[PATCH FOR REVIEW] Allow OpenJDK to be built with the unlimited crypto policy
Andrew Hughes
gnu.andrew at redhat.com
Fri Sep 28 04:09:31 UTC 2012
----- Original Message -----
> It's now marked as resolved.
>
> Thanks,
>
> Brad
>
Great. Thanks! Glad to get this finally resolved.
I'll let it promote through to 8, then suggest it for 7u.
>
> On 9/27/2012 9:58 AM, Andrew Hughes wrote:
> >
> >
> > ----- Original Message -----
> >> ----- Original Message -----
> >>>
> >>>>> Will you be putting this back yourself? If so let me know when
> >>>>> you
> >>>>> go
> >>>>> in, and I can update the bug once you're in.
> >>>>>
> >>>>
> >>>> I will, though I'll need a bug ID for it. I presume tl is ok as
> >>>> the
> >>>> forest to use?
> >>>
> >>> This going into 8? Then yes.
> >>>
> >>
> >> At first, yes. Do you have any objections to me proposing it for
> >> 7u
> >> too, in due course?
> >>
> >>> 7201205: Add Makefile configuration option to build with
> >>> unlimited
> >>> crypto in OpenJDK.
> >>>
> >>
> >> Great, thanks! I'll push it.
> >>
> >
> > All done: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/9e879c0288c2
> >
> >>> Brad
> >>>
> >>>
> >>>
> >>>>> Mark wrote:
> >>>>> > The summary is that it was just easier to remove unused
> >>>>> > classes
> >>>>> > that
> >>>>> > made the code tricky to understand for no good reason
> >>>>> > except
> >>>>> > for
> >>>>> > some
> >>>>> > secret proprietary code.
> >>>>>
> >>>>> Unfortunately, Oracle and some of our commercial (non-OpenJDK)
> >>>>> licensees
> >>>>> still depend on that tricky code. :( I'd personally love to
> >>>>> strip
> >>>>> it
> >>>>> all out, but we have to balance all of its consumers (Oracle SE
> >>>>> and
> >>>>> ME,
> >>>>> commercial source/binary licensees, OpenJDK, etc.)
> >>>>>
> >>>>> Andrew wrote:
> >>>>> > I'm sure it would be easy enough to dump those classes if
> >>>>> > Oracle
> >>>>> > started producing OpenJDK binaries licensed under the GPL,
> >>>>> > rather
> >>>>> > than binaries from their proprietary fork.
> >>>>>
> >>>>> Unfortunately, not likely in our current export/import climate.
> >>>>>
> >>>>
> >>>> Yes, this is what I thought. We just have to make sure to test
> >>>> well
> >>>> before shipping binaries.
> >>>>
> >>>>> Brad
> >>>>>
> >>>>>
> >>>>
> >>>
> >>
> >> --
> >> Andrew :)
> >>
> >> Free Java Software Engineer
> >> Red Hat, Inc. (http://www.redhat.com)
> >>
> >> PGP Key: 248BDC07 (https://keys.indymedia.org/)
> >> Fingerprint = EC5A 1F5E C0AD 1D15 8F1F 8F91 3B96 A578 248B DC07
> >>
> >>
> >
>
--
Andrew :)
Free Java Software Engineer
Red Hat, Inc. (http://www.redhat.com)
PGP Key: 248BDC07 (https://keys.indymedia.org/)
Fingerprint = EC5A 1F5E C0AD 1D15 8F1F 8F91 3B96 A578 248B DC07
More information about the security-dev
mailing list