Review request: include US_export_policy.jar and local_policy.jar
Mark Wielaard
mjw at redhat.com
Thu May 27 11:29:34 PDT 2010
On Thu, 2010-05-27 at 11:25 -0700, jigsaw-dev-bounces at openjdk.java.net wrote:
> "Non-members are not allowed to post messages to this list."
Hohum, how inconvenient. So subscribed and reposted.
On Thu, 2010-05-27 at 10:28 -0700, Mandy Chung wrote:
> The current JCE implementation checks the existence of
> US_export_policy.jar and local_policy.jar and throws exception if not
> exist. A number of security jtreg tests failed due to such failure.
bugs.openjdk.java.net seems to still be down, but there is a crypto
cleanup patch that makes this unnecessary in there:
https://bugs.openjdk.java.net/show_bug.cgi?id=100062
It has been discussed on the mailinglists a couple of times:
http://mail.openjdk.java.net/pipermail/security-dev/2008-August/000283.html
http://mail.openjdk.java.net/pipermail/security-dev/2008-September/000329.html
http://mail.openjdk.java.net/pipermail/security-dev/2008-November/000385.html
IcedTea has this applied since some years now and so is carried on the
various GNU/Linux distros:
http://icedtea.classpath.org/hg/icedtea6/file/tip/patches/icedtea-clean-crypto.patch
Cheers,
Mark
More information about the jigsaw-dev
mailing list