OpenJDK Security Development

This forum is an archive for the mailing list security-dev@openjdk.java.net (more options) Messages posted here will be sent to this mailing list.
The term "Security" has broad meanings and interpretations. It spans a wide range of areas, including cryptography, public key infrastructure, secure communication, authentication, and access control. The security component thus comprises a large set of APIs, tools, and implementations of commonly-used security algorithms and protocols.

As security concepts such as permissions are tightly interwoven throughout the entire Java source code, these component pages do not address issues in the other primary component areas (language features and virtual machine implementations, core libraries, graphics subsystems, hotspot, serviceability, etc). For a more detailed treatment, please see the corresponding component pages.

The primary emphasis of these pages is to explore the core security components source bases, and hopefully, get developers up to speed quickly.
1234 ... 250
Topics (8735)
Replies Last Post Views
Re: Not possible to disable new TLS extensions for TLS 1.2 connections by Amir Khassaia
6
by Amir Khassaia
RFR 8215776: Keytool importkeystore may mix up certificate chain entries when DNs conflict by Weijun Wang
7
by Weijun Wang
RFR 6722928: Support SSPI as a native GSS-API provider by Weijun Wang
43
by Weijun Wang
JDK-8215102 (Follow-up) by Dennis Gesker
7
by Dennis Gesker
ManifestDigester fails with a manifest ending in CR by Philipp Kunz
4
by Weijun Wang
[13] RFR 8215937: Check usages of security-related Resources files by Weijun Wang
3
by Sean Mullan
RFR (XS) 8217344 : Make comparison overflow-aware in ECDHKeyAgreement.engineGenerateSecret() by Ivan Gerasimov
1
by Adam Petcher
Jarsigner compatibility issue invalidating existing signatures by Philipp Kunz
1
by Weijun Wang
RFR[12] JDK-8203687: javax/net/ssl/compatibility/Compatibility.java supports TLS 1.3 by sha.jiang
3
by Xuelei Fan-2
RFR (12): 8215318: Amend the Standard Algorithm Names specification to clarify that names can be defined in later versions by Sean Mullan
3
by Sean Mullan
[12] RFR: 8216280: Allow later Symantec Policy distrust date for two Apple SubCAs by Sean Mullan
1
by Seán Coffey
Code Review Request, JDK-8216045 The size of key_exchange may be wrong on FFDHE by Xuelei Fan-2
1
by Jamil Nimeh
[12] RFR 8215694: keytool cannot generate RSASSA-PSS certificates by Weijun Wang
8
by Xuelei Fan-2
RFR 8217088: Disable JDK-6913047 fix (SunPKCS11 memory leak) after JDK-8216597 (SIGBUS error in getNativeKeyInfo) by Martin Balao
3
by Martin Balao
Is TLS1.3 support missing the "certificate_authorities" extension? by Andrew Leonard
5
by Xuelei Fan-2
RFR 8216597: SIGBUS in Java_sun_security_pkcs11_wrapper_PKCS11_getNativeKeyInfo after JDK-6913047 by Martin Balao
1
by David Holmes
RE: RFR 8213031: (zipfs) Add support for POSIX file permissions by Langer, Christoph
13
by Langer, Christoph
Code Review Request, JDK-8214418 HttpClient falls in running with 100% cpu usage after an error signalled on channel by Xuelei Fan-2
7
by Daniel Fuchs
Is this a "bug"? =>JDK-8206925: Support the "certificate_authorities" extension by Andrew Leonard
0
by Andrew Leonard
RFR 6913047: SunPKCS11 memory leak by Martin Balao
29
by Martin Balao
New cryptographic primitives by Eric McCorkle-2
1
by Adam Petcher
JCA Provider Service by Will Sargent
4
by Will Sargent
Not possible to disable new TLS extensions for TLS 1.2 connections by Amir Khassaia
1
by Xuelei Fan-2
RFR: 8179943 Typo in javax.net.ssl.SSLSession.removeValue(String) method documentation by Roger Calnan
1
by Seán Coffey
java.lang.Error is swallowed by LoginContext#invoke by Vincent
6
by Vincent
RFR CSR for 8213400: Support choosing curve name in keytool keypair generation by Weijun Wang
37
by Weijun Wang
RFR 8215769: Java cannot probe pkcs12 files exported by Firefox by Weijun Wang
2
by Sean Mullan
RFR - CSR: 8213082: (zipfs) Add support for POSIX file permissions (was: Re: RFR 8213031: (zipfs) Add support for POSIX file permissions) by Langer, Christoph
1
by Joe Darcy
RFR 8215643: Microbenchmarks for KeyAgreement and Cipher by Adam Petcher
4
by Eric Caspole-2
jdk11u and jdk/jdk : jtreg test error in security/infra/java/security/cert/CertPathValidator/certification/ActalisCA.java by Baesken, Matthias
7
by Rajan Halade
RFR: 8214532,Update RFC 2459 references in javadoc to RFC 5280 by Seán Coffey
2
by Seán Coffey
RFR[12] JDK-8214096: sun.security.util.SignatureUtil passes null parameter, so JCE validation fails by Valerie Peng
6
by Weijun Wang
Code Review Request JDK-8215443: The use of TransportContext.fatal() leads to bad coding style by Xuelei Fan-2
3
by Anthony Scarpino
Re: RFR: 8214570 : Use {@systemProperty} for definitions of system properties by Sean Mullan
0
by Sean Mullan
RFR 8076190: Support passwordless access to PKCS12 keystores by Weijun Wang
29
by Weijun Wang
1234 ... 250