OpenJDK Security Development

This forum is an archive for the mailing list security-dev@openjdk.java.net (more options) Messages posted here will be sent to this mailing list.
The term "Security" has broad meanings and interpretations. It spans a wide range of areas, including cryptography, public key infrastructure, secure communication, authentication, and access control. The security component thus comprises a large set of APIs, tools, and implementations of commonly-used security algorithms and protocols.

As security concepts such as permissions are tightly interwoven throughout the entire Java source code, these component pages do not address issues in the other primary component areas (language features and virtual machine implementations, core libraries, graphics subsystems, hotspot, serviceability, etc). For a more detailed treatment, please see the corresponding component pages.

The primary emphasis of these pages is to explore the core security components source bases, and hopefully, get developers up to speed quickly.
123456 ... 248
Topics (8674)
Replies Last Post Views
RFR (12): 8191053: Provide a mechanism to make system's security manager immutable by Sean Mullan
54
by Alan Bateman
RFR 8210395: Add doc to SecurityTools.java by Weijun Wang
2
by Sean Mullan
Conceptual feedback on new ECC JEP by Adam Petcher
36
by Adam Petcher
RFR (XS) 8200381 : Typos in javadoc - missing verb "be" and alike by Ivan Gerasimov
5
by Bradford Wetmore
RFR[12] JDK-8209546: Make sun/security/tools/keytool/autotest.sh to support macosx by sha.jiang
13
by Weijun Wang
sun.security.ssl.ProtocolVersion.valueOf(...) in Java8 and TLSv1.3 by Norman Maurer
3
by Norman Maurer
Security provider self-integrity checking changes in JDK 9.0? by John Gray
1
by Bradford Wetmore
RFR11(s): 8207317: SSLEngine negotiation fail exception behavior changed from fail-fast to fail-lazy by Martin Choma
0
by Martin Choma
NPE during SSL handshake caused by HostnameChecker by Norman Maurer
2
by Norman Maurer
RFR: JDK-8210918, Add test to exercise server-side client hello processing by Jamil Nimeh
12
by Xuelei Fan-2
RFR: backport of JDK-8209916, JDK-8210334, JDK-8210846 to jdk11u by Jamil Nimeh
3
by Jamil Nimeh
How does securely obtain and verify openjdk repositories as a non-contributor? by David Black
3
by David Black
Code Review Request, JDK-8210974 : No extensions debug log for ClientHello by Xuelei Fan-2
2
by Bradford Wetmore
Re: SSL session cache default maximum number of entries by Sean Mullan
3
by Hohensee, Paul
TLSv.1.3 interropt problems with OpenSSL 1.1.1 when used on the client side with mutual auth by Norman Maurer
12
by Norman Maurer
Java 11 - SSL handshake for ECDH cipher suites trigger Invalid ECDH ServerKeyExchange with non-default security provider by Jaikiran Pai
6
by Jaikiran Pai
[8u-dev] RFR JDK-8187218 & JDK-8131051, two krb5 fixes on renewable by Prasadrao Koppula
2
by Prasadrao Koppula
Re: RFR: JDK-8210846, TLSv.1.3 interop problems with OpenSSL 1.1.1 when used on the client side with mutual auth by Jamil Nimeh
0
by Jamil Nimeh
RFR: JDK-8210846, TLSv.1.3 interop problems with OpenSSL 1.1.1 when used on the client side with mutual auth by Jamil Nimeh
4
by Norman Maurer
RFR(XS): 8210912: Build error in src/jdk.crypto.cryptoki/share/native/libj2pkcs11/p11_convert.c after JDK-8029661 by Mikael Vidstedt-3
2
by Mikael Vidstedt-3
RFR JDK-8029661: JDK-Support TLS v1.2 algorithm in SunPKCS11 provider by Martin Balao
24
by Martin Balao
Expose SSLContextImpl#AbstractTrustManagerWrapper so it can be used with custom SSLEngine / SSLContextSPI implementations as well by Norman Maurer
8
by Pallavi Sonal
Java 11 RC - Handshake failure in certain specific cases throws a different exception than previous versions by Jaikiran Pai
3
by Jaikiran Pai
RFR(s): 8208641: SSLSocket should throw an exception when configuring DTLS by Anthony Scarpino
2
by Anthony Scarpino
Re: <AWT Dev> [12] Review Request: 8210692 The "com.sun.awt.SecurityWarning" class can be dropped by Alan Bateman
1
by Mandy Chung
RFR 8210786 : Typo s/overriden/overridden/ in several places by Ivan Gerasimov
3
by Weijun Wang
[PATCH] Trivial typo fix in X509ExtendedKeyManager javadoc by Jaikiran Pai
2
by Jaikiran Pai
RFR 8210736: jdk/javax/xml/crypto/dsig/GenerationTests.java slow on linux by Weijun Wang
3
by Sean Mullan
Re: [12] Review Request: 8210692 The "com.sun.awt.SecurityWarning" class can be dropped by Stuart Marks
0
by Stuart Marks
Code Review Request, JDK-8209916 : NPE in SupportedGroupsExtension by Xuelei Fan-2
4
by Bradford Wetmore
NPE in SupportedGroupsExtension by Thomas Lu├čnig-2
7
by Bradford Wetmore
Re: [RFR] 8205525 : Improve exception messages during manifest parsing of jar archives by Sean Mullan
50
by Langer, Christoph
RSACore$BlindingParameters not using user-provided SecureRandom by Weijun Wang
0
by Weijun Wang
RFR: JDK-8210274: Source Launcher should work with a security manager by Jonathan Gibbons
7
by Mandy Chung
RFR 8205507: jdk/javax/xml/crypto/dsig/GenerationTests.java timed out by Weijun Wang
1
by Sean Mullan
123456 ... 248