[jdk21u-dev] RFR: 8244336: Restrict algorithms at JCE layer
Goetz Lindenmaier
goetz at openjdk.org
Tue Dec 16 08:29:01 UTC 2025
I backport this for parity with 21.0.11-oracle.
I had to resolve a few files, mostly due to the removal of the
security manager:
src/java.base/share/classes/java/security/Signature.java
Adapted patch in getInstance(String) to slightly different coding.
src/java.base/share/classes/sun/security/util/AbstractAlgorithmConstraints.java
Copyright.
getAlgorithms(String): Needed to adapt to security coding.
src/java.base/share/classes/sun/security/util/KnownOIDs.java
Resolved line 188 due to context difference.
Also, I had to adapt one test to work with the SM. See second commit.
-------------
Commit messages:
- Adapt test to Security Manager
- backport 35dabb1a5f31d985f00de21badeeedb026a63b94
Changes: https://git.openjdk.org/jdk21u-dev/pull/2519/files
Webrev: https://webrevs.openjdk.org/?repo=jdk21u-dev&pr=2519&range=00
Issue: https://bugs.openjdk.org/browse/JDK-8244336
Stats: 1566 lines in 19 files changed: 1364 ins; 164 del; 38 mod
Patch: https://git.openjdk.org/jdk21u-dev/pull/2519.diff
Fetch: git fetch https://git.openjdk.org/jdk21u-dev.git pull/2519/head:pull/2519
PR: https://git.openjdk.org/jdk21u-dev/pull/2519
More information about the jdk-updates-dev
mailing list