stan/jdk-24
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
30,762 Commits 2 Branches 0 Tags 1.2 GiB
fa672c31d0
Commit Graph

562 Commits

Author SHA1 Message Date
Weijun Wang
1d7abe0313 7004035: signed jar with only META-INF/* inside is not verifiable 
Reviewed-by: mullan
 2010-12-06 10:46:18 +08:00
Weijun Wang
3281356d0f 7004721: ktarg.sh fails when there's no default realm 
Reviewed-by: xuelei
 2010-12-06 06:49:18 +08:00
Weijun Wang
9f743252e5 7002036: ktab return code changes on a error case 
Reviewed-by: valeriep
 2010-11-24 07:43:06 +08:00
Weijun Wang
11c0d2dbec 6979329: CCacheInputStream fails to read ticket cache files from Kerberos 1.8.1 
Reviewed-by: valeriep
 2010-11-22 09:43:58 +08:00
Valerie Peng
358ee90f29 6720456: New 4150 may have larger blowfish keysizes 
Changed to use TBD value instead of FAIL

Reviewed-by: weijun
 2010-11-19 17:05:47 -08:00
Valerie Peng
0ec3c185d5 6687725: Internal PKCS5Padding impl should throw IllegalBlockSizeException and not BadPaddingException 
Changed to throw IllegalBlockSizeException when the data length isn't multiples of block size

Reviewed-by: wetmore
 2010-11-15 14:38:41 -08:00
Weijun Wang
707e6f0318 6960894: Better AS-REQ creation and processing 
Reviewed-by: valeriep
 2010-11-12 21:33:14 +08:00
Weijun Wang
2fa98fdbd7 6987827: security/util/Resources.java needs improvement 
Reviewed-by: valeriep
 2010-11-11 15:51:12 +08:00
Weijun Wang
5b6c23c809 6952519: kdc_timeout is not being honoured when using TCP 
Reviewed-by: valeriep
 2010-11-09 08:34:11 +08:00
Weijun Wang
42b61014b3 6997740: ktab entry related test compilation error 
Reviewed-by: valeriep
 2010-11-06 09:11:18 +08:00
Xue-Lei Andrew Fan
f685cc171a 6916074: Add support for TLS 1.2 
6985179: To support Server Name Indication extension for JSSE client

Introduces the algorithm constraints to support signature and hash algorithm selection. Includes contributions from wetmore and weijung.

Reviewed-by: wetmore, weijun
 2010-11-01 22:02:35 -07:00
Xue-Lei Andrew Fan
aab01a90d7 4873188: Support TLS 1.1 
Reviewed-by: wetmore, weijun
 2010-10-30 18:39:17 +08:00
Weijun Wang
d2ef113186 6950546: "ktab -d name etype" to "ktab -d name [-e etype] [kvno | all | old]" 
6984764: kerberos fails if service side keytab is generated using JDK ktab

Reviewed-by: valeriep
 2010-10-28 21:14:44 +08:00
Chris Hegarty
0615bd9a48 Merge 2010-10-08 11:27:55 +01:00
Lana Steuck
53e6cf8989 Merge 2010-09-25 12:00:05 -07:00
Weijun Wang
b32aa9d2d5 6986868: TEST failure: sun/security/tools/jarsigner/crl.sh 
Reviewed-by: ohair
 2010-09-25 10:21:30 +08:00
Lana Steuck
a682d9348d Merge 2010-09-16 11:19:43 -07:00
Weijun Wang
ce46bf1737 6982840: sun/security/tools/jarsigner/emptymanifest.sh fails 
Reviewed-by: dholmes
 2010-09-14 10:18:16 +08:00
Kelly O'Hair
f7e31fc6c2 6982137: Rebranding pass 2 - missed copyright changes 
Reviewed-by: mbykov
 2010-09-09 16:26:46 -07:00
Weijun Wang
34198dbc4c 6976536: Solaris JREs do not have the krb5.kdc.bad.policy configured by default 
Reviewed-by: valeriep
 2010-08-19 11:26:32 +08:00
Chris Hegarty
784f62993b 6973030: NTLM proxy authentication fails with https 
Reviewed-by: michaelm
 2010-08-03 12:03:03 +01:00
Weijun Wang
9d92d626e3 6972005: ConfPlusProp.java test failure when DNS has info for realm 
Reviewed-by: xuelei
 2010-07-26 17:21:51 +08:00
Xue-Lei Andrew Fan
f5561769de 6867345: Turkish regional options cause NPE in sun.security.x509.AlgorithmId.algOID 
Reviewed-by: mullan, weijun
 2010-07-24 22:59:41 +08:00
Abhijit Saha
1e52a8c736 Merge 2010-07-16 09:26:55 -07:00
Weijun Wang
c20e1ffd6c 6670889: Keystore created under Hindi Locale causing ArrayIndexOutOfBoundsException 
Reviewed-by: chegar
 2010-07-13 20:27:01 +08:00
Abhijit Saha
97d968d3ff Merge 2010-06-24 10:56:00 -07:00
Weijun Wang
c93ecb6623 6946669: SSL/Krb5 should not call EncryptedData.reset(data, false) 
Reviewed-by: xuelei
 2010-06-24 14:26:35 +08:00
Weijun Wang
6426b52076 6844907: krb5 etype order should be from strong to weak 
Reviewed-by: valeriep
 2010-06-24 14:26:28 +08:00
Weijun Wang
4bdcad4b69 6958026: Problem with PKCS12 keystore 
Reviewed-by: mullan
 2010-06-24 14:26:22 +08:00
Weijun Wang
5141220c5e 6959292: regression: cannot login if session key and preauth does not use the same etype 
Reviewed-by: xuelei, valeriep
 2010-06-17 13:46:15 +08:00
Xue-Lei Andrew Fan
53a219bfee 6914943: Implement final TLS renegotiation fix 
RFC 5746 implementation

Reviewed-by: wetmore, weijun
 2010-06-12 00:42:51 -07:00
Weijun Wang
b0277a9631 6958869: regression: PKIXValidator fails when multiple trust anchors have same dn 
Reviewed-by: xuelei, wetmore, mullan
 2010-06-11 11:38:36 +08:00
Weijun Wang
2d9fcecd29 6951366: kerberos login failure on win2008 with AD set to win2000 compat mode 
Reviewed-by: valeriep, xuelei
 2010-06-04 19:28:53 +08:00
Weijun Wang
141897fe19 6950931: test fails on windows sun/security/tools/jarsigner/crl.sh 
Reviewed-by: wetmore, xuelei
 2010-06-01 10:52:42 +08:00
Lana Steuck
fd45b4188c Merge 2010-05-28 12:10:14 -07:00
Kelly O'Hair
fe008ae27a 6943119: Rebrand source copyright notices 
Reviewed-by: darcy, weijun
 2010-05-25 15:58:33 -07:00
Weijun Wang
235a3e379c 6948287: KDC test strange knvo 
Reviewed-by: xuelei
 2010-05-25 18:20:54 +08:00
Weijun Wang
480f0af4e8 6932525: Incorrect encryption types of KDC_REQ_BODY of AS-REQ with pre-authentication 
Reviewed-by: valeriep
 2010-05-24 10:05:04 +08:00
Weijun Wang
a7fbe2d858 6882687: KerberosTime too imprecise 
Reviewed-by: valeriep
 2010-05-24 09:37:02 +08:00
Weijun Wang
874ec0972c 6948803: CertPath validation regression caused by SHA1 replacement root and MD2 disable feature 
Reviewed-by: xuelei, mullan
 2010-05-24 09:28:06 +08:00
Weijun Wang
7c6813eb7a 6890876: jarsigner can add CRL info into signed jar 
Reviewed-by: mullan
 2010-05-06 13:42:52 +08:00
Weijun Wang
a94d06f6b7 6948909: Jarsigner removes MANIFEST.MF info for badly packages jar's 
Reviewed-by: mullan, xuelei
 2010-05-06 11:26:16 +08:00
Weijun Wang
20fbeb53cd 6844193: support max_retries in krb5.conf 
Reviewed-by: valeriep
 2010-04-29 15:51:10 +08:00
Weijun Wang
7cc72590c7 6856069: PrincipalName.clone() does not invoke super.clone() 
Reviewed-by: chegar
 2010-04-22 12:45:36 +08:00
Weijun Wang
5d137e0d2f 6944847: native gss lib names on linux 
Reviewed-by: valeriep
 2010-04-20 19:30:31 +08:00
Weijun Wang
592e8de4e1 6939248: Jarsigner can't extract Extended Key Usage from Timestamp Reply correctly 
Reviewed-by: xuelei, mullan
 2010-04-16 10:13:23 +08:00
Weijun Wang
7afbc895a8 6937978: let keytool -gencert generate the chain 
Reviewed-by: mullan
 2010-04-16 10:06:07 +08:00
Chris Hegarty
61ab8e5bfd 6943219: test/sun/security/ssl/sun/net/www/protocol/https/HttpsURLConnection/DNSIdentities.java fail in linux 
Reviewed-by: andrew
 2010-04-15 16:37:16 +01:00
Xue-Lei Andrew Fan
52e1e32cdb 6941936: Broken pipe error of test case DNSIdentities.java 
Reviewed-by: chegar
 2010-04-10 09:13:12 +08:00
Abhijit Saha
39f32d7819 Merge 2010-03-29 07:17:02 -07:00
Xue-Lei Andrew Fan
0f50eeb222 6693917: regression tests need to update for supporting ECC on solaris 11 
Reviewed-by: weijun
 2010-03-29 13:27:25 +08:00
Abhijit Saha
4e39344d24 Merge 2010-03-24 17:32:04 -07:00
Abhijit Saha
b60d36a19a Merge 2010-03-24 14:16:57 -07:00
Chris Hegarty
498067c8a3 6614957: HttpsURLConnection not using the set SSLSocketFactory for creating all its Sockets 
6771432: createSocket() - smpatch fails using 1.6.0_10 because of "Unconnected sockets not implemented"
6766775: X509 certificate hostname checking is broken in JDK1.6.0_10

All three bugs are interdependent

Reviewed-by: xuelei
 2010-03-23 13:54:36 +00:00
Valerie Peng
b05376b108 6837847: PKCS#11 A SecureRandom and a serialization error following installation of 1.5.0_18 
Added a custom readObject method to PKCS11 SecureRandom impl

Reviewed-by: wetmore
 2010-03-18 17:56:39 -07:00
Valerie Peng
c0cdafcd43 6695485: SignedObject constructor throws ProviderException if it's called using provider "SunPKCS11-Solaris" 
Added checking for RSA key lengths in initSign and initVerify

Reviewed-by: vinnie
 2010-03-18 17:05:42 -07:00
Weijun Wang
23a0fee518 6829283: HTTP/Negotiate: Autheticator triggered again when user cancels the first one 
Reviewed-by: chegar
 2010-03-18 18:26:37 +08:00
Weijun Wang
69e5f8b791 6868865: Test: sun/security/tools/jarsigner/oldsig.sh fails under all platforms 
Reviewed-by: wetmore
 2010-03-17 09:55:04 +08:00
Weijun Wang
8055ab99b7 6844909: support allow_weak_crypto in krb5.conf 
Reviewed-by: valeriep
 2010-03-04 10:37:16 +08:00
Weijun Wang
913e14a463 6922482: keytool's help on -file always shows 'output file' 
Reviewed-by: wetmore
 2010-02-03 17:04:52 +08:00
Weijun Wang
4641ee098b 6919610: KeyTabInputStream uses static field for per-instance value 
Reviewed-by: mullan
 2010-01-26 17:03:48 +08:00
Weijun Wang
9645beba5c 6917791: KeyTabEntry, when the byte value smaller then 16, the string drop '0' 
Reviewed-by: xuelei
 2010-01-19 11:43:45 +08:00
Weijun Wang
a3071a3b47 6913636: kvno check in JSSE 
Reviewed-by: valeriep
 2010-01-05 10:40:44 +08:00
Weijun Wang
d6e00a699d 6895424: RFC 5653 
Reviewed-by: valeriep
 2010-01-05 10:40:36 +08:00
Weijun Wang
56ac52238f 6907425: JCK Kerberos tests fail since b77 
Reviewed-by: valeriep
 2009-12-24 13:56:28 +08:00
Weijun Wang
709a5076d8 6843127: krb5 should not try to access unavailable kdc too often 
Reviewed-by: valeriep, mullan
 2009-12-24 13:56:19 +08:00
Weijun Wang
8e1f9a0dd3 6908628: ObjectIdentifier s11n test fails 
Reviewed-by: xuelei
 2009-12-09 11:15:25 +08:00
Xue-Lei Andrew Fan
309744138c 6898739: TLS renegotiation issue 
The interim fix disables TLS/SSL renegotiation

Reviewed-by: mullan, chegar, wetmore
 2009-12-07 21:16:41 -08:00
Joe Darcy
c40412f4f4 6907177: Update jdk tests to remove unncessary -source and -target options 
Reviewed-by: ohair
 2009-12-03 18:19:10 -08:00
Vinnie Ryan
5debca27af 6906854: SSL/Krb5 testcase should not use a fixed port number 
Reviewed-by: alanb
 2009-12-03 21:30:27 +00:00
Vinnie Ryan
7a403456e5 Merge 2009-12-02 17:34:56 +00:00
Vinnie Ryan
6e6324c607 6906510: Fix testcase for 6894643: Separate out dependency on Kerberos 
Reviewed-by: weijun
 2009-12-02 17:06:50 +00:00
Weijun Wang
22d5c338db 6770883: Infinite loop if SPNEGO specified as sun.security.jgss.mechanism 
Reviewed-by: valeriep
 2009-11-27 08:51:58 +08:00
Weijun Wang
6a6d0a3c7a 6853328: Support OK-AS-DELEGATE flag 
Reviewed-by: valeriep
 2009-11-27 08:51:28 +08:00
Vinnie Ryan
2a073650dc Merge 2009-11-12 23:04:42 +00:00
Vinnie Ryan
005e04bd07 6894643: Separate out dependency on Kerberos 
Reviewed-by: alanb, xuelei
 2009-11-12 23:00:23 +00:00
Abhijit Saha
84e0ce5651 Merge 2009-10-28 15:47:55 -07:00
Weijun Wang
692684aa31 6890872: keytool -printcert to recognize signed jar files 
Reviewed-by: mullan
 2009-10-28 15:32:49 +08:00
Weijun Wang
9b3b87dab8 6893158: AP_REQ check should use key version number 
Reviewed-by: valeriep, xuelei
 2009-10-28 15:32:30 +08:00
Abhijit Saha
fcbc383092 Merge 2009-10-21 11:34:19 -07:00
Weijun Wang
5e986ae424 6870812: enhance security tools to use ECC algorithms 
Reviewed-by: vinnie, mullan
 2009-10-21 08:17:35 +08:00
Abhijit Saha
c6c70af568 Merge 2009-10-06 21:40:55 -07:00
Weijun Wang
2882b91893 6868579: RFE: jarsigner to support reading password from environment variable 
Reviewed-by: xuelei, wetmore
 2009-10-02 18:49:46 +08:00
Weijun Wang
10b2d33a48 6862679: ESC: AD Authentication with user with umlauts fails 
Reviewed-by: valeriep, mullan
 2009-10-02 18:47:34 +08:00
Weijun Wang
fcaded312e 6324292: keytool -help is unhelpful 
Reviewed-by: xuelei, mullan
 2009-10-02 18:44:34 +08:00
Michael McMahon
ef945f9722 6886108: Test case B4933582 binding to fixed port number 
Reviewed-by: chegar
 2009-09-29 10:00:57 +01:00
Weijun Wang
a4622c3ab0 6885166: regression test for 6877357 (IPv6 address does not work) error (timed out) 
Reviewed-by: xuelei
 2009-09-24 21:35:34 +08:00
Weijun Wang
938ca04641 6877357: IPv6 address does not work 
Reviewed-by: xuelei, alanb
 2009-09-22 10:01:32 +08:00
Vinnie Ryan
f13c1a7ce9 6884175: CR cleanup for 6840752: Provide out-of-the-box support for ECC algorithms 
Reviewed-by: wetmore
 2009-09-21 23:01:42 +01:00
Abhijit Saha
5456677e02 Merge 2009-09-05 07:55:05 -07:00
Weijun Wang
58285b80f7 6871847: AlgorithmId.get("SHA256withECDSA") not available 
Reviewed-by: vinnie
 2009-09-04 14:59:20 +08:00
Weijun Wang
fe71efb327 6876328: different names for the same digest algorithms breaks jarsigner 
Reviewed-by: mullan
 2009-09-04 14:58:01 +08:00
Abhijit Saha
9a9bb90a70 Merge 2009-08-26 08:38:57 -07:00
Weijun Wang
50754f7c2e 6868864: Kerberos tests fail under windows/cygwin 
Reviewed-by: wetmore
 2009-08-26 12:17:29 +08:00
Vinnie Ryan
f249b36d72 6872048: bad private keys are generated for 2 specific ECC curves 
Reviewed-by: wetmore
 2009-08-24 18:37:37 +01:00
Weijun Wang
e936496a7b 6875033: regression: test of 6867665 fail 
Reviewed-by: xuelei
 2009-08-24 18:37:48 +08:00
Weijun Wang
7c86823f01 6867665: Problem with keytabs with multiple kvno's (key versions) 
Reviewed-by: valeriep, ohair
 2009-08-20 11:24:42 +08:00
Xue-Lei Andrew Fan
c14324faa5 6861062: Disable MD2 support 
Reviewed-by: mullan, weijun
 2009-08-18 20:47:13 -07:00
Weijun Wang
94bafe8b8f 6864911: ASN.1/DER input stream parser needs more work 
Reviewed-by: mullan, xuelei
 2009-08-18 12:10:12 +08:00
Vinnie Ryan
3ed22e2e7a Merge 2009-08-11 16:57:09 +01:00
Vinnie Ryan
59d983ade0 6840752: Provide out-of-the-box support for ECC algorithms 
Reviewed-by: alanb, mullan, wetmore
 2009-08-11 16:52:26 +01:00
Weijun Wang
be3a1f1294 6821190: more InquireType values for ExtendedGSSContext 
Reviewed-by: valeriep
 2009-08-11 12:20:32 +08:00
Weijun Wang
50689ce536 6710360: export Kerberos session key to applications 
Reviewed-by: valeriep
 2009-08-11 12:17:13 +08:00
Weijun Wang
cb2742d7b2 6866479: libzip.so caused JVM to crash when running jarsigner 
Reviewed-by: mullan
 2009-08-11 12:15:24 +08:00
Bradford Wetmore
fc188b8b29 6867657: Many JSN tests do not run under cygwin 
Reviewed-by: ohair
 2009-08-06 17:56:59 -07:00
Weijun Wang
3fef36803a 6867687: keytool's standard.sh test timeout sometimes 
Reviewed-by: xuelei
 2009-08-02 13:40:03 +08:00
Weijun Wang
bdafe7ca74 6867231: Regression: jdk/test/sun/security/krb5/ConfPlusProp.java error against jdk7/pit/b68 
Reviewed-by: xuelei
 2009-07-31 16:21:30 +08:00
Weijun Wang
945ec03563 6561126: keytool should use larger default keysize for keypairs 
Reviewed-by: mullan
 2009-07-22 16:41:14 +08:00
Weijun Wang
20ee77e0d0 6847026: keytool should be able to generate certreq and cert without subject name 
Reviewed-by: xuelei
 2009-07-22 16:40:04 +08:00
Weijun Wang
f1b3e33db7 6858589: more changes to Config on system properties 
Reviewed-by: valeriep
 2009-07-22 16:39:34 +08:00
Tim Bell
a2d17d381e Merge 2009-07-13 23:58:49 -07:00
Weijun Wang
9148ed61cf 6857795: krb5.conf ignored if system properties on realm and kdc are provided 
Reviewed-by: xuelei
 2009-07-08 12:07:43 +08:00
Weijun Wang
96a8d1a9f8 6857802: GSS getRemainingInitLifetime method returns milliseconds not seconds 
Reviewed-by: xuelei
 2009-07-08 12:07:16 +08:00
Andy Herrick
14323dd4c7 Merge 2009-07-06 14:10:31 -04:00
Weijun Wang
c9930b0e4f 6855671: DerOutputStream encodes negative integer incorrectly 
Reviewed-by: xuelei
 2009-06-30 11:55:58 +08:00
Andy Herrick
974a4682e4 Merge 2009-06-29 12:06:42 -04:00
Weijun Wang
1d5c589340 6851973: ignore incoming channel binding if acceptor does not set one 
Reviewed-by: valeriep
 2009-06-19 18:03:27 +08:00
Weijun Wang
f5d1fbc0b4 6712755: jarsigner fails to sign itextasian.jar since 1.5.0_b14, it works with 1.5.0_13 
Reviewed-by: mullan
 2009-06-18 11:12:13 +08:00
Weijun Wang
7b2694f5b3 6849275: enhance krb5 reg tests 
Reviewed-by: xuelei
 2009-06-17 15:26:58 +08:00
Andy Herrick
e487e25584 6797688: Umbrella: Merge all JDK 6u4 - 6u12 deployment code into JDK7 
6845973: Update JDK7 with deployment changes in 6u13, 6u14
4802695: Support 64-bit Java Plug-in and Java webstart on Windows/Linux on AMD64
6825019: DownloadManager should not be loaded and referenced for full JRE
6738770: REGRESSION:JSException throws when use LiveConnect javascript facility
6772884: plugin2 : java.lang.OutOfMemoryError or crash
6707535: Crossing domain hole affecting multiple sites/domains using plug-in
6728071: Non-verification of Update files may allow unintended updates
6704154: Code loaded from local filesystem should not get access to localhost
6727081: Web Start security restrictions bypass using special extension jnlp
6727079: Java Web Start Socket() restriction bypass
6727071: Cache location/user name information disclosure in SingleInstanceImpl
6716217: AppletClassLoader adds permissions based on codebase regardless of CS
6694892: Java Webstart inclusion via system properties override [CVE-2008-2086]
6704074: localhost socket access due to cache location exposed
6703909: Java webstart arbitrary file creation using nativelib
6665315: browser crashes when deployment.properties has more slashes ( / )
6660121: Encoding values in JNLP files can cause buffer overflow
6606110: URLConnection.setProxiedHost for resources that are loaded via proxy
6581221: SSV(VISTA): Redirection FAILS to work if user does a downgrade install
6609756: Buffer Overflow in Java ActiveX component
6608712: Bypassing the same origin policy in Java with crafted names
6534630: "gnumake clobber" doesn't
6849953: JDK7 - replacement of bufferoverflowU.lib on amd64 breaks build
6849029: Need some JDK7 merge clean-up after comments on the webrev
6847582: Build problem on JDK7 with isSecureProperty in merge
6827935: JDK 7 deployment merging - problem in Compiler-msvm.gmk
6823215: latest merge fixes from 6u12 -> JDK7
6816153: further mergers for JDK7 deployment integration
6807074: Fix Java Kernel and JQS in initial JDK7 builds

Initial changeset for implementing 6uX Deployment Features into JDK7

Reviewed-by: dgu, billyh
 2009-06-12 14:56:32 -04:00
Weijun Wang
8a52d1a9d5 6578647: Undefined requesting URL in java.net.Authenticator.getPasswordAuthentication() 
Reviewed-by: chegar, valeriep
 2009-06-09 14:17:05 +08:00
Xue-Lei Andrew Fan
5f228867b6 6822460: support self-issued certificate 
Checking self-issued certificate during certification path building

Reviewed-by: mullan, weijun
 2009-05-26 16:19:18 +08:00
Weijun Wang
04e56f7701 6682516: SPNEGO_HTTP_AUTH/WWW_KRB and SPNEGO_HTTP_AUTH/WWW_SPNEGO failed on all non-windows platforms 
Reviewed-by: xuelei
 2009-05-20 10:12:00 +08:00
Weijun Wang
2827ff39e5 6714845: Quotes in Kerberos configuration file are included in the values 
Reviewed-by: xuelei
 2009-04-09 15:32:55 +08:00
Weijun Wang
67bb035b94 4811968: ASN.1 (X509Certificate) implementations don't handle large OID components 
Reviewed-by: xuelei
 2009-04-08 13:54:34 +08:00
Weijun Wang
b01525e89b 6825352: support self-issued certificate in keytool 
Reviewed-by: xuelei
 2009-04-03 11:36:19 +08:00
Weijun Wang
739414c177 6802846: jarsigner needs enhanced cert validation(options) 
Reviewed-by: xuelei
 2009-03-27 11:05:45 +08:00
Weijun Wang
827d425560 6819272: keytool -importcert should read the whole input 
Reviewed-by: xuelei
 2009-03-19 11:17:06 +08:00
Weijun Wang
78ae650f8f 6815182: GSSAPI/SPNEGO does not work with server using MIT Kerberos library 
Reviewed-by: valeriep
 2009-03-13 09:20:56 +08:00
Weijun Wang
5f12c03c56 6813402: keytool cannot -printcert entries without extensions 
Reviewed-by: xuelei
 2009-03-05 14:49:55 +08:00
Xue-Lei Andrew Fan
d1f800c577 5067458: Loopback SSLSocketImpl createSocket is throwing an exception 
A null hostname should be regarded as a loopback address.

Reviewed-by: weijun
 2009-02-23 17:32:52 +08:00
Weijun Wang
3a37d195f3 6780416: New keytool commands/options: -gencert, -printcertreq, -ext 
Reviewed-by: xuelei, mullan
 2009-02-23 10:05:55 +08:00
Weijun Wang
500caf95bd 6803376: BasicConstraintsExtension does not encode when (ca==false && pathLen<0) 
Reviewed-by: xuelei
 2009-02-23 10:05:41 +08:00
Weijun Wang
9081658837 6804045: DerValue does not accept empty OCTET STRING 
Reviewed-by: xuelei
 2009-02-23 10:04:52 +08:00
Weijun Wang
967dd884ac 6789935: cross-realm capath search error 
Reviewed-by: xuelei
 2009-02-23 10:04:25 +08:00
Xue-Lei Andrew Fan
f202d9a6e1 6697270: Inputstream dosent behave correct 
Do not try to read zero byte from a InputStream, and do always return immediately for zero byte reading in a InputStream implementation.

Reviewed-by: weijun
 2009-02-20 13:05:28 +08:00
Xue-Lei Andrew Fan
df345d27f4 6782783: regtest HttpsURLConnection/B6216082.java throws ClosedByInterruptException 
Make the test robust

Reviewed-by: weijun
 2009-02-04 19:10:09 +08:00
Weijun Wang
e7c217c72d 6552334: Enable DNS in Kerberos by default 
Reviewed-by: valeriep
 2009-02-03 09:38:13 +08:00
Xue-Lei Andrew Fan
8db7ed98ea 6728126: Parsing Extensions in Client Hello message is done in a wrong way 
The inputStream.read(byte[], int, 0) is not always return zero.

Reviewed-by: wetmore, weijun
 2008-11-13 23:08:11 -08:00
Weijun Wang
5c6f569aa5 6765491: Krb5LoginModule a little too restrictive, and the doc is not clear 
Reviewed-by: valeriep
 2008-11-12 16:01:06 +08:00
Weijun Wang
9f36c3b7c7 6733095: Failure when SPNEGO request non-Mutual 
Reviewed-by: valeriep
 2008-11-12 16:00:22 +08:00
Weijun Wang
d9d3a81168 6761072: new krb5 tests fail on multiple platforms 
Reviewed-by: xuelei
 2008-10-20 10:32:33 +08:00
Weijun Wang
f134b5139a 6706974: Add krb5 test infrastructure 
Reviewed-by: valeriep
 2008-10-17 13:02:00 +08:00
Weijun Wang
6d08d079f0 6731685: CertificateFactory.generateCertificates throws IOException on PKCS7 cert chain 
Reviewed-by: mullan
 2008-08-06 08:11:49 +08:00
Bradford Wetmore
54618c0601 Merge 2008-07-23 12:16:28 -07:00
Weijun Wang
9ac27197df 6480981: keytool should be able to import certificates from remote SSL servers 
Reviewed-by: vinnie, wetmore
 2008-07-09 12:03:16 +08:00
Xiomara Jayasena
2617d1d179 6719955: Update copyright year 
Update copyright year for files that have been modified in 2008

Reviewed-by: ohair, tbell
 2008-07-02 12:55:45 -07:00
Weijun Wang
b572eb5b2b 6711435: console.sh uses incompatible == 
Reviewed-by: xuelei
 2008-06-10 11:03:23 +08:00
Xue-Lei Andrew Fan
720109f8ec 6690018: RSAClientKeyExchange NullPointerException 
Checking certificate key length for RSA_EXPORT key exchange

Reviewed-by: wetmore, mullan
 2008-06-04 09:56:14 +08:00
Weijun Wang
c0dfc6ea21 6705313: Incorrect exit $? in keytool's autotest.sh 
Reviewed-by: valeriep
 2008-05-27 14:29:32 +08:00
Bradford Wetmore
e072682162 6706358: jdk/test/sun/security/pkcs11/Cipher/TestSymmCiphers.java has the wrong copyright notice 
Reviewed-by: valeriep
 2008-05-22 14:20:53 -07:00
Xue-Lei Andrew Fan
2dddf4033e 6668231: Presence of a critical subjectAltName causes JSSE's SunX509 to fail trusted checks 
Make the critical extension known to end entity checker.

Reviewed-by: wetmore, mullan
 2008-04-02 22:44:45 -04:00
Valerie Peng
adaa79491e 6599979: KeyStore.setEntry/setKeyEntry() do not override existing entry for secret key objects 
Override existing secret key entry when setEntry/setKeyEntry() is called

Reviewed-by: andreas
 2008-03-20 18:41:05 -07:00
Valerie Peng
4b9b2408f3 6572331: regression: cipher.wrap operation fails with CKR_ATTRIBUTE_VALUE_INVALID 
Check supported key size range and use encryption if needed

Reviewed-by: andreas
 2008-03-20 17:17:10 -07:00
Valerie Peng
83d7d2cdfb 4898461: Support for ECB and CBC/PKCS5Padding 
Add support for ECB mode and PKCS5Padding

Reviewed-by: andreas
 2008-03-20 16:02:23 -07:00
Xue-Lei Andrew Fan
04886b6f44 6447412: Issue with socket.close() for ssl sockets when poweroff on other system 
Support SSL sockets SOLINGER

Reviewed-by: chegar
 2008-03-17 03:11:29 -04:00
Xue-Lei Andrew Fan
4a616b5705 6618387: SSL client sessions do not close cleanly. A TCP reset occurs instead of a close_notify alert 
CloseIdelConnection() does not query the cached connection correctly.

Reviewed-by: chegar
 2008-03-16 01:37:44 -04:00
Weijun Wang
7434ffcbfb 6673164: dns_fallback parse error 
Reviewed-by: valeriep
 2008-03-12 09:32:38 +08:00
Weijun Wang
e75aa5c3ab 6643094: Test on keytool -startdate forgets about December 
Reviewed-by: xuelei
 2008-03-08 22:51:14 +08:00
Weijun Wang
0c6743a970 6590930: reed/write does not match for ccache 
Add null-awareness to ccache read

Reviewed-by: valeriep
 2008-03-05 22:15:45 +08:00
Weijun Wang
578a880fee 6648972: KDCReq.init always read padata 
PA-DATA is optional, only read it when it exists

Reviewed-by: valeriep
 2008-03-05 21:55:33 +08:00
J. Duke
319a3b9947 Initial load 2007-12-01 00:00:00 +00:00