OpenJDK Security Development

This forum is an archive for the mailing list security-dev@openjdk.java.net (more options) Messages posted here will be sent to this mailing list.
The term "Security" has broad meanings and interpretations. It spans a wide range of areas, including cryptography, public key infrastructure, secure communication, authentication, and access control. The security component thus comprises a large set of APIs, tools, and implementations of commonly-used security algorithms and protocols.

As security concepts such as permissions are tightly interwoven throughout the entire Java source code, these component pages do not address issues in the other primary component areas (language features and virtual machine implementations, core libraries, graphics subsystems, hotspot, serviceability, etc). For a more detailed treatment, please see the corresponding component pages.

The primary emphasis of these pages is to explore the core security components source bases, and hopefully, get developers up to speed quickly.
1234 ... 248
Topics (8674)
Replies Last Post Views
RFR 6722928: Support SSPI as a native GSS-API provider by Weijun Wang
2
by Weijun Wang
RFR: 8210838: Override javax.crypto.Cipher.toString() by Seán Coffey
10
by Valerie Peng
RFR 8210476: sun/security/mscapi/PrngSlow.java fails with Still too slow by Weijun Wang
1
by Weijun Wang
RFR 8213202: Possible race condition in TLS 1.3 session resumption by Adam Petcher
1
by Jamil Nimeh
Re: RFR(S)JDK-8214074: Ghash optimization using AVX instructions by Bernd Eckenfels-4
0
by Bernd Eckenfels-4
Code Review Request, JDK-8213577, Update the default SSL session cache size to 20480 by Xuelei Fan-2
10
by Sean Mullan
RFR 8212003: Obsoleting the default keytool -keyalg option by Weijun Wang
2
by Weijun Wang
RFR: 8213952: Relax DNSName restriction as per RFC 1123 by Seán Coffey
3
by Bernd Eckenfels-4
RFR: 8148188: Enhance the security libraries to record events of interest by Seán Coffey
19
by Sean Mullan
RFR 8213363: X25519 private key PKCS#8 encoding/decoding is incorrect by Adam Petcher
4
by Sean Mullan
RFR 8212003: Obsoleting the default keytool -keyalg option by Weijun Wang
11
by Weijun Wang
downport of JDK-8209965 / JDK-8210005 by Lindenmaier, Goetz
0
by Lindenmaier, Goetz
RFR 8026953: Add support for MS Cryptography next generation (CNG) (step 1) by Weijun Wang
7
by Weijun Wang
Re: Problems with AES-GCM native acceleration by Severin Gehwolf
3
by Gidon Gershinsky
RFR CSR for 8213400: Support choosing curve name in keytool keypair generation by Weijun Wang
32
by Weijun Wang
[12] RFR: 8211787: javax/net/ssl/TLSCommon/TLSTest.java throws java.net.SocketTimeoutException: Read timed out by Sibabrata Sahoo
1
by Xuelei Fan-2
RFR, JDK-8212885: TLS 1.3 resumed session does not retain peer certificate chain by Jamil Nimeh
8
by Xuelei Fan-2
CSR Review Request, JDK-8213577, Update the default SSL session cache size to 20480 by Xuelei Fan-2
4
by Jamil Nimeh
Code Review Request : JDK-8213694 : Test Timeout.java should run in othervm mode by Xuelei Fan-2
1
by Jamil Nimeh
A new proposal to add methods to HttpsURLConnection to access SSLSession by Xuelei Fan-2
13
by Sean Mullan
FW: RFR: 8211752: JNU_ThrowIOExceptionWithLastErrorAndPath - enhance some IOExceptions with path causing the issue by Baesken, Matthias
8
by Sean Mullan
NamedCurve.getName() by Weijun Wang
0
by Weijun Wang
Additional debug log message in KeyTab by Lars Francke
3
by Seán Coffey
[RFR] JDK-8213154: Update copyright headers of files in src tree that are missing Classpath exception by Martin Balao
5
by Andrew Hughes-8
RFR 6913047: SunPKCS11 memory leak by Martin Balao
23
by Martin Balao
java.lang.NoSuchFieldError: state by Martin Choma-2
2
by Martin Choma-2
RFR[12] JDK-8211049 "Second parameter of "initialize" method is not used" by Valerie Peng
5
by Valerie Peng
Re: RFR(M) 8212605: Pure-Java implementation of AccessController.doPrivileged by Peter
8
by dean.long
RFR[s] 8211339: NPE during SSL handshake caused by HostnameChecker by Anthony Scarpino
2
by Norman Maurer
RE: RFR 8213031: (zipfs) Add support for POSIX file permissions by Langer, Christoph
9
by Volker Simonis
TLSv1.3 fails to read cert chain after HTTP redirect by Daniel Christensen
1
by Jamil Nimeh
RFR (12): 8212669: Add note to Cipher javadoc about using full transformation and not relying on defaults by Sean Mullan
3
by Xuelei Fan-2
RFR 8212217: JGSS: Don't dispose() of creds too eagerly by Weijun Wang
6
by Sean Mullan
RFR [12]: 8191136: Remove deprecated java.security.{Certificate,Identity,IdentityScope,Signer} APIs by Sean Mullan
3
by Weijun Wang
RFR: 8207059: Update test certificates in QuoVadisCA.java test by Rajan Halade
2
by Sean Mullan
1234 ... 248