OpenJDK Security Development

This forum is an archive for the mailing list security-dev@openjdk.java.net (more options) Messages posted here will be sent to this mailing list.
The term "Security" has broad meanings and interpretations. It spans a wide range of areas, including cryptography, public key infrastructure, secure communication, authentication, and access control. The security component thus comprises a large set of APIs, tools, and implementations of commonly-used security algorithms and protocols.

As security concepts such as permissions are tightly interwoven throughout the entire Java source code, these component pages do not address issues in the other primary component areas (language features and virtual machine implementations, core libraries, graphics subsystems, hotspot, serviceability, etc). For a more detailed treatment, please see the corresponding component pages.

The primary emphasis of these pages is to explore the core security components source bases, and hopefully, get developers up to speed quickly.
123456 ... 245
Topics (8553)
Replies Last Post Views
RFR[11] JDK-8203007: Address missing block coverage for ChaCha20 and Poly1305 algorithms by sha.jiang
2
by Xue-Lei Fan
[8u] RFR for backport of JDK-8175120 and JDK-8164656 by Ramkumar Sunderbabu
0
by Ramkumar Sunderbabu
[11] RFR 8198352: java.util.MissingResourceException: sun.security.util.AuthResources when trying to use com.sun.security.auth.module.UnixLoginModule by Weijun Wang
1
by Xue-Lei Fan
(Open) RFR: 8205967: Remove sun/security/krb5/auto/UnboundSSL.java from ProblemList.txt by Andrew Wong
0
by Andrew Wong
[11] RFR: 8206355: SSLSessionImpl.getLocalPrincipal() throws NPE by Sibabrata Sahoo
1
by Xue-Lei Fan
[8u] RFR: 8074462: Handshake messages can be strictly ordered by Prasadrao Koppula
2
by Prasadrao Koppula
Failing PKCS11 tests if NSS is not installed by Thomas Stüfe-2
0
by Thomas Stüfe-2
RFR[11] JDK-8205984: javax/net/ssl/compatibility/Compatibility.java failed to access port log file by sha.jiang
1
by Xue-Lei Fan
RFR[11] JDK-8205720 "KeyFactory#getKeySpec and translateKey thorws NullPointerException with Invalid key" by Valerie Peng
1
by Xue-Lei Fan
Code review request: JDK-8046295 - Support Trusted CA Indication extension by Martin Balao
17
by Martin Balao
RFR 8205927: Update src/java.base/share/legal/public_suffix.md to match the actual file version by Weijun Wang
2
by Weijun Wang
[11] RFR: 8205653: test/jdk/sun/management/jmxremote/bootstrap/RmiRegistrySslTest.java and RmiSslBootstrapTest.sh fail with handshake_failure by Sibabrata Sahoo
1
by Sibabrata Sahoo
RFR: 8195774: Add Entrust root certificates by Rajan Halade
1
by Weijun Wang
RFR [11] CSR for "Add Brainpool ECC support (RFC 5639)" by Valerie Peng
6
by Tobias Wagner
On 8202598: [linux] keytool -certreq inconsistent with platform line.separator by Weijun Wang
2
by Weijun Wang
[11] RFR: JDK-8205111: Develop new Test to verify different key types for supported TLS protocols. by Sibabrata Sahoo
4
by Xue-Lei Fan
RFR 8202299: Java Keystore fails to load PKCS12/PFX certificates created in WindowsServer2016 by Weijun Wang
8
by Weijun Wang
RFR 8202608: CommonSeeder test needs a white-box testing mechanism to replace the default entropy source by Weijun Wang
1
by Xue-Lei Fan
RFR 8203228: Branch-free output conversion for X25519 and X448 by Adam Petcher
2
by Anthony Scarpino
Code Review Request: TLS 1.3 Implementation by Xue-Lei Fan
149
by Xue-Lei Fan
RFR 8201815: Use Mozilla Public Suffix List by Weijun Wang
9
by Weijun Wang
RFC: Add new JCA provider to support hardware RNGs by Gustavo Romero
2
by Gustavo Romero
RFR 8205445: Add RSASSA-PSS Signature support to SunMSCAPI by Weijun Wang
1
by Erik Joelsson
RFR CSR 8205446: Add RSASSA-PSS Signature support to SunMSCAPI by Weijun Wang
3
by Weijun Wang
Code Review Request: TLS 1.3 full handshake (JDK-8196584) by Xue-Lei Fan
27
by Anthony Scarpino
RFR [11] JDK-8204152: SignedObject throws NullPointerException for null keys with an initialized Signature object by Valerie Peng
1
by Xue-Lei Fan
Zip Slip documentation by Bernd Eckenfels-4
0
by Bernd Eckenfels-4
RFR 8177334: Update xmldsig implementation to Apache Santuario 2.1.1 by Weijun Wang
5
by Sean Mullan
RFR: 8204923: Restore Symantec root verisignclass2g2ca by Rajan Halade
1
by Sean Mullan
RFR: 8196141: Add GoDaddy root certificates by Rajan Halade
1
by Sean Mullan
JDK-6722928 Support SSPI as a native JGSS-API provider - Current Status by Cole Ferrier
2
by Weijun Wang
RFR JDK-8178374: Problematic ByteBuffer handling in CipherSpi.bufferCrypt method by Valerie Peng
1
by Anthony Scarpino
RFR (XL): JDK-8204572 SetupJdkLibrary should setup SRC and -I flags automatically by Magnus Ihse Bursie
2
by Erik Joelsson
[Sandbox] *OutputStream fixes for TLS 1.3 branch by Jamil Nimeh
0
by Jamil Nimeh
[Sandbox]: ChaCha20 cipher suite prototype by Jamil Nimeh
2
by Jamil Nimeh
123456 ... 245