stan/jdk-24
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
45,360 Commits 2 Branches 0 Tags
Commit Graph

831 Commits

Author SHA1 Message Date
Xue-Lei Andrew Fan
4efe3a9cb7 7027797: take care of ECDH_anon/DH_anon server key exchange for TLS 1.2 
The signature of server key exanage message could be null

Reviewed-by: vinnie
 2011-03-21 22:02:00 -07:00
Xue-Lei Andrew Fan
7705e63e30 7022855: Export "PKIX" as the standard algorithm name of KeyManagerFactory 
Export the existing "NewSunX509" algorithm implementation using the standard name "PKIX"

Reviewed-by: weijun, wetmore
 2011-03-15 23:13:35 -07:00
Vinnie Ryan
328f8c8455 6986477: sun/security/mscapi/AccessKeyStore.sh test is failing on jdk7 
Reviewed-by: valeriep
 2011-03-11 09:55:03 +00:00
Valerie Peng
1daa47b01d 6994008: PKCS11 should support "RSA" and "RSA/ECB/NoPadding" ciphers 
Add support for RSA_X_509 mechanism and aliasing of "RSA" to "RSA/ECB/PKCS1Padding".

Reviewed-by: wetmore
 2011-03-07 14:14:37 -08:00
Weijun Wang
314c75c742 7020531: test: java/security/cert/CertificateFactory/openssl/OpenSSLCert.java file not closed after run 
Reviewed-by: alanb, smarks
 2011-03-01 16:22:22 +08:00
Weijun Wang
b777a1fbae 7021789: Remove jarsigner -crl option 
Reviewed-by: mullan
 2011-02-28 23:02:37 +08:00
Valerie Peng
4ce8048909 6604496: Support for CKM_AES_CTR (counter mode) 
Enhanced SunPKCS11 provider to support AES/CTR/NoPadding transformation.

Reviewed-by: vinnie
 2011-02-22 12:01:35 -08:00
Weijun Wang
d4fbb08ec0 7018928: test failure: sun/security/krb5/auto/SSL.java 
Reviewed-by: valeriep
 2011-02-15 12:11:15 +08:00
Sean Coffey
6ed5196d7d 7016897: Copyright header correction : test/sun/security/provider/SeedGenerator/SeedGeneratorChoice.java 
Reviewed-by: vinnie
 2011-02-03 11:28:04 +00:00
Xue-Lei Andrew Fan
85a3f20cef 7011497: new CertPathValidatorException.BasicReason enum constant for constrained algorithm 
Add new BasicReason and improve trust anchor searching method during cert path validation

Reviewed-by: mullan
 2011-02-01 04:45:10 -08:00
Stuart Marks
ba58eb7896 7012003: diamond conversion for ssl 
Reviewed-by: wetmore
 2011-01-14 15:31:45 -08:00
Stuart Marks
07549260db 7008713: diamond conversion of kerberos5 and security tools 
Reviewed-by: weijun
 2011-01-12 13:52:09 -08:00
Lana Steuck
fb91d40572 Merge 2011-01-04 17:05:38 -08:00
Kelly O'Hair
6b6a611c8e 6962318: Update copyright year 
Reviewed-by: xdono
 2010-12-28 15:53:50 -08:00
Valerie Peng
16faa79cf4 6581254: pkcs11 provider fails to parse configuration file contains windows short path 
Modified configuration parsing code to support "~".

Reviewed-by: weijun
 2010-12-22 18:30:34 -08:00
Weijun Wang
fdbca6b5f6 6975866: api/org_ietf/jgss/GSSContext/index.html#wrapUnwrapIOTest started to fail since jdk7 b102 
Reviewed-by: valeriep
 2010-12-17 11:03:33 +08:00
Sean Coffey
6c39971cb7 6998583: NativeSeedGenerator is making 8192 byte read requests from entropy pool on each init 
Reviewed-by: wetmore, andrew, vinnie
 2010-12-10 15:11:47 +00:00
Weijun Wang
d9f1152680 6896700: Validation of signatures succeed when it should fail 
Reviewed-by: wetmore
 2010-12-06 10:48:18 +08:00
Weijun Wang
6ad8ffe59b 7004168: jarsigner -verify checks for KeyUsage codesigning ext on all certs instead of just signing cert 
Reviewed-by: mullan
 2010-12-06 10:46:26 +08:00
Weijun Wang
1d7abe0313 7004035: signed jar with only META-INF/* inside is not verifiable 
Reviewed-by: mullan
 2010-12-06 10:46:18 +08:00
Weijun Wang
3281356d0f 7004721: ktarg.sh fails when there's no default realm 
Reviewed-by: xuelei
 2010-12-06 06:49:18 +08:00
Weijun Wang
9f743252e5 7002036: ktab return code changes on a error case 
Reviewed-by: valeriep
 2010-11-24 07:43:06 +08:00
Weijun Wang
11c0d2dbec 6979329: CCacheInputStream fails to read ticket cache files from Kerberos 1.8.1 
Reviewed-by: valeriep
 2010-11-22 09:43:58 +08:00
Valerie Peng
358ee90f29 6720456: New 4150 may have larger blowfish keysizes 
Changed to use TBD value instead of FAIL

Reviewed-by: weijun
 2010-11-19 17:05:47 -08:00
Valerie Peng
0ec3c185d5 6687725: Internal PKCS5Padding impl should throw IllegalBlockSizeException and not BadPaddingException 
Changed to throw IllegalBlockSizeException when the data length isn't multiples of block size

Reviewed-by: wetmore
 2010-11-15 14:38:41 -08:00
Weijun Wang
707e6f0318 6960894: Better AS-REQ creation and processing 
Reviewed-by: valeriep
 2010-11-12 21:33:14 +08:00
Weijun Wang
2fa98fdbd7 6987827: security/util/Resources.java needs improvement 
Reviewed-by: valeriep
 2010-11-11 15:51:12 +08:00
Weijun Wang
5b6c23c809 6952519: kdc_timeout is not being honoured when using TCP 
Reviewed-by: valeriep
 2010-11-09 08:34:11 +08:00
Weijun Wang
42b61014b3 6997740: ktab entry related test compilation error 
Reviewed-by: valeriep
 2010-11-06 09:11:18 +08:00
Xue-Lei Andrew Fan
f685cc171a 6916074: Add support for TLS 1.2 
6985179: To support Server Name Indication extension for JSSE client

Introduces the algorithm constraints to support signature and hash algorithm selection. Includes contributions from wetmore and weijung.

Reviewed-by: wetmore, weijun
 2010-11-01 22:02:35 -07:00
Xue-Lei Andrew Fan
aab01a90d7 4873188: Support TLS 1.1 
Reviewed-by: wetmore, weijun
 2010-10-30 18:39:17 +08:00
Weijun Wang
d2ef113186 6950546: "ktab -d name etype" to "ktab -d name [-e etype] [kvno | all | old]" 
6984764: kerberos fails if service side keytab is generated using JDK ktab

Reviewed-by: valeriep
 2010-10-28 21:14:44 +08:00
Chris Hegarty
0615bd9a48 Merge 2010-10-08 11:27:55 +01:00
Lana Steuck
53e6cf8989 Merge 2010-09-25 12:00:05 -07:00
Weijun Wang
b32aa9d2d5 6986868: TEST failure: sun/security/tools/jarsigner/crl.sh 
Reviewed-by: ohair
 2010-09-25 10:21:30 +08:00
Lana Steuck
a682d9348d Merge 2010-09-16 11:19:43 -07:00
Weijun Wang
ce46bf1737 6982840: sun/security/tools/jarsigner/emptymanifest.sh fails 
Reviewed-by: dholmes
 2010-09-14 10:18:16 +08:00
Kelly O'Hair
f7e31fc6c2 6982137: Rebranding pass 2 - missed copyright changes 
Reviewed-by: mbykov
 2010-09-09 16:26:46 -07:00
Weijun Wang
34198dbc4c 6976536: Solaris JREs do not have the krb5.kdc.bad.policy configured by default 
Reviewed-by: valeriep
 2010-08-19 11:26:32 +08:00
Chris Hegarty
784f62993b 6973030: NTLM proxy authentication fails with https 
Reviewed-by: michaelm
 2010-08-03 12:03:03 +01:00
Weijun Wang
9d92d626e3 6972005: ConfPlusProp.java test failure when DNS has info for realm 
Reviewed-by: xuelei
 2010-07-26 17:21:51 +08:00
Xue-Lei Andrew Fan
f5561769de 6867345: Turkish regional options cause NPE in sun.security.x509.AlgorithmId.algOID 
Reviewed-by: mullan, weijun
 2010-07-24 22:59:41 +08:00
Abhijit Saha
1e52a8c736 Merge 2010-07-16 09:26:55 -07:00
Weijun Wang
c20e1ffd6c 6670889: Keystore created under Hindi Locale causing ArrayIndexOutOfBoundsException 
Reviewed-by: chegar
 2010-07-13 20:27:01 +08:00
Abhijit Saha
97d968d3ff Merge 2010-06-24 10:56:00 -07:00
Weijun Wang
c93ecb6623 6946669: SSL/Krb5 should not call EncryptedData.reset(data, false) 
Reviewed-by: xuelei
 2010-06-24 14:26:35 +08:00
Weijun Wang
6426b52076 6844907: krb5 etype order should be from strong to weak 
Reviewed-by: valeriep
 2010-06-24 14:26:28 +08:00
Weijun Wang
4bdcad4b69 6958026: Problem with PKCS12 keystore 
Reviewed-by: mullan
 2010-06-24 14:26:22 +08:00
Weijun Wang
5141220c5e 6959292: regression: cannot login if session key and preauth does not use the same etype 
Reviewed-by: xuelei, valeriep
 2010-06-17 13:46:15 +08:00
Xue-Lei Andrew Fan
53a219bfee 6914943: Implement final TLS renegotiation fix 
RFC 5746 implementation

Reviewed-by: wetmore, weijun
 2010-06-12 00:42:51 -07:00