[Bug 2126] [IcedTea8] Synchronise elliptic curves in sun.security.ec.NamedCurve with those listed by NSS

bugzilla-daemon at icedtea.classpath.org bugzilla-daemon at icedtea.classpath.org
Mon Jan 23 19:56:01 UTC 2017 

http://icedtea.classpath.org/bugzilla/show_bug.cgi?id=2126

--- Comment #4 from hg commits <mercurial at icedtea.classpath.org> ---
details:
http://icedtea.classpath.org//hg/icedtea8?cmd=changeset;node=59fc41564222
author: Andrew John Hughes <gnu_andrew at member.fsf.org>
date: Mon Jan 23 19:23:30 2017 +0000

    Bump to icedtea-3.3.0pre02

    Upstream changes:
      - S8037099: [macosx] Remove all references to GC from native OBJ-C code
      - S8059212: Modify sun/security/smartcardio manual regression tests so
that they do not just fail if no cardreader found
      - S8080729: [macosx] java 7 and 8 JDialogs on multiscreen jump to parent
frame on focus
      - S8138725: Add options for Javadoc generation
      - S8139565: Restrict certificates with DSA keys less than 1024 bits
      - S8140353: Improve signature checking
      - S8140422: Add mechanism to allow non default root CAs to be not subject
to algorithm restrictions
      - S8141148: LDAP "follow" throws ClassCastException with Java 8
      - S8142926: OutputAnalyzer's shouldXXX() calls return this
      - S8147077: IllegalArgumentException thrown by
api/java_awt/Component/FlipBufferStrategy/indexTGF_General
      - S8148127: IllegalArgumentException thrown by JCK test
api/java_awt/Component/FlipBufferStrategy/indexTGF_General in opengl pipeline
      - S8148516: Improve the default strength of EC in JDK
      - S8148984: [macosx] Chinese Comma cannot be entered using Pinyin Input
Method on OS X
      - S8150611: Security problem on sun.misc.resources.Messages*
      - S8151893: Add security property to configure XML Signature secure
validation mode
      - S8151934: Resolve class resolution
      - S8152438: Threads may do significant work out of the non-shared
overflow buffer
      - S8153438: Avoid repeated "Please insert a smart card" popup windows
      - S8154005: Add algorithm constraint that specifies the restriction date
      - S8154015: Apply algorithm constraints to timestamped code
      - S8155973: Tighten jar checks
      - S8156804: Better constraint checking
      - S8157739: Classloader Consistency Checking
      - S8157749: Improve handling of DNS error replies
      - S8158111: Make handling of 3rd party providers more stable
      - S8158406: Limited Parameter Processing
      - S8158997: JNDI Protocols Switch
      - S8159410: InetAddress.isReachable returns true for non existing IP
adresses
      - S8159507: RuntimeVisibleAnnotation validation
      - S8159511: Stack map validation
      - S8159515: Improve indy validation
      - S8160098: Clean up color profiles
      - S8160108: Implement Serialization Filtering
      - S8160838: Better HTTP service
      - S8161218: Better bytecode loading
      - S8161228: URL objects with custom protocol handlers have port changed
after deserializing
      - S8161571: Verifying ECDSA signatures permits trailing bytes
      - S8161743: Provide proper login context
      - S8162411: Service Menu services 2
      - S8162577: Standardize logging levels
      - S8162792: Remove constraint DSA keySize < 1024 from
jdk.jar.disabledAlgorithms in jdk8
      - S8162973: Better component components
      - S8163304: jarsigner -verbose -verify should print the algorithms used
to sign the jar
      - S8163583: [macosx] Press "To Back" button on the Dialog,the Dialog
moves behind the Frame
      - S8164143: Improve components for menu items
      - S8164147: Improve streaming socket output
      - S8164908: ReflectionFactory support for IIOP and custom serialization
      - S8165071: Expand TLS support
      - S8165230: RMIConnection addNotificationListeners failing with specific
inputs
      - S8165344: Update concurrency support
      - S8165816: jarsigner -verify shows jar unsigned if it was signed with a
weak algorithm
      - S8166381: Back out changes to the java.security file to not disable MD5
      - S8166389: [TEST_BUG] closed/java/security/Security/ReadProp/ReadProp.sh
failing
      - S8166393: disabledAlgorithms property should not be strictly parsed
      - S8166432: Bad 8u112 merge of
sun/security/tools/jarsigner/warnings/Test.java
      - S8166591: [macos 10.12] Trackpad scrolling of text on OS X 10.12 Sierra
is very fast (Trackpad, Retina only)
      - S8166739: Improve extensibility of ObjectInputFilter information passed
to the filter
      - S8166875: (tz) Support tzdata2016g
      - S8166878: Connection reset during TLS handshake
      - S8166988: Improve image processing performance
      - S8167104: Additional class construction refinements
      - S8167223: URL handling improvements
      - S8167356: Follow up fix for jdk8 backport of 8164143. Changes for
CMenuComponent.m were missed
      - S8167459: Add debug output for indicating if a chosen ciphersuite was
legacy
      - S8167472: Chrome interop regression with JDK-8148516
      - S8167591: Add MD5 to signed JAR restrictions
      - S8168705: Better ObjectIdentifier validation
      - S8168714: Tighten ECDSA validation
      - S8168724: ECDSA signing improvments
      - S8168728: DSA signing improvments
      - S8168861: AnchorCertificates uses hardcoded password for cacerts
keystore
      - S8168963: Backout JDK-8154005
      - S8168993: JDK8u121 L10n resource file update
      - S8169072: Backout JDK-8154015
      - S8169191: (tz) Support tzdata2016i
      - S8169688: Backout (remove) MD5 from jdk.jar.disabledAlgorithms for
January CPU
      - S8169911: Enhanced tests for jarsigner -verbose -verify after
JDK-8163304
      - S8170131: Certificates not being blocked by jdk.tls.disabledAlgorithms
property
      - S8170268: 8u121 L10n resource file update - msgdrop 20

    ChangeLog:

    2017-01-23  Andrew John Hughes  <gnu_andrew at member.fsf.org>

        * Makefile.am:
        (JDK_UPDATE_VERSION): Bump to 121.
        (BUILD_VERSION): Set to b13.
        (CORBA_CHANGESET): Update to icedtea-3.3.0pre02 tag.
        (JAXP_CHANGESET): Likewise.
        (JAXWS_CHANGESET): Likewise.
        (JDK_CHANGESET): Likewise.
        (LANGTOOLS_CHANGESET): Likewise.
        (OPENJDK_CHANGESET): Likewise.
        (NASHORN_CHANGESET): Likewise.
        (CORBA_SHA256SUM): Likewise.
        (JAXP_SHA256SUM): Likewise.
        (JAXWS_SHA256SUM): Likewise.
        (JDK_SHA256SUM): Likewise.
        (LANGTOOLS_SHA256SUM): Likewise.
        (OPENJDK_SHA256SUM): Likewise.
        (NASHORN_SHA256SUM): Likewise.
        * NEWS: Updated.
        * configure.ac: Bump to 3.3.0pre02.
        * hotspot.map.in: Update to icedtea-3.3.0pre02 tag.
        * patches/pr2126.patch:
        Extend following changes made in 8148516.
        * patches/rh1022017.patch:
        Adapt to changes made in 8148516.

-- 
You are receiving this mail because:
You are on the CC list for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.openjdk.java.net/pipermail/distro-pkg-dev/attachments/20170123/ef5ad8fe/attachment-0001.html>

More information about the distro-pkg-dev mailing list