stan/jdk-24
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
34,935 Commits 2 Branches 0 Tags 1.2 GiB
a4b38b4a43
Commit Graph

156 Commits

Author SHA1 Message Date
Amanda Jiang
746ed2b4eb 8050281: New permission tests for JEP 140 
Reviewed-by: mullan
 2014-09-18 15:36:38 -04:00
Zaiyao Liu
0fdc2863c1 8048621: Implement basic keystore tests 
Reviewed-by: xuelei
 2014-09-03 06:57:40 +00:00
Raghu Nair
259c3ec2e9 8048362: Tests for doPrivileged with accomplice 
Reviewed-by: vinnie
 2014-09-03 02:11:16 +00:00
Zaiyao Liu
ee35cf6516 8048617: Tests for PKCS12 read operations 
Reviewed-by: weijun
 2014-08-27 11:33:45 +08:00
Zaiyao Liu
f34547460c 8050370: Need new regressions tests for messageDigest with DigestIOStream 
Reviewed-by: weijun
 2014-08-26 15:10:29 +08:00
Valerie Peng
efa54ce543 8043406: Change default policy for JCE providers to run with as few privileges as possible 
Provide default permissions for crypto providers

Reviewed-by: mullan, vinnie
 2014-07-10 22:44:58 +00:00
Weijun Wang
fa14289859 8040769: add a comment to the NewInstance test 
Reviewed-by: wetmore
 2014-04-17 09:48:21 +08:00
Weijun Wang
ce428ecfec 8039853: Provider.Service.newInstance() does not work with current JDK JGSS Mechanisms 
Reviewed-by: mullan
 2014-04-16 10:39:36 +08:00
Rajan Halade
56b41822fb 8033271: Manual security tests have @ignore rather than @run main/manual 
Reviewed-by: xuelei, wetmore
 2014-03-18 15:04:59 -07:00
Artem Smotrakov
727989dc5d 8028591: NegativeArraySizeException in sun.security.util.DerInputStream.getUnalignedBitString() 
Reviewed-by: mullan, weijun
 2014-03-13 15:13:22 +08:00
Lana Steuck
657b9db1ba 8029235: Update copyright year to match last edit in jdk8 jdk repository for 2013 
Updated files with 2011, 2012 and 2013 years according to the file's last updated date

Reviewed-by: tbell, lancea, chegar
 2013-12-26 12:04:16 -08:00
Sean Mullan
7699817903 8025708: Certificate Path Building problem with AKI serial number 
Reviewed-by: xuelei, juh
 2014-02-17 11:36:40 -05:00
Vladimir Kozlov
57b7b831ae Merge 2014-01-28 14:57:41 -08:00
Vladimir Kozlov
9c83896027 Merge 2014-01-22 14:17:32 -08:00
Artem Smotrakov
f85948cc0c 8028431: NullPointerException in DerValue.equals(DerValue) 
Reviewed-by: mullan
 2014-01-21 16:54:26 -05:00
Volker Simonis
70041ae4e4 8028537: PPC64: Updated the JDK regression tests to run on AIX 
Co-authored-by: Jonathan Lu <luchsh@linux.vnet.ibm.com>
Co-authored-by: Steve Poole <spoole@linux.vnet.ibm.com>
Reviewed-by: alanb
 2014-01-17 21:54:30 +01:00
Anthony Scarpino
aa8188c26b 8030823: Security Providers need to have their version numbers updated for JDK9 
Reviewed-by: xuelei, wetmore
 2014-01-07 14:35:57 -08:00
Joe Darcy
48ce9464b0 8031651: Remove unneeded -source and -target flags in jdk repo regression tests 
Reviewed-by: dfuchs, mullan
 2014-01-14 10:08:24 -08:00
Xue-Lei Andrew Fan
520ada1ca7 8030829: Add MD5 to jdk.certpath.disabledAlgorithms security property 
Reviewed-by: mullan, weijun
 2014-01-13 21:12:58 -08:00
Sergey Bylokhov
9ab430a0d2 8027696: Incorrect copyright header in the tests 
Reviewed-by: alanb, malenkov, mullan
 2013-11-12 20:24:25 +04:00
Bradford Wetmore
1b03814ab7 8027526: CheckTipsAndVersions.java failing occasionally 
Reviewed-by: mullan, mchung
 2013-10-30 16:49:35 -07:00
Jason Uh
c6ac4eb557 8025287: NPE in api/java_security/cert/PKIXRevocationChecker/GeneralTests_GeneralTests 
Reviewed-by: mullan
 2013-10-22 11:57:38 -07:00
Anthony Scarpino
bae7582243 7122707: Security Providers need to have their version numbers updated for JDK8 
Reviewed-by: xuelei
 2013-09-19 11:59:14 -07:00
Sean Mullan
23d61e9b45 8023362: Don't allow soft-fail behavior if OCSP responder returns "unauthorized" 
Reviewed-by: vinnie, xuelei
 2013-09-06 12:04:18 -04:00
Sean Mullan
7474815db8 Merge 2013-08-02 08:37:25 -04:00
Sean Mullan
0844d3e77b 8001319: Add SecurityPermission "insertProvider" target name 
Reviewed-by: vinnie
 2013-08-02 08:30:46 -04:00
Sean Mullan
5c30826657 Merge 2013-07-25 11:09:28 -04:00
Sean Mullan
74a0cc9f37 8010748: Add PKIXRevocationChecker NO_FALLBACK option and improve SOFT_FAIL option 
Reviewed-by: vinnie
 2013-07-25 10:58:00 -04:00
Vinnie Ryan
3300eed0bb 8019627: RuntimeException gets obscured during OCSP cert revocation checking 
Reviewed-by: mullan
 2013-07-12 20:44:34 +01:00
Vinnie Ryan
53ecefacac 8019259: Failover to CRL checking does not happen if wrong OCSP responder URL is set 
Reviewed-by: xuelei
 2013-07-01 14:39:47 +01:00
Weijun Wang
af996219c7 8001326: Improve Kerberos caching 
Reviewed-by: valeriep
 2013-06-21 18:26:13 +08:00
Deven You
c778d84388 8014620: Signature.getAlgorithm return null in special case 
Reviewed-by: wetmore
 2013-06-17 17:36:20 -07:00
Jeff Nisewanger
c0c2397857 8014097: add doPrivileged methods with limited privilege scope 
Reviewed-by: mchung
 2013-06-04 15:33:42 -07:00
David Holmes
390cc1d7a1 Merge 2013-02-17 16:44:19 -05:00
Vinnie Ryan
3d55cc1e02 8007934: algorithm parameters for PBE Scheme 2 not decoded correctly in PKCS12 keystore 
Reviewed-by: mullan
 2013-02-13 16:01:26 +00:00
David Holmes
eb1726c151 Merge 2013-02-04 18:08:50 -05:00
Vinnie Ryan
ddbfa5fe53 8006994: Cleanup PKCS12 tests to ensure streams get closed 
Reviewed-by: mullan
 2013-02-04 17:20:26 +00:00
Vinnie Ryan
3727e751f6 8006855: PKCS12 test failures due to unsupported algorithm 
Reviewed-by: mullan
 2013-01-24 16:44:15 +00:00
Vinnie Ryan
7dcd0b38a8 8006591: Protect keystore entries using stronger PBE algorithms 
Reviewed-by: mullan
 2013-01-23 21:25:49 +00:00
Alan Bateman
a23a1a942b 8004502: Compact Profiles contents 
Reviewed-by: dholmes, mchung
 2013-01-21 23:35:36 -05:00
Alan Bateman
c12b624078 8005978: shell tests need to use the $COMPILEJDK for javac, jar and other tools 
Reviewed-by: chegar
 2013-01-11 20:19:55 +00:00
Sean Mullan
86b40c8697 Merge 2013-01-09 08:59:58 -05:00
Sean Mullan
d01edb0815 Merge 2013-01-08 19:02:55 -05:00
Sean Mullan
b492dc9bac 7019834: Eliminate dependency from PolicyFile to com.sun.security.auth.PrincipalComparator 
Add new java.security.Principal.implies method

Reviewed-by: alanb
 2013-01-08 19:00:12 -05:00
Lana Steuck
b7af263526 Merge 2012-12-28 18:36:41 -08:00
Xue-Lei Andrew Fan
6d41a58c82 7109274: Restrict the use of certificates with RSA keys less than 1024 bits 
This restriction is applied via the Java Security property, "jdk.certpath.disabledAlgorithms". This will impact providers that adhere to this security property.

Reviewed-by: mullan
 2012-12-28 00:48:12 -08:00
David Katleman
306cab1006 8004982: JDK8 source with GPL header errors 
Reviewed-by: ohair
 2012-12-20 16:24:50 -08:00
Mark Sheppard
c9063f559f 8003890: corelibs test scripts should pass TESTVMOPTS 
Reviewed-by: chegar, alanb
 2012-12-13 14:47:35 +00:00
Sean Mullan
3f59d3882d Merge 2012-11-26 08:23:20 -05:00
Sean Mullan
c9b91fa45a 7167056: Clarify that BasicPermission names that contain non-wildcard asterisks are not invalid 
Reviewed-by: weijun, xuelei
 2012-11-26 08:12:19 -05:00
Sean Mullan
4e6425e134 Merge 2012-11-05 12:08:04 -05:00
Sean Mullan
5b23307a8f 7171570: JEP 124 Potential API Changes 
Reviewed-by: vinnie, xuelei
 2012-11-05 10:30:49 -05:00
Alan Bateman
430592a30e 7197491: update copyright year to match last edit in jdk8 jdk repository 
Reviewed-by: chegar, ksrini
 2012-11-02 15:50:11 +00:00
Sean Mullan
6ad27831e0 7176326: CertPath/CertPathBuilderTest failures after webrev 6854712_6637288_7126011 
Reviewed-by: xuelei
 2012-06-15 08:43:31 -04:00
Jonathan Lu
775655b44a 7172149: ArrayIndexOutOfBoundsException from Signature.verify 
Take care of integer addition overflow

Reviewed-by: xuelei, wetmore
 2012-06-06 18:39:09 -07:00
Sean Mullan
63e39d6ee7 Merge 2012-05-31 17:07:28 -04:00
Sean Mullan
14c586557e 6854712: Revocation checking enhancements (JEP-124) 
6637288: Add OCSP support to PKIX CertPathBuilder implementation
7126011: ReverseBuilder.getMatchingCACerts may throws NPE

Reviewed-by: xuelei
 2012-05-30 17:19:46 -04:00
Sean Mullan
ac620e811d 7152564: Improve CodeSource.matchLocation(CodeSource) performance 
7155693: CodeSource.matchLocation getPort test can be improved

Reviewed-by: chegar
 2012-04-13 09:46:25 -04:00
Alan Bateman
3269d85838 7113349: Initial changeset for Macosx port to jdk 
Co-authored-by: Alexander Potochkin <alexander.potochkin@oracle.com>
Co-authored-by: Alexander Zuev <alexander.zuev@oracle.com>
Co-authored-by: Andrew Brygin <andrew.brygin@oracle.com>
Co-authored-by: Artem Ananiev <artem.ananiev@oracle.com>
Co-authored-by: Alex Strange <astrange@apple.com>
Co-authored-by: Bino George <bino@apple.com>
Co-authored-by: Christine Lu <christine.lu@oracle.com>
Co-authored-by: David Katleman <david.katleman@oracle.com>
Co-authored-by: David Durrence <david_durrence@apple.com>
Co-authored-by: Dmitry Cherepanov <dmitry.cherepanov@oracle.com>
Co-authored-by: Greg Lewis <glewis@eyesbeyond.com>
Co-authored-by: Kevin Miller <kevin_m_miller@apple.com>
Co-authored-by: Kurt Miller <kurt@intricatesoftware.com>
Co-authored-by: Landon Fuller <landonf@plausiblelabs.com>
Co-authored-by: Leonid Romanov <leonid.romanov@oracle.com>
Co-authored-by: Loefty Walkowiak <loefty@apple.com>
Co-authored-by: Mark Reinhold <mark.reinhold@oracle.com>
Co-authored-by: Naoto Sato <naoto.sato@oracle.com>
Co-authored-by: Philip Race <philip.race@oracle.com>
Co-authored-by: Roger Hoover <rhoover@apple.com>
Co-authored-by: Scott Kovatch <scott.kovatch@oracle.com>
Co-authored-by: Sergey ByloKhov <sergey.bylokhov@oracle.com>
Co-authored-by: Mike Swingler <swingler@apple.com>
Co-authored-by: Tomas Hurka <tomas.hurka@oracle.com>
Reviewed-by: jjh, alanb, dholmes, anthony, ohrstrom, ksrini, jrose, weijun, smarks
 2012-03-06 20:34:38 +00:00
Valerie Peng
eafb7ad68c 7088989: Improve the performance for T4 by utilizing the newly provided crypto APIs 
Added the OracleUcrypto provider for utilizing the Solaris ucrypto API.

Reviewed-by: weijun
 2012-01-12 16:04:03 -08:00
Weijun Wang
b0fb95c8d3 7081411: DSA keypair generation affected by Solaris bug 
Reviewed-by: xuelei, mullan, alanb
 2011-09-05 18:17:55 +08:00
Weijun Wang
610c9dd4e3 7055363: jdk_security3 test target cleanup 
Reviewed-by: alanb, xuelei
 2011-08-12 12:26:31 +08:00
Lana Steuck
69ce407621 Merge 2011-06-22 23:23:58 -07:00
Weijun Wang
700f4e1951 7054918: jdk_security1 test target cleanup 
Reviewed-by: alanb, smarks, vinnie
 2011-06-20 19:17:47 +08:00
Weijun Wang
8bdce645f3 7054428: test/java/security/SecureClassLoader/DefineClassByteBuffer.java error 
Reviewed-by: alanb
 2011-06-20 17:38:15 +08:00
Bradford Wetmore
33be52be86 7052537: java/security/Security/NotInstalledProviders.java is causing -samevm tests to fail 
Reviewed-by: valeriep, asaha, alanb
 2011-06-09 14:24:09 -07:00
Lana Steuck
4ce35dcaa5 Merge 2011-06-06 19:04:30 -07:00
Sean Mullan
998c791227 7050329: test/java/security/Policy/GetPermissions/JarURL.java fails on Windows 
Reviewed-by: alanb
 2011-06-04 06:45:17 -07:00
Abhijit Saha
cfdb3ec24b Merge 2011-05-26 21:37:40 -07:00
Deepak Bhole
b49a7d2768 7044443: Permissions resolved incorrectly for jar protocol (Patch from bugs.openjdk.java.net) 
Reviewed-by: alanb, chegar
 2011-05-24 14:15:14 -07:00
Vinnie Ryan
87259cf6b3 6738532: Error in Elliptic Curve NamedCurve determination. (related to PKCS11) 
Reviewed-by: valeriep
 2011-05-04 20:38:45 +01:00
Abhijit Saha
68c514a747 Merge 2011-04-20 09:31:11 -07:00
Kelly O'Hair
d2b1e20c7d 7033660: Update copyright year to 2011 on any files changed in 2011 
Reviewed-by: dholmes
 2011-04-06 22:06:11 -07:00
Weijun Wang
314c75c742 7020531: test: java/security/cert/CertificateFactory/openssl/OpenSSLCert.java file not closed after run 
Reviewed-by: alanb, smarks
 2011-03-01 16:22:22 +08:00
Weijun Wang
e8b79573d2 6618658: Deserialization allows creation of mutable SignedObject 
Reviewed-by: hawtin, mullan
 2011-02-09 11:50:29 +08:00
Kelly O'Hair
6b6a611c8e 6962318: Update copyright year 
Reviewed-by: xdono
 2010-12-28 15:53:50 -08:00
Vinnie Ryan
26382e27dd 6799854: CodeSigner.hashCode() does not work with serialization 
Reviewed-by: mullan
 2010-12-13 14:58:52 +00:00
Valerie Peng
b3d5652149 6203816: Can not run test/java/security/Security/ClassLoaderDeadlock.sh from the command line 
Fixed the script to not delete the provider sub-directory

Reviewed-by: weijun
 2010-11-19 16:59:48 -08:00
Sean Mullan
8676006f11 6994717: expired certificate in test ValidateCertPath 
Reviewed-by: vinnie
 2010-11-08 11:33:24 -05:00
Kelly O'Hair
f7e31fc6c2 6982137: Rebranding pass 2 - missed copyright changes 
Reviewed-by: mbykov
 2010-09-09 16:26:46 -07:00
Lana Steuck
fd45b4188c Merge 2010-05-28 12:10:14 -07:00
Kelly O'Hair
fe008ae27a 6943119: Rebrand source copyright notices 
Reviewed-by: darcy, weijun
 2010-05-25 15:58:33 -07:00
Weijun Wang
37ae69dba3 6948781: CertificateFactory.generateCertificate doesn't throw CertificateException for malformed certificate 
Reviewed-by: mullan
 2010-05-24 09:37:16 +08:00
Weijun Wang
512e4f93a3 6813340: X509Factory should not depend on is.available()==0 
Reviewed-by: xuelei
 2010-03-25 12:07:42 +08:00
Vinnie Ryan
0f70e6a821 6921001: api/java_security/IdentityScope/IdentityScopeTests.html#getSystemScope fails starting from b78 JDK7 
Reviewed-by: mullan
 2010-03-01 17:54:31 +00:00
Pavel Tisnovsky
f57059f5b4 6917663: test/java/security/Provider/Turkish.java not samevm friendly 
Added othervm flag to ensure that this test will run in isolation.

Reviewed-by: alanb
 2010-01-18 17:53:26 +01:00
Joe Darcy
c40412f4f4 6907177: Update jdk tests to remove unncessary -source and -target options 
Reviewed-by: ohair
 2009-12-03 18:19:10 -08:00
Bradford Wetmore
fc188b8b29 6867657: Many JSN tests do not run under cygwin 
Reviewed-by: ohair
 2009-08-06 17:56:59 -07:00
Tim Bell
a2d17d381e Merge 2009-07-13 23:58:49 -07:00
Xue-Lei Andrew Fan
5ba2fd7d33 6852744: PIT b61: PKI test suite fails because self signed certificates are beingrejected 
Make the builder aware of SKID/AKID, break the internal circular dependences

Reviewed-by: mullan
 2009-07-10 17:27:13 +08:00
Andy Herrick
974a4682e4 Merge 2009-06-29 12:06:42 -04:00
Andy Herrick
e487e25584 6797688: Umbrella: Merge all JDK 6u4 - 6u12 deployment code into JDK7 
6845973: Update JDK7 with deployment changes in 6u13, 6u14
4802695: Support 64-bit Java Plug-in and Java webstart on Windows/Linux on AMD64
6825019: DownloadManager should not be loaded and referenced for full JRE
6738770: REGRESSION:JSException throws when use LiveConnect javascript facility
6772884: plugin2 : java.lang.OutOfMemoryError or crash
6707535: Crossing domain hole affecting multiple sites/domains using plug-in
6728071: Non-verification of Update files may allow unintended updates
6704154: Code loaded from local filesystem should not get access to localhost
6727081: Web Start security restrictions bypass using special extension jnlp
6727079: Java Web Start Socket() restriction bypass
6727071: Cache location/user name information disclosure in SingleInstanceImpl
6716217: AppletClassLoader adds permissions based on codebase regardless of CS
6694892: Java Webstart inclusion via system properties override [CVE-2008-2086]
6704074: localhost socket access due to cache location exposed
6703909: Java webstart arbitrary file creation using nativelib
6665315: browser crashes when deployment.properties has more slashes ( / )
6660121: Encoding values in JNLP files can cause buffer overflow
6606110: URLConnection.setProxiedHost for resources that are loaded via proxy
6581221: SSV(VISTA): Redirection FAILS to work if user does a downgrade install
6609756: Buffer Overflow in Java ActiveX component
6608712: Bypassing the same origin policy in Java with crafted names
6534630: "gnumake clobber" doesn't
6849953: JDK7 - replacement of bufferoverflowU.lib on amd64 breaks build
6849029: Need some JDK7 merge clean-up after comments on the webrev
6847582: Build problem on JDK7 with isSecureProperty in merge
6827935: JDK 7 deployment merging - problem in Compiler-msvm.gmk
6823215: latest merge fixes from 6u12 -> JDK7
6816153: further mergers for JDK7 deployment integration
6807074: Fix Java Kernel and JQS in initial JDK7 builds

Initial changeset for implementing 6uX Deployment Features into JDK7

Reviewed-by: dgu, billyh
 2009-06-12 14:56:32 -04:00
Xue-Lei Andrew Fan
06370a8f01 6845286: Add regression test for name constraints 
Create regression test cases on name constraints

Reviewed-by: weijun
 2009-05-27 17:48:22 +08:00
Xue-Lei Andrew Fan
93614a3c7d 6720721: CRL check with circular depency support needed 
Checking AKID of certificates and CRLs

Reviewed-by: mullan, weijun
 2009-05-26 16:43:22 +08:00
Kelly O'Hair
2756e99316 6835241: Annotate some tests with @ignore that have shown to be unpredictable 
Reviewed-by: tbell
 2009-04-28 14:43:44 -07:00
Valerie Peng
bca01e0826 6829098: Regression test java/security/Security/ClassLoaderDeadlock/Deadlock2.java error - missing ";" 
Added back the missing ";"

Reviewed-by: weijun
 2009-04-13 18:20:51 -07:00
Valerie Peng
a2a7ded4d4 6440846: (cl) Deadlock between AppClassLoader and ExtClassLoader 
Fixed a deadlock between the two class loaders

Reviewed-by: alanb
 2009-04-06 18:52:03 -07:00
Xue-Lei Andrew Fan
6a44e920f6 6383095: CRL revoked certificate failures masked by OCSP failures 
Remove the mask if certificate revoked

Reviewed-by: mullan
 2009-03-17 11:54:13 +08:00
Xue-Lei Andrew Fan
ff67e1ba9a 6549506: Specification of Permission.toString() method contradicts with JDK implementation 
Update the spec, and add double quotes around component.

Reviewed-by: weijun
 2009-03-02 23:17:53 +08:00
Weijun Wang
7465090acf 6535697: keytool can be more flexible on format of PEM-encoded X.509 certificates 
Reviewed-by: vinnie
 2009-02-23 10:03:36 +08:00