Fix StringIndexOutOfBoundsException and implement extra logging and/or propagate errors in X509KeyManagerImpl 
Co-authored-by: Daniel Jeliński <djelinski@openjdk.org>
Reviewed-by: wetmore, djelinski, abarashev
 2025-10-28 16:51:15 +00:00
Koushik Thirupattur
4377e7c9e8 8367008: Algorithm identifiers for HmacSHA* should always have NULL as params 
Reviewed-by: weijun
 2025-10-22 21:00:18 +00:00
Sean Mullan
e1d1fa91cf 8360937: Enhance certificate handling 
Reviewed-by: ahgross, rhalade, jnibedita, ascarpino, naoto
 2025-10-20 16:42:01 -07:00
Weijun Wang
a7a3a660e3 8354469: Keytool exposes the password in plain text when command is piped using | grep 
Reviewed-by: mullan, smarks, naoto, hchao
 2025-10-15 20:47:46 +00:00
Artur Barashev
233d3a8d43 8366244: TLS1.3 ChangeCipherSpec message received after the client's Finished message should trigger a connection abort with "unexpected message" 
Reviewed-by: hchao
 2025-10-09 13:59:31 +00:00
Daniel Jeliński
56baf64ada 8368520: TLS 1.3 KeyUpdate fails with SunPKCS11 provider 
Reviewed-by: valeriep
 2025-10-02 13:29:45 +00:00
Daniel Jeliński
3c9fd7688f 8368514: TLS stateless session ticket decryption fails on some providers 
Reviewed-by: valeriep, abarashev
 2025-09-25 18:47:32 +00:00
Daniel Jeliński
80cb0ead50 8367133: DTLS: fragmentation of Finished message results in handshake failure 
Reviewed-by: jnimeh
 2025-09-25 18:17:19 +00:00
Artur Barashev
569e78080b 8365820: Apply certificate scope constraints to algorithms in "signature_algorithms" extension when "signature_algorithms_cert" extension is not being sent 
Reviewed-by: hchao
 2025-09-25 14:44:06 +00:00
Alice Pellegrini
ba44656b97 8366454: TLS1.3 server fails with bad_record_mac when receiving encrypted records with empty body 
Co-authored-by: Daniel Jeliński <djelinski@openjdk.org>
Reviewed-by: djelinski
 2025-09-25 08:44:14 +00:00
Sean Coffey
47efe3c794 8343395: SSLLogger doesn't work for formatted messages 
Reviewed-by: weijun
 2025-09-22 18:41:07 +00:00
Daniel Fuchs
e8db14f584 8349910: Implement JEP 517: HTTP/3 for the HTTP Client API 
Co-authored-by: Aleksei Efimov <aefimov@openjdk.org>
Co-authored-by: Bradford Wetmore <wetmore@openjdk.org>
Co-authored-by: Daniel Jeliński <djelinski@openjdk.org>
Co-authored-by: Darragh Clarke <dclarke@openjdk.org>
Co-authored-by: Jaikiran Pai <jpai@openjdk.org>
Co-authored-by: Michael McMahon <michaelm@openjdk.org>
Co-authored-by: Volkan Yazici <vyazici@openjdk.org>
Co-authored-by: Conor Cleary <conor.cleary@oracle.com>
Co-authored-by: Patrick Concannon <patrick.concannon@oracle.com>
Co-authored-by: Rahul Yadav <rahul.r.yadav@oracle.com>
Co-authored-by: Daniel Fuchs <dfuchs@openjdk.org>
Reviewed-by: djelinski, jpai, aefimov, abarashev, michaelm
 2025-09-22 10:12:12 +00:00
Artur Barashev
3798dcf75b 8367104: Check for RSASSA-PSS parameters when validating certificates against algorithm constraints 
Reviewed-by: mullan
 2025-09-19 13:06:25 +00:00
Ben Perez
72e5ad3d21 8365581: Optimize Java implementation of P256 arithmetic 
Reviewed-by: jnimeh
 2025-09-18 15:23:05 +00:00
Koushik Thirupattur
15d42c6d77 8366978: dead code in SunCertPathBuilder 
Reviewed-by: mullan, hchao
 2025-09-16 16:24:19 +00:00
Valerie Peng
35dabb1a5f 8244336: Restrict algorithms at JCE layer 
Reviewed-by: mullan, ascarpino, abarashev
 2025-09-12 20:16:33 +00:00
Artur Barashev
4ea8979b93 8365953: Key manager returns no certificates when handshakeSession is not an ExtendedSSLSession 
Reviewed-by: djelinski, wetmore
 2025-09-11 13:53:08 +00:00
Hai-May Chao
33d00a77f3 8294035: Remove null ids checking from keytool -gencrl 
Reviewed-by: weijun
 2025-08-28 16:36:14 +00:00
Kevin Driver
b5f450a599 8364226: Better ECDSASignature Memory Management 
Reviewed-by: ascarpino, hchao
 2025-08-04 15:59:57 +00:00
Artur Barashev
e544cd9920 8359956: Support algorithm constraints and certificate checks in SunX509 key manager 
Reviewed-by: mullan
 2025-07-31 13:57:19 +00:00