OpenJDK Security Development

This forum is an archive for the mailing list security-dev@openjdk.java.net (more options) Messages posted here will be sent to this mailing list.
The term "Security" has broad meanings and interpretations. It spans a wide range of areas, including cryptography, public key infrastructure, secure communication, authentication, and access control. The security component thus comprises a large set of APIs, tools, and implementations of commonly-used security algorithms and protocols.

As security concepts such as permissions are tightly interwoven throughout the entire Java source code, these component pages do not address issues in the other primary component areas (language features and virtual machine implementations, core libraries, graphics subsystems, hotspot, serviceability, etc). For a more detailed treatment, please see the corresponding component pages.

The primary emphasis of these pages is to explore the core security components source bases, and hopefully, get developers up to speed quickly.
1 ... 235236237238239240
Topics (8382)
Replies Last Post Views
[security-dev 00141]: hg: jdk7/jsn/jdk: 6571950: SSLSocket(raddr, rport, laddr, lport) allows null as laddr that spec doesn't reflect by Xuelei Fan
0
by Xuelei Fan
[security-dev 00140]: hg: jdk7/jsn/jdk: 6546671: (spec)javax.net.ssl.TrustManagerFactory.getInstance() throws undocumented NP; ... by Xuelei Fan
0
by Xuelei Fan
[security-dev 00139]: hg: jdk7/jsn/jdk: 6546639: (spec)javax.net.ssl.SSLContext.getInstance(null) throws undocumented NPE by Xuelei Fan
0
by Xuelei Fan
[security-dev 00137]: hg: jdk7/jsn/jdk: 6675606: javax.security.auth.login.Configuration does not recognize path with spaces by weijun.wang
0
by weijun.wang
[security-dev 00135]: hg: jdk7/jsn/jdk: 6683078: Update JCE framework and provider builds to work on read-only filesystems; ... by bradford.wetmore
0
by bradford.wetmore
[security-dev 00134]: hg: jdk7/jsn/jdk: 6668231: Presence of a critical subjectAltName causes JSSE's SunX509 to fail trusted checks by Xuelei Fan
0
by Xuelei Fan
[security-dev 00133]: hg: jdk7/jsn/jdk: 3 new changesets by yu-ching.peng
0
by yu-ching.peng
[security-dev 00132]: hg: jdk7/jsn/jdk: 6469580: 1.5.0_08 JVM crashes in SignatureHandlerLibrary::add on Fujitsu Primepower platform by bradford.wetmore
0
by bradford.wetmore
[security-dev 00131]: JSN Integration deadline at 3pm by bradford.wetmore
0
by bradford.wetmore
[security-dev 00130]: hg: jdk7/jsn/jdk: 6681652: Two new regression test failures in pkcs11 code by yu-ching.peng
0
by yu-ching.peng
[security-dev 00129]: hg: jdk7/jsn/langtools: 6618930: (javac) fix test after whitespace normalization by bradford.wetmore
0
by bradford.wetmore
[security-dev 00128]: hg: jdk7/jsn/jdk: 67 new changesets by bradford.wetmore
0
by bradford.wetmore
[security-dev 00127]: hg: jdk7/jsn/jaxws: 6652588: Fix broken JPRT makefile target, no bundle saved by bradford.wetmore
0
by bradford.wetmore
[security-dev 00126]: hg: jdk7/jsn/jaxp: 6652588: Fix broken JPRT makefile target, no bundle saved by bradford.wetmore
0
by bradford.wetmore
[security-dev 00125]: hg: jdk7/jsn/corba: 6624808: corba makefiles not using langtools compiler by bradford.wetmore
0
by bradford.wetmore
[security-dev 00124]: hg: jdk7/jsn: 4 new changesets by bradford.wetmore
0
by bradford.wetmore
[security-dev 00123]: hg: jdk7/jsn/jdk: 4 new changesets by yu-ching.peng
0
by yu-ching.peng
[security-dev 00122]: Tech doc: JGSS in Windows by weijun.wang
0
by weijun.wang
[security-dev 00119]: hg: jdk7/jsn/jdk: 6670362: HTTP/SPNEGO should work across realms by weijun.wang
2
by weijun.wang
[security-dev 00118]: hg: jdk7/jsn/langtools: 3 new changesets by bradford.wetmore
0
by bradford.wetmore
[security-dev 00117]: hg: jdk7/jsn/jdk: 4 new changesets by bradford.wetmore
0
by bradford.wetmore
[security-dev 00116]: hg: jdk7/jsn/jdk: 2 new changesets by bradford.wetmore
0
by bradford.wetmore
[security-dev 00115]: Multiple Login-Modules in com.sun.security.jgss.accept by AsafM
0
by AsafM
[security-dev 00114]: hg: jdk7/jsn/jdk: 6447412: Issue with socket.close() for ssl sockets when poweroff on other system by Xuelei Fan
0
by Xuelei Fan
[security-dev 00113]: hg: jdk7/jsn/jdk: 6542796: CPU issue with JSSE and tomcat by Xuelei Fan
0
by Xuelei Fan
[security-dev 00112]: hg: jdk7/jsn/jdk: 6618387: SSL client sessions do not close cleanly. A TCP reset occurs instead of a close_notify alert. by Xuelei Fan
0
by Xuelei Fan
[security-dev 00111]: hg: jdk7/jsn/jdk: 6648816: REGRESSION: setting -Djava.security.debug=failure result in NPE in ACC by Xuelei Fan
0
by Xuelei Fan
[security-dev 00110]: First JSN codefreeze is next Monday at noon. by bradford.wetmore
0
by bradford.wetmore
[security-dev 00109]: hg: jdk7/jsn/jdk: 2 new changesets by sean.mullan
0
by sean.mullan
[security-dev 00107]: JSSE sends a packet for every send()? by weijun.wang
1
by Florian Weimer
[security-dev 00106]: Introductory JSN Gate information by bradford.wetmore
0
by bradford.wetmore
[security-dev 00105]: hg: jdk7/jsn/langtools: 8 new changesets by bradford.wetmore
0
by bradford.wetmore
[security-dev 00104]: hg: jdk7/jsn/jdk: 35 new changesets by bradford.wetmore
0
by bradford.wetmore
[security-dev 00103]: How to get the default Kerberos realm? by weijun.wang
0
by weijun.wang
[security-dev 00102]: hg: jdk7/jsn/jdk: 6673164: dns_fallback parse error by weijun.wang
0
by weijun.wang
1 ... 235236237238239240