Quantcast

OpenJDK Security Development

This forum is an archive for the mailing list security-dev@openjdk.java.net (more options) Messages posted here will be sent to this mailing list.
The term "Security" has broad meanings and interpretations. It spans a wide range of areas, including cryptography, public key infrastructure, secure communication, authentication, and access control. The security component thus comprises a large set of APIs, tools, and implementations of commonly-used security algorithms and protocols.

As security concepts such as permissions are tightly interwoven throughout the entire Java source code, these component pages do not address issues in the other primary component areas (language features and virtual machine implementations, core libraries, graphics subsystems, hotspot, serviceability, etc). For a more detailed treatment, please see the corresponding component pages.

The primary emphasis of these pages is to explore the core security components source bases, and hopefully, get developers up to speed quickly.
1234567 ... 234
Topics (8188)
Replies Last Post Views
An Unexpected I/O exception with AsyncHttpClient while performing SSL requests by Shlomi Abramoviz
2
by dalibor topic-2
[9] RFR 8171443: (spec) An ALPN callback function may also ignore ALPN by Vincent Ryan
4
by Brad R. Wetmore
[9] RFR:8168769: javax/net/ssl/TLSv12/DisabledShortRSAKeys.java timed out by Tim Du
2
by Xuelei Fan-2
Code Review Request, 6972386 issues with String.toLowerCase/toUpperCase by Xuelei Fan-2
1
by Weijun Wang
RFR 8170900: Issue with FilePermission::implies for wildcard flag(-) by Weijun Wang
5
by Weijun Wang
[9] RFR 8161232: AsyncSSLSocketClose.java test fails timeout. by Sibabrata Sahoo
1
by Xuelei Fan-2
RFR[9] JDK-8168935: sun/security/ssl/SSLContextImpl/TrustTrustedCert.java failed Intermittently by John Jiang
3
by Xuelei Fan-2
[PATCH] 8170876: NPE in Cipher with java.security.debug=provider by Adam Petcher
3
by Adam Petcher
Code Review Request, JDK-8171337 Check for correct SSLEngineImpl/SSLSocketImpl.setSSLParameters handshaker update method by Xuelei Fan-2
2
by Xuelei Fan-2
RFR 8075618: Create tests to check jarsigner work with multi-version jar by Amanda Jiang
9
by Weijun Wang
RFR 8171353: New home for SecurityTools.java test utility by Weijun Wang
1
by Artem Smotrakov
[9] RFR 8170282: Enable ALPN parameters to be supplied during the TLS handshake by Vincent Ryan
13
by Vincent Ryan
RFR 8171340: HttpNegotiateServer/java test should not use system proxy on Mac by Weijun Wang
1
by Chris Hegarty
[9] RFR: 8166531: sun/security/ssl/SocketCreation/SocketCreation.java fails intermittently by Artem Smotrakov
2
by Artem Smotrakov
RFR[9] JDK-8171297: ProblemList javax/net/ssl/DTLS/PacketLossRetransmission.java due to JDK-8169086 by John Jiang
1
by Xuelei Fan-2
RFR[9] JDK-8164595: javax/net/ssl/FixingJavadocs/SSLSessionNulls.java fails intermittently with javax.net.ssl.SSLHandshakeException: Remote host terminated the handshake by John Jiang
4
by Xuelei Fan-2
RFR 8171190: Bump reference of NIST 800-57 Part 1 Rev 3 to Rev 4 in JarSigner API spec by Weijun Wang
3
by Weijun Wang
RFR 8168979: @implNote for invalid FilePermission by Weijun Wang
5
by Weijun Wang
On 8171135: Include javadoc on JarSigner API in security doc by Weijun Wang
2
by Weijun Wang
[PATCH] 8165751: NPE in Signature with java.security.debug=provider by Adam Petcher
9
by Xuelei Fan-2
RFR[9] JDK-8171043: ServerIdentityTest.java fails on Windows by John Jiang
4
by Xuelei Fan-2
JDK 9 RFR of JDK-8171062: Problem list ServerIdentityTest.java on window by joe darcy
1
by Xuelei Fan-2
Code Review Request, JDK-8171003, A couple of JSSE tests have been failing after JDK-8170329 by Xuelei Fan-2
2
by Anthony Scarpino
[PATCH] 8069128: remove deprecation warning suppression from KeychainStore by Adam Petcher
1
by Sean Mullan
[9] RFR 8079898: Resolve disabled warnings for libj2ucrypto by Valerie Peng
2
by Magnus Ihse Bursie
[PATCH] 8158517: Minor optimizations to ISO10126PADDING by Adam Petcher
2
by Bernd Eckenfels-4
Code Review Request JDK-8170329 New SSLSocket testing template by Xuelei Fan-2
15
by Sean Mullan
TLS session cache access (for FTP clients with data connection session reuse) by Bernd Eckenfels-4
2
by David M. Lloyd-3
[9] RFR JDK-8157529 : Remove intermittent key from javax/net/ssl/DTLS/CipherSuite.java by Tim Du
1
by Artem Smotrakov
RFR[9] JDK-8170523: Some PKCS11 test cases are ignored with security manager by John Jiang
3
by Sean Mullan
RFR: 8170157/8169335: Unlimited Cryptography Policy Changes by Brad R. Wetmore
2
by Seán Coffey
[9] RFR: JDK-8170245 [TEST_BUG] Cipher tests fail when running with unlimited policy by Valerie Peng
1
by Xuelei Fan-2
RFR: 8170131: Certificates not being blocked by jdk.tls.disabledAlgorithms property by Sean Mullan
6
by Sean Mullan
RFR(M): 8170525: Fix minor issues in awt coding by Lindenmaier, Goetz
14
by Philip Race
RFR: 8170602: Startup regression due to introduction of lambda in java.io.FilePermissionCollection by Claes Redestad
2
by Claes Redestad
1234567 ... 234