From vincent.x.ryan at oracle.com Thu Aug 1 11:05:44 2013
From: vincent.x.ryan at oracle.com (Vincent Ryan)
Date: Thu, 1 Aug 2013 12:05:44 +0100
Subject: Code review request: 8021789: jarsigner parses alias as command
line option (depending on locale)
In-Reply-To: <51F8B6E4.50201@oracle.com>
References: <51F8B6E4.50201@oracle.com>
Message-ID: <77CD9C09-37D3-4421-8119-272DFEA28891@oracle.com>
Your fix looks fine.
On 31 Jul 2013, at 08:04, Weijun Wang wrote:
> Hi All
>
> Please review the fix at
>
> http://cr.openjdk.java.net/~weijun/8021789/webrev.00/
>
> The problem is that jarsigner uses Collator::compare to check for command line options, and if that Collator uses Collator.PRIMARY as strength it treats "-debug" and "debug" the same (in some locales?). I have no idea how people depend on other features of Collator.PRIMARY, so I move the filename/alias check to the beginning of the long if block.
>
> Also I fixed a small bug on empty argument. Of course, an empty argument is always useless but StringIndexOutOfBoundsException is not a friendly response.
>
> Thanks
> Max
From chris.hegarty at oracle.com Thu Aug 1 11:38:33 2013
From: chris.hegarty at oracle.com (chris.hegarty at oracle.com)
Date: Thu, 01 Aug 2013 11:38:33 +0000
Subject: hg: jdk8/tl/jdk: 8022061: More ProblemList.txt updates (7/2013)
Message-ID: <20130801113906.30C9B484F7@hg.openjdk.java.net>
Changeset: c49b538ef054
Author: chegar
Date: 2013-08-01 12:38 +0100
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/c49b538ef054
8022061: More ProblemList.txt updates (7/2013)
Reviewed-by: alanb, psandoz
! test/ProblemList.txt
From dmitry.degrave at oracle.com Thu Aug 1 12:59:17 2013
From: dmitry.degrave at oracle.com (dmitry.degrave at oracle.com)
Date: Thu, 01 Aug 2013 12:59:17 +0000
Subject: hg: jdk8/tl/corba: 8015987: The corba repo contains unneeded .sjava
files
Message-ID: <20130801125918.9222C48507@hg.openjdk.java.net>
Changeset: cc11a0efb4f9
Author: aefimov
Date: 2013-08-01 14:59 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/corba/rev/cc11a0efb4f9
8015987: The corba repo contains unneeded .sjava files
Reviewed-by: alanb, chegar, coffeys
- src/share/classes/com/sun/corba/se/impl/copyobject/JavaInputStream.sjava
- src/share/classes/com/sun/corba/se/impl/copyobject/JavaOutputStream.sjava
- src/share/classes/com/sun/corba/se/impl/interceptors/ThreadCurrentStack.sjava
- src/share/classes/com/sun/corba/se/impl/orbutil/DefineWrapper.sjava
- src/share/classes/com/sun/corba/se/impl/presentation/rmi/IDLNameTranslatorImpl_save.sjava
- src/share/classes/com/sun/corba/se/impl/presentation/rmi/IDLTypesUtil_save.sjava
- src/share/classes/com/sun/corba/se/impl/protocol/oldlocal/LocalClientRequestImpl.sjava
- src/share/classes/com/sun/corba/se/impl/protocol/oldlocal/LocalClientResponseImpl.sjava
- src/share/classes/com/sun/corba/se/impl/protocol/oldlocal/LocalServerRequestImpl.sjava
- src/share/classes/com/sun/corba/se/impl/protocol/oldlocal/LocalServerResponseImpl.sjava
- src/share/classes/com/sun/corba/se/impl/transport/BufferConnectionImpl.sjava
From xuelei.fan at oracle.com Thu Aug 1 13:36:42 2013
From: xuelei.fan at oracle.com (Xuelei Fan)
Date: Thu, 01 Aug 2013 21:36:42 +0800
Subject: Code review request, 7127524 P11TlsPrfGenerator has anonymous inner
class with serialVersionUID
Message-ID: <51FA646A.2000807@oracle.com>
Hi,
Please review this simple update.
webrev: http://cr.openjdk.java.net/~xuelei/7127524/webrev.00/
The purpose of this fix is to remove the unnecessary serialVersionUID
definition in anonymous class.
private static final SecretKey NULL_KEY = new SecretKey() {
- private static final long serialVersionUID = -8090049519656411362L;
// ...
}
An anonymous class cannot make any guarantees about serialization
compatibility since has a compiler-generated, implementation-specific
name that may vary uncontrollably. It is nonsensical for an anonymous
class to define a serialVersionUID.
No new regression test as it is a trivial update.
Thanks,
Xuelei
From vincent.x.ryan at oracle.com Thu Aug 1 14:18:42 2013
From: vincent.x.ryan at oracle.com (Vincent Ryan)
Date: Thu, 1 Aug 2013 15:18:42 +0100
Subject: Code review request,
7127524 P11TlsPrfGenerator has anonymous inner class with
serialVersionUID
In-Reply-To: <51FA646A.2000807@oracle.com>
References: <51FA646A.2000807@oracle.com>
Message-ID: <7DB2EF7F-B2A6-4D9A-B823-55451BD83C43@oracle.com>
Your fix looks good.
On 1 Aug 2013, at 14:36, Xuelei Fan wrote:
> Hi,
>
> Please review this simple update.
>
> webrev: http://cr.openjdk.java.net/~xuelei/7127524/webrev.00/
>
> The purpose of this fix is to remove the unnecessary serialVersionUID
> definition in anonymous class.
>
> private static final SecretKey NULL_KEY = new SecretKey() {
> - private static final long serialVersionUID = -8090049519656411362L;
> // ...
> }
>
> An anonymous class cannot make any guarantees about serialization
> compatibility since has a compiler-generated, implementation-specific
> name that may vary uncontrollably. It is nonsensical for an anonymous
> class to define a serialVersionUID.
>
> No new regression test as it is a trivial update.
>
> Thanks,
> Xuelei
From dmitry.degrave at oracle.com Thu Aug 1 14:20:44 2013
From: dmitry.degrave at oracle.com (dmitry.degrave at oracle.com)
Date: Thu, 01 Aug 2013 14:20:44 +0000
Subject: hg: jdk8/tl/jdk: 2 new changesets
Message-ID: <20130801142116.CDC4A4850C@hg.openjdk.java.net>
Changeset: 36f4cf8872f3
Author: igerasim
Date: 2013-07-30 21:11 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/36f4cf8872f3
7192942: (coll) Inefficient calculation of power of two in HashMap
Reviewed-by: mduigou
! src/share/classes/java/util/HashMap.java
Changeset: 54329c24c2f4
Author: igerasim
Date: 2013-07-29 12:35 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/54329c24c2f4
8020669: (fs) Files.readAllBytes() does not read any data when Files.size() is 0
Reviewed-by: alanb, chegar, martin, rriggs
! src/share/classes/java/nio/file/Files.java
! test/java/nio/file/Files/BytesAndLines.java
From xuelei.fan at oracle.com Thu Aug 1 14:35:37 2013
From: xuelei.fan at oracle.com (xuelei.fan at oracle.com)
Date: Thu, 01 Aug 2013 14:35:37 +0000
Subject: hg: jdk8/tl/jdk: 7127524: P11TlsPrfGenerator has anonymous inner
class with serialVersionUID
Message-ID: <20130801143551.326ED4850E@hg.openjdk.java.net>
Changeset: d6de149b9f20
Author: xuelei
Date: 2013-08-01 07:34 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/d6de149b9f20
7127524: P11TlsPrfGenerator has anonymous inner class with serialVersionUID
Reviewed-by: vinnie
! src/share/classes/sun/security/pkcs11/P11TlsPrfGenerator.java
From chris.hegarty at oracle.com Thu Aug 1 15:54:13 2013
From: chris.hegarty at oracle.com (chris.hegarty at oracle.com)
Date: Thu, 01 Aug 2013 15:54:13 +0000
Subject: hg: jdk8/tl/jdk: 8022087: Fix doclint issues in j.u.Deque & Queue
Message-ID: <20130801155429.B1FE048510@hg.openjdk.java.net>
Changeset: cd13a4a45a37
Author: chegar
Date: 2013-08-01 16:53 +0100
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/cd13a4a45a37
8022087: Fix doclint issues in j.u.Deque & Queue
Reviewed-by: chegar, darcy
Contributed-by: Doug Lea
! src/share/classes/java/util/Deque.java
! src/share/classes/java/util/Queue.java
From sean.mullan at oracle.com Thu Aug 1 16:48:38 2013
From: sean.mullan at oracle.com (Sean Mullan)
Date: Thu, 01 Aug 2013 12:48:38 -0400
Subject: [8] Request for review: 8016848: javax_security/auth/login tests
fail in compact 1 and 2 profiles
Message-ID: <51FA9166.7010809@oracle.com>
Hello,
Could you please review my fix for 8016848:
webrev: http://cr.openjdk.java.net/~mullan/webrevs/8016848/webrev.00/
bug: http://bugs.sun.com/bugdatabase/view_bug.do?bug_id=8016848
This is a bug because
javax.security.auth.login.Configuration.getConfiguration() throws a
ClassCastException when run with the compact1 or compact2 profiles.
This is because the default Configuration object that is returned is not
in the compact1 profile. The default Configuration is specified by the
"login.configuration.provider" security property (in the Java security
properties file). This property is currently set to
com.sun.security.auth.login.ConfigFile which is not in the compact1 or
compact2 profiles
The fix is to change the default value of the
"login.configuration.provider" security property to
sun.security.provider.ConfigFile, which will be a new class that is
essentially a copy of com.sun.security.auth.login.ConfigFile. However,
because it is in the sun.security.provider package, it will be in all
profiles. We will not remove the com.sun.security.auth.login.ConfigFile
class as there may be some applications directly using it.
noreg-jck as there is an existing JCK test for this.
Thanks,
Sean
From paul.sandoz at oracle.com Thu Aug 1 21:07:32 2013
From: paul.sandoz at oracle.com (paul.sandoz at oracle.com)
Date: Thu, 01 Aug 2013 21:07:32 +0000
Subject: hg: jdk8/tl/jdk: 8020016: Numerous splitereator impls do not throw
NPE for null Consumers
Message-ID: <20130801210757.ADA8748544@hg.openjdk.java.net>
Changeset: 0be7839d4599
Author: psandoz
Date: 2013-08-01 15:28 +0100
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/0be7839d4599
8020016: Numerous splitereator impls do not throw NPE for null Consumers
Reviewed-by: mduigou, alanb, henryjen
! src/share/classes/java/util/stream/SpinedBuffer.java
! src/share/classes/java/util/stream/StreamSpliterators.java
! src/share/classes/java/util/stream/Streams.java
! test/java/util/Spliterator/SpliteratorTraversingAndSplittingTest.java
! test/java/util/stream/bootlib/java/util/stream/SpliteratorTestHelper.java
From bradford.wetmore at oracle.com Fri Aug 2 00:45:33 2013
From: bradford.wetmore at oracle.com (Brad Wetmore)
Date: Thu, 01 Aug 2013 17:45:33 -0700
Subject: Code review request, 8013809 deadlock in SSLSocketImpl between
between write and close
In-Reply-To: <51F0EBC2.3050908@Oracle.COM>
References: <51F0EBC2.3050908@Oracle.COM>
Message-ID: <51FB012D.3060101@oracle.com>
On 7/25/2013 2:11 AM, Xuelei Fan wrote:
> Hi Brad,
>
> Are you available to review this fix?
>
> Webrev: http://cr.openjdk.java.net/~xuelei/8013809/webrev.00/
>
> No new regression test, hard to reproduce the issue.
Your immediate fix looks good, however, IIRC, the reason for having
getConnectionState() was to provide synchronized access (and syncing on
the SSLSocketImpl object) to the connectionState variable before the
Java "volatile" semantics were cleaned up in JDK 1.5.
Now that you've made this change, does it make sense to get rid of
getConnectionState(). What do you think?
I hate race conditions! ;)
Brad
From xuelei.fan at oracle.com Fri Aug 2 01:12:50 2013
From: xuelei.fan at oracle.com (Xuelei Fan)
Date: Fri, 02 Aug 2013 09:12:50 +0800
Subject: Code review request, 8013809 deadlock in SSLSocketImpl between
between write and close
In-Reply-To: <51FB012D.3060101@oracle.com>
References: <51F0EBC2.3050908@Oracle.COM> <51FB012D.3060101@oracle.com>
Message-ID: <51FB0792.8080705@oracle.com>
On 8/2/2013 8:45 AM, Brad Wetmore wrote:
>
>
> On 7/25/2013 2:11 AM, Xuelei Fan wrote:
>> Hi Brad,
>>
>> Are you available to review this fix?
>>
>> Webrev: http://cr.openjdk.java.net/~xuelei/8013809/webrev.00/
>>
>> No new regression test, hard to reproduce the issue.
>
> Your immediate fix looks good, however, IIRC, the reason for having
> getConnectionState() was to provide synchronized access (and syncing on
> the SSLSocketImpl object) to the connectionState variable before the
> Java "volatile" semantics were cleaned up in JDK 1.5.
>
I think there is a lot of different of a "volatile" object and a
synchronized block. A volatile object is to make sure the change and
access of the object is synchronized; but synchronized block also make
sure that the full process of the change is synchronized. For example:
synchronized (aLock) {
// We want to change the object, but may need
// to prepare something before the change, please
// don't access this object while we make the preparation.
... // prepare something else.
aObject = newvalue;
}
> Now that you've made this change, does it make sense to get rid of
> getConnectionState(). What do you think?
>
I was hesitated to remove the getConnectionState(). When we change the
value of connectionState, "this" object is locked. If the value change
does not completed, other thread cannot access the state. If we remove
this synchronization, the behavior would be changed significantly.
The reason that we can make the change in isClosed() implementation is
that "APP_CLOSED" is the final state of the life-cycle of connection,
therefore we don't care too much whether there is another thread is
doing the closing or not. It looks like a little tricky.
Xuelei
> I hate race conditions! ;)
>
> Brad
>
>
From weijun.wang at oracle.com Fri Aug 2 01:17:36 2013
From: weijun.wang at oracle.com (weijun.wang at oracle.com)
Date: Fri, 02 Aug 2013 01:17:36 +0000
Subject: hg: jdk8/tl/jdk: 8021789: jarsigner parses alias as command line
option (depending on locale)
Message-ID: <20130802011827.507EE48551@hg.openjdk.java.net>
Changeset: 29f153e11683
Author: weijun
Date: 2013-08-02 08:59 +0800
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/29f153e11683
8021789: jarsigner parses alias as command line option (depending on locale)
Reviewed-by: vinnie
! src/share/classes/sun/security/tools/jarsigner/Main.java
+ test/sun/security/tools/jarsigner/collator.sh
From alexey.utkin at oracle.com Fri Aug 2 09:20:40 2013
From: alexey.utkin at oracle.com (alexey.utkin at oracle.com)
Date: Fri, 02 Aug 2013 09:20:40 +0000
Subject: hg: jdk8/tl/jdk: 8020191: System.getProperty("os.name") returns
"Windows NT (unknown)" on Windows 8.1
Message-ID: <20130802092154.E615B48565@hg.openjdk.java.net>
Changeset: 40221b09812f
Author: uta
Date: 2013-08-02 13:16 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/40221b09812f
8020191: System.getProperty("os.name") returns "Windows NT (unknown)" on Windows 8.1
Reviewed-by: alanb, khazra, chegar
! src/windows/native/java/lang/java_props_md.c
! src/windows/resource/java.manifest
From chris.hegarty at oracle.com Fri Aug 2 10:25:17 2013
From: chris.hegarty at oracle.com (chris.hegarty at oracle.com)
Date: Fri, 02 Aug 2013 10:25:17 +0000
Subject: hg: jdk8/tl/jdk: 8022121: Remove superfluous @test tag from
SpliteratorTraversingAndSplittingTest
Message-ID: <20130802102548.A0C5D48569@hg.openjdk.java.net>
Changeset: 60c275e56a69
Author: chegar
Date: 2013-08-02 11:25 +0100
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/60c275e56a69
8022121: Remove superfluous @test tag from SpliteratorTraversingAndSplittingTest
Reviewed-by: psandoz
! test/java/util/Spliterator/SpliteratorTraversingAndSplittingTest.java
From chris.hegarty at oracle.com Fri Aug 2 13:30:49 2013
From: chris.hegarty at oracle.com (chris.hegarty at oracle.com)
Date: Fri, 02 Aug 2013 13:30:49 +0000
Subject: hg: jdk8/tl/jdk: 8020291: j.u.c.CompletionStage; ...
Message-ID: <20130802133116.5F3184856D@hg.openjdk.java.net>
Changeset: 6ec910ff3ea1
Author: chegar
Date: 2013-08-02 14:29 +0100
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/6ec910ff3ea1
8020291: j.u.c.CompletionStage
8020435: CompletableFuture/Basic.java fails on single core machine
Reviewed-by: chegar, psandoz
Contributed-by: Doug Lea
! src/share/classes/java/util/concurrent/CompletableFuture.java
+ src/share/classes/java/util/concurrent/CompletionStage.java
! test/ProblemList.txt
! test/java/util/concurrent/CompletableFuture/Basic.java
From sean.mullan at oracle.com Fri Aug 2 13:39:43 2013
From: sean.mullan at oracle.com (sean.mullan at oracle.com)
Date: Fri, 02 Aug 2013 13:39:43 +0000
Subject: hg: jdk8/tl/jdk: 3 new changesets
Message-ID: <20130802134021.928284856E@hg.openjdk.java.net>
Changeset: 42b786f2fb99
Author: mullan
Date: 2013-08-02 08:30 -0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/42b786f2fb99
8001319: Add SecurityPermission "insertProvider" target name
Reviewed-by: vinnie
! src/share/classes/java/security/Security.java
! src/share/classes/java/security/SecurityPermission.java
+ test/java/security/Security/AddProvider.java
+ test/java/security/Security/AddProvider.policy.1
+ test/java/security/Security/AddProvider.policy.2
+ test/java/security/Security/AddProvider.policy.3
Changeset: 7bbc6c2351d7
Author: mullan
Date: 2013-08-02 08:37 -0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/7bbc6c2351d7
Merge
- src/share/classes/java/net/package.html
- src/share/classes/java/util/stream/StreamBuilder.java
- src/share/classes/javax/security/auth/callback/package.html
- src/share/classes/javax/security/auth/kerberos/package.html
- src/share/classes/javax/security/auth/login/package.html
- src/share/classes/javax/security/auth/package.html
- src/share/classes/javax/security/auth/spi/package.html
- src/share/classes/javax/security/auth/x500/package.html
- src/share/classes/javax/security/cert/package.html
- src/share/classes/javax/security/sasl/package.html
- test/java/util/Collections/EmptySortedSet.java
Changeset: 0a778e487a73
Author: mullan
Date: 2013-08-02 09:38 -0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/0a778e487a73
Merge
From joe.darcy at oracle.com Fri Aug 2 21:19:21 2013
From: joe.darcy at oracle.com (joe.darcy at oracle.com)
Date: Fri, 02 Aug 2013 21:19:21 +0000
Subject: hg: jdk8/tl/jdk: 6476168: (fmt) Inconsistency formatting subnormal
doubles with hexadecimal conversion
Message-ID: <20130802212009.363134859F@hg.openjdk.java.net>
Changeset: 33617583c545
Author: bpb
Date: 2013-07-31 10:53 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/33617583c545
6476168: (fmt) Inconsistency formatting subnormal doubles with hexadecimal conversion
Summary: Update specification to match implementation.
Reviewed-by: darcy
Contributed-by: Brian Burkhalter
! src/share/classes/java/util/Formatter.java
! test/java/util/Formatter/Basic-X.java.template
! test/java/util/Formatter/Basic.java
! test/java/util/Formatter/BasicDouble.java
From naoto.sato at oracle.com Fri Aug 2 22:45:52 2013
From: naoto.sato at oracle.com (naoto.sato at oracle.com)
Date: Fri, 02 Aug 2013 22:45:52 +0000
Subject: hg: jdk8/tl/jdk: 8011194: Apps launched via double-clicked .jars have
file.encoding value of US-ASCII on Mac OS X
Message-ID: <20130802224616.147DA485A2@hg.openjdk.java.net>
Changeset: 883cc296ec89
Author: bchristi
Date: 2013-08-02 15:30 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/883cc296ec89
8011194: Apps launched via double-clicked .jars have file.encoding value of US-ASCII on Mac OS X
Summary: On Mac, default to UTF-8 if no environmental hints are available
Reviewed-by: naoto, ddehaven
! src/solaris/native/java/lang/java_props_md.c
+ test/java/lang/System/MacEncoding/ExpectedEncoding.java
+ test/java/lang/System/MacEncoding/MacJNUEncoding.sh
+ test/java/lang/System/MacEncoding/TestFileEncoding.java
- test/java/lang/System/MacJNUEncoding/ExpectedEncoding.java
- test/java/lang/System/MacJNUEncoding/MacJNUEncoding.sh
From alan.bateman at oracle.com Sun Aug 4 02:14:50 2013
From: alan.bateman at oracle.com (alan.bateman at oracle.com)
Date: Sun, 04 Aug 2013 02:14:50 +0000
Subject: hg: jdk8/tl/jdk: 8022094: BigDecimal/CompareToTests and
BigInteger/CompareToTests are incorrect
Message-ID: <20130804021551.9BF2A485B9@hg.openjdk.java.net>
Changeset: dd1040690e31
Author: bpb
Date: 2013-08-02 11:10 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/dd1040690e31
8022094: BigDecimal/CompareToTests and BigInteger/CompareToTests are incorrect
Summary: Fail test if errors; fix test values; port BigDecimal version to BigInteger
Reviewed-by: smarks, alanb
Contributed-by: Brian Burkhalter
! test/java/math/BigDecimal/CompareToTests.java
! test/java/math/BigInteger/CompareToTests.java
From weijun.wang at oracle.com Mon Aug 5 01:28:17 2013
From: weijun.wang at oracle.com (Weijun Wang)
Date: Mon, 05 Aug 2013 09:28:17 +0800
Subject: Code review request: 8021788: JarInputStream doesn't provide
certificates for some file under META-INF
Message-ID: <51FEFFB1.2040506@oracle.com>
Please take a look at
http://cr.openjdk.java.net/~weijun/8021788/webrev.00/
The problem is that the method treats no META-INF entry as normal. If we
can be sure that MANIFEST.MF and signature-related files are always at
the beginning, we can safely treat an entry normal when we have done
with those.
Thanks
Max
From joe.darcy at oracle.com Mon Aug 5 14:50:31 2013
From: joe.darcy at oracle.com (joe.darcy at oracle.com)
Date: Mon, 05 Aug 2013 14:50:31 +0000
Subject: hg: jdk8/tl/jdk: 8022190: Fix varargs lint warnings in the JDK
Message-ID: <20130805145121.77CAF485DA@hg.openjdk.java.net>
Changeset: 80da091343af
Author: darcy
Date: 2013-08-05 07:50 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/80da091343af
8022190: Fix varargs lint warnings in the JDK
Reviewed-by: alanb, lancea, alexsch
! src/share/classes/java/util/stream/Stream.java
! src/share/classes/javax/swing/SwingWorker.java
! src/share/classes/sun/reflect/annotation/AnnotationParser.java
! src/share/classes/sun/swing/AccumulativeRunnable.java
From sundararajan.athijegannathan at oracle.com Mon Aug 5 16:02:20 2013
From: sundararajan.athijegannathan at oracle.com (sundararajan.athijegannathan at oracle.com)
Date: Mon, 05 Aug 2013 16:02:20 +0000
Subject: hg: jdk8/tl/jdk: 8016531: jconsole-plugin script demo does not work
with nashorn
Message-ID: <20130805160233.DF480485DE@hg.openjdk.java.net>
Changeset: 87367a1c7f76
Author: sundar
Date: 2013-08-05 21:31 +0530
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/87367a1c7f76
8016531: jconsole-plugin script demo does not work with nashorn
Reviewed-by: lagergren, hannesw
Contributed-by: rieberandreas at gmail.com
! src/share/demo/scripting/jconsole-plugin/src/com/sun/demo/scripting/jconsole/ScriptShellPanel.java
! src/share/demo/scripting/jconsole-plugin/src/resources/jconsole.js
! src/share/demo/scripting/jconsole-plugin/src/scripts/invoke.js
! src/share/demo/scripting/jconsole-plugin/src/scripts/jstack.js
! src/share/demo/scripting/jconsole-plugin/src/scripts/jtop.js
! src/share/demo/scripting/jconsole-plugin/src/scripts/sysprops.js
! src/share/sample/scripting/scriptpad/README.txt
! src/share/sample/scripting/scriptpad/src/resources/conc.js
! src/share/sample/scripting/scriptpad/src/resources/mm.js
From tom.hawtin at oracle.com Mon Aug 5 16:16:47 2013
From: tom.hawtin at oracle.com (Tom Hawtin)
Date: Mon, 05 Aug 2013 09:16:47 -0700
Subject: Code review request, 7127524 P11TlsPrfGenerator has anonymous
inner class with serialVersionUID
In-Reply-To: <51FA646A.2000807@oracle.com>
References: <51FA646A.2000807@oracle.com>
Message-ID: <51FFCFEF.5010102@oracle.com>
On 01/08/2013 06:36, Xuelei Fan wrote:
> An anonymous class cannot make any guarantees about serialization
> compatibility since has a compiler-generated, implementation-specific
> name that may vary uncontrollably. It is nonsensical for an anonymous
> class to define a serialVersionUID.
Although it can't give guarantees about serialisation, that doesn't mean
that it doesn't. We probably don't want to upset anything relying upon
it. Having said that, in this case it doesn't seem to be reasonably
accessible. Shame there isn't a good way of marking a class
non-serialisable.
Tom
From mhall at mhcomputing.net Mon Aug 5 18:33:57 2013
From: mhall at mhcomputing.net (Matthew Hall)
Date: Mon, 5 Aug 2013 11:33:57 -0700
Subject: IOE causes failure in
com.sun.deploy.security.RevocationChecker.checkOCSP from 7u25 and up
Message-ID: <20130805183357.GA31258@mhcomputing.net>
We have a customer that is seeing the following exception in JDK7u25 after
revocation checking was enabled by default:
java.security.cert.CertificateException:
java.security.cert.CertPathValidatorException: java.io.IOException:
DerInputStream.getLength(): lengthTag=127, too big.
at com.sun.deploy.security.RevocationChecker.checkOCSP(Unknown Source)
at com.sun.deploy.security.RevocationChecker.check(Unknown Source)
at com.sun.deploy.security.TrustDecider.checkRevocationStatus(Unknown Source)
at com.sun.deploy.security.TrustDecider.getValidationState(Unknown Source)
at com.sun.deploy.security.TrustDecider.validateChain(Unknown Source)
Caused by: java.security.cert.CertPathValidatorException: java.io.IOException:
DerInputStream.getLength(): lengthTag=127, too big.
at sun.security.provider.certpath.OCSP.check(Unknown Source)
at sun.security.provider.certpath.OCSP.check(Unknown Source)
at sun.security.provider.certpath.OCSP.check(Unknown Source)
... 35 more
Caused by: java.io.IOException: DerInputStream.getLength(): lengthTag=127, too big.
at sun.security.util.DerInputStream.getLength(Unknown Source)
at sun.security.util.DerValue.init(Unknown Source)
at sun.security.util.DerValue.(Unknown Source)
at sun.security.provider.certpath.OCSPResponse.(Unknown Source)
... 38 more
However this com.sun.deploy.* code doesn't seem to be part of OpenJDK or
IcedTea, so it's not possible for the community to recompile it with symbols,
debug it, and find the cause.
I did notice, in the code for sun.security.provider.certpath.OCSP.check which
is available, I could see a way to get some logs from part of this code:
private static final Debug debug = Debug.getInstance("certpath");
But I haven't had a chance to try that at the customer who found the issue.
I suspect that the code reacts poorly if it sees unexpected characters in
blocked OCSP sockets, but I can't tell without being able to read checkOCSP to
see what it's really doing in there. Can anyone take a look?
Thanks,
Matthew.
From sean.mullan at oracle.com Mon Aug 5 20:12:01 2013
From: sean.mullan at oracle.com (Sean Mullan)
Date: Mon, 05 Aug 2013 13:12:01 -0700
Subject: IOE causes failure in
com.sun.deploy.security.RevocationChecker.checkOCSP from 7u25 and up
In-Reply-To: <20130805183357.GA31258@mhcomputing.net>
References: <20130805183357.GA31258@mhcomputing.net>
Message-ID: <52000711.3010903@oracle.com>
Hi,
I will need some more information in order to debug this, preferably the
certificate chain - is that something you can email to me?
Otherwise, you can enable the certpath debugging you mention below in
the Java Contol Panel. Go to the Java tab, and add it to the Runtime
Parameters of the JRE that you are using. Then email me the log file if
possible.
-Djava.security.debug=certpath
Thanks,
Sean
On 08/05/2013 11:33 AM, Matthew Hall wrote:
> We have a customer that is seeing the following exception in JDK7u25 after
> revocation checking was enabled by default:
>
> java.security.cert.CertificateException:
> java.security.cert.CertPathValidatorException: java.io.IOException:
> DerInputStream.getLength(): lengthTag=127, too big.
> at com.sun.deploy.security.RevocationChecker.checkOCSP(Unknown Source)
> at com.sun.deploy.security.RevocationChecker.check(Unknown Source)
> at com.sun.deploy.security.TrustDecider.checkRevocationStatus(Unknown Source)
> at com.sun.deploy.security.TrustDecider.getValidationState(Unknown Source)
> at com.sun.deploy.security.TrustDecider.validateChain(Unknown Source)
> Caused by: java.security.cert.CertPathValidatorException: java.io.IOException:
> DerInputStream.getLength(): lengthTag=127, too big.
> at sun.security.provider.certpath.OCSP.check(Unknown Source)
> at sun.security.provider.certpath.OCSP.check(Unknown Source)
> at sun.security.provider.certpath.OCSP.check(Unknown Source)
> ... 35 more
> Caused by: java.io.IOException: DerInputStream.getLength(): lengthTag=127, too big.
> at sun.security.util.DerInputStream.getLength(Unknown Source)
> at sun.security.util.DerValue.init(Unknown Source)
> at sun.security.util.DerValue.(Unknown Source)
> at sun.security.provider.certpath.OCSPResponse.(Unknown Source)
> ... 38 more
>
> However this com.sun.deploy.* code doesn't seem to be part of OpenJDK or
> IcedTea, so it's not possible for the community to recompile it with symbols,
> debug it, and find the cause.
>
> I did notice, in the code for sun.security.provider.certpath.OCSP.check which
> is available, I could see a way to get some logs from part of this code:
>
> private static final Debug debug = Debug.getInstance("certpath");
>
> But I haven't had a chance to try that at the customer who found the issue.
>
> I suspect that the code reacts poorly if it sees unexpected characters in
> blocked OCSP sockets, but I can't tell without being able to read checkOCSP to
> see what it's really doing in there. Can anyone take a look?
>
> Thanks,
> Matthew.
>
From stuart.marks at oracle.com Mon Aug 5 20:29:01 2013
From: stuart.marks at oracle.com (Stuart Marks)
Date: Mon, 05 Aug 2013 13:29:01 -0700
Subject: Code review request, 7127524 P11TlsPrfGenerator has anonymous
inner class with serialVersionUID
In-Reply-To: <51FFCFEF.5010102@oracle.com>
References: <51FA646A.2000807@oracle.com> <51FFCFEF.5010102@oracle.com>
Message-ID: <52000B0D.4010900@oracle.com>
On 8/5/13 9:16 AM, Tom Hawtin wrote:
> On 01/08/2013 06:36, Xuelei Fan wrote:
>> An anonymous class cannot make any guarantees about serialization
>> compatibility since has a compiler-generated, implementation-specific
>> name that may vary uncontrollably. It is nonsensical for an anonymous
>> class to define a serialVersionUID.
>
> Although it can't give guarantees about serialisation, that doesn't mean that
> it doesn't. We probably don't want to upset anything relying upon it. Having
> said that, in this case it doesn't seem to be reasonably accessible. Shame
> there isn't a good way of marking a class non-serialisable.
The history of this bug is that the only reason that the serialVersionUID was
added in the first place was to get rid of a javac serialization "lint"
warning. I think javac is overzealous in issuing a warning in cases such as
this, and I've filed a bug on this. [1]
Good point about there not being a good way to make a class non-serializable.
s'marks
[1] http://bugs.sun.com/bugdatabase/view_bug.do?bug_id=7152104
From mhall at mhcomputing.net Mon Aug 5 20:34:28 2013
From: mhall at mhcomputing.net (Matthew Hall)
Date: Mon, 5 Aug 2013 13:34:28 -0700
Subject: IOE causes failure in
com.sun.deploy.security.RevocationChecker.checkOCSP from 7u25 and up
In-Reply-To: <52000711.3010903@oracle.com>
References: <20130805183357.GA31258@mhcomputing.net>
<52000711.3010903@oracle.com>
Message-ID: <20130805203428.GB31773@mhcomputing.net>
Sean,
Thanks for agreeing to assist us. I'm working with my team to acquire the
debug log, and some permission from our customer to provide the packet capture
we were given, as soon as possible.
One thing I didn't explain so well in my email... for us the problem happened
when a firewall blocked the OCSP traffic. I suspect this might have caused the
PEM / DER decoding logic to raise the IOE.
Matthew.
On Mon, Aug 05, 2013 at 01:12:01PM -0700, Sean Mullan wrote:
> Hi,
>
> I will need some more information in order to debug this, preferably
> the certificate chain - is that something you can email to me?
>
> Otherwise, you can enable the certpath debugging you mention below
> in the Java Contol Panel. Go to the Java tab, and add it to the
> Runtime Parameters of the JRE that you are using. Then email me the
> log file if possible.
>
> -Djava.security.debug=certpath
>
> Thanks,
> Sean
>
> On 08/05/2013 11:33 AM, Matthew Hall wrote:
> >We have a customer that is seeing the following exception in JDK7u25 after
> >revocation checking was enabled by default:
> >
> >java.security.cert.CertificateException:
> >java.security.cert.CertPathValidatorException: java.io.IOException:
> >DerInputStream.getLength(): lengthTag=127, too big.
> > at com.sun.deploy.security.RevocationChecker.checkOCSP(Unknown Source)
> > at com.sun.deploy.security.RevocationChecker.check(Unknown Source)
> > at com.sun.deploy.security.TrustDecider.checkRevocationStatus(Unknown Source)
> > at com.sun.deploy.security.TrustDecider.getValidationState(Unknown Source)
> > at com.sun.deploy.security.TrustDecider.validateChain(Unknown Source)
> >Caused by: java.security.cert.CertPathValidatorException: java.io.IOException:
> >DerInputStream.getLength(): lengthTag=127, too big.
> > at sun.security.provider.certpath.OCSP.check(Unknown Source)
> > at sun.security.provider.certpath.OCSP.check(Unknown Source)
> > at sun.security.provider.certpath.OCSP.check(Unknown Source)
> > ... 35 more
> >Caused by: java.io.IOException: DerInputStream.getLength(): lengthTag=127, too big.
> > at sun.security.util.DerInputStream.getLength(Unknown Source)
> > at sun.security.util.DerValue.init(Unknown Source)
> > at sun.security.util.DerValue.(Unknown Source)
> > at sun.security.provider.certpath.OCSPResponse.(Unknown Source)
> > ... 38 more
> >
> >However this com.sun.deploy.* code doesn't seem to be part of OpenJDK or
> >IcedTea, so it's not possible for the community to recompile it with symbols,
> >debug it, and find the cause.
> >
> >I did notice, in the code for sun.security.provider.certpath.OCSP.check which
> >is available, I could see a way to get some logs from part of this code:
> >
> >private static final Debug debug = Debug.getInstance("certpath");
> >
> >But I haven't had a chance to try that at the customer who found the issue.
> >
> >I suspect that the code reacts poorly if it sees unexpected characters in
> >blocked OCSP sockets, but I can't tell without being able to read checkOCSP to
> >see what it's really doing in there. Can anyone take a look?
> >
> >Thanks,
> >Matthew.
> >
>
From sean.mullan at oracle.com Mon Aug 5 23:13:02 2013
From: sean.mullan at oracle.com (Sean Mullan)
Date: Mon, 05 Aug 2013 16:13:02 -0700
Subject: [8] Request for review: 8022120 : JCK test
api/javax_xml/crypto/dsig/TransformService/index_ParamMethods fails
Message-ID: <5200317E.7050106@oracle.com>
Hello,
Could you please review my fix for 8022120:
webrev: http://cr.openjdk.java.net/~mullan/webrevs/8022120/webrev.00/
bug: http://bugs.sun.com/bugdatabase/view_bug.do?bug_id=8022120
This is a JCK failure/regression caused by the fix for 8011547. The
TransformService API specifies that a NullPointerException should be
thrown if the parent parameter passed to the init or marshalParams
method is null.
Thanks,
Sean
From xuelei.fan at oracle.com Tue Aug 6 00:37:01 2013
From: xuelei.fan at oracle.com (Xuelei Fan)
Date: Tue, 06 Aug 2013 08:37:01 +0800
Subject: [8] Request for review: 8022120 : JCK test
api/javax_xml/crypto/dsig/TransformService/index_ParamMethods fails
In-Reply-To: <5200317E.7050106@oracle.com>
References: <5200317E.7050106@oracle.com>
Message-ID: <5200452D.5090107@oracle.com>
Looks fine to me.
Xuelei
On 8/6/2013 7:13 AM, Sean Mullan wrote:
> Hello,
>
> Could you please review my fix for 8022120:
>
> webrev: http://cr.openjdk.java.net/~mullan/webrevs/8022120/webrev.00/
>
> bug: http://bugs.sun.com/bugdatabase/view_bug.do?bug_id=8022120
>
> This is a JCK failure/regression caused by the fix for 8011547. The
> TransformService API specifies that a NullPointerException should be
> thrown if the parent parameter passed to the init or marshalParams
> method is null.
>
> Thanks,
> Sean
From xuelei.fan at oracle.com Tue Aug 6 01:53:49 2013
From: xuelei.fan at oracle.com (Xuelei Fan)
Date: Tue, 06 Aug 2013 09:53:49 +0800
Subject: There should be a way to reorder the JSSE ciphers
Message-ID: <5200572D.7050602@oracle.com>
Hi,
We are thinking about to support cipher suites preference in JSSE by
defining new methods in javax.net.ssl.SSLParameters.
----------------------------------------------------
+ /**
+ * Sets whether the cipher suites preference should be honored.
+ *
+ * @param on whether local cipher suites order in
+ * {@code #getCipherSuites}
+ * should be honored during SSL/TLS handshaking.
+ */
+ public final void setUseCipherSuitesOrder(boolean on);
+ /**
+ * Returns whether the cipher suites preference should be honored.
+ *
+ * @return whether local cipher suites order in
+ {@code #getCipherSuites}
+ * should be honored during SSL/TLS handshaking.
+ */
+ public final boolean getUseCipherSuitesOrder();
----------------------------------------------------
By default, Oracle JSSE provider still honors the client's preference.
The behavior can be changed by calling
SSLParameters.setUseCipherSuitesOrder(true) in server side.
We have had the cipher suites preference ordering in client side for
many years, but we never said how to actually do it in specification and
JSSE Reference Guide. With this update, the client side can enforce to
honor cipher suite preference with the new method,
SSLParameters.setUseCipherSuitesOrder(true). Other providers should
also comply with this specification.
Any feedback are welcome.
Thanks,
Xuelei
From stuart.marks at oracle.com Tue Aug 6 02:08:25 2013
From: stuart.marks at oracle.com (stuart.marks at oracle.com)
Date: Tue, 06 Aug 2013 02:08:25 +0000
Subject: hg: jdk8/tl/jdk: 8020854: change RMI javadocs to specify that remote
objects are exported to the wildcard address
Message-ID: <20130806020849.73652485F5@hg.openjdk.java.net>
Changeset: 31759750ff63
Author: smarks
Date: 2013-08-05 19:12 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/31759750ff63
8020854: change RMI javadocs to specify that remote objects are exported to the wildcard address
Reviewed-by: rgallard, alanb
! src/share/classes/java/rmi/server/RMISocketFactory.java
! src/share/classes/java/rmi/server/UnicastRemoteObject.java
From bernd-2013 at eckenfels.net Tue Aug 6 02:41:11 2013
From: bernd-2013 at eckenfels.net (Bernd Eckenfels)
Date: Tue, 06 Aug 2013 04:41:11 +0200
Subject: hg: jdk8/tl/jdk: 8020854: change RMI javadocs to specify that
remote objects are exported to the wildcard address
In-Reply-To: <20130806020849.73652485F5@hg.openjdk.java.net>
References: <20130806020849.73652485F5@hg.openjdk.java.net>
Message-ID:
Hello,
> ! src/share/classes/java/rmi/server/RMISocketFactory.java
I think setting the rmi server name to localhost is a dangerous
recommendation. It might happen that it resolves to a IPv4 or IPv6 only
address on a dual socket host. And InetAddress.getLoopbackAddress() might
pick the preferred family different from that. So it is better to use the
literal returned by that function. (or remove this from javadoc).
Bernd
From xuelei.fan at oracle.com Tue Aug 6 02:54:43 2013
From: xuelei.fan at oracle.com (Xuelei Fan)
Date: Tue, 06 Aug 2013 10:54:43 +0800
Subject: Code review request, 8013809 deadlock in SSLSocketImpl between
between write and close
In-Reply-To: <51FB0792.8080705@oracle.com>
References: <51F0EBC2.3050908@Oracle.COM> <51FB012D.3060101@oracle.com>
<51FB0792.8080705@oracle.com>
Message-ID: <52006573.3060408@oracle.com>
If no objections, I will push the changeset, and request to back the fix.
Thanks,
Xuelei
On 8/2/2013 9:12 AM, Xuelei Fan wrote:
> On 8/2/2013 8:45 AM, Brad Wetmore wrote:
>>
>>
>> On 7/25/2013 2:11 AM, Xuelei Fan wrote:
>>> Hi Brad,
>>>
>>> Are you available to review this fix?
>>>
>>> Webrev: http://cr.openjdk.java.net/~xuelei/8013809/webrev.00/
>>>
>>> No new regression test, hard to reproduce the issue.
>>
>> Your immediate fix looks good, however, IIRC, the reason for having
>> getConnectionState() was to provide synchronized access (and syncing on
>> the SSLSocketImpl object) to the connectionState variable before the
>> Java "volatile" semantics were cleaned up in JDK 1.5.
>>
> I think there is a lot of different of a "volatile" object and a
> synchronized block. A volatile object is to make sure the change and
> access of the object is synchronized; but synchronized block also make
> sure that the full process of the change is synchronized. For example:
>
> synchronized (aLock) {
> // We want to change the object, but may need
> // to prepare something before the change, please
> // don't access this object while we make the preparation.
>
> ... // prepare something else.
>
> aObject = newvalue;
> }
>
>> Now that you've made this change, does it make sense to get rid of
>> getConnectionState(). What do you think?
>>
> I was hesitated to remove the getConnectionState(). When we change the
> value of connectionState, "this" object is locked. If the value change
> does not completed, other thread cannot access the state. If we remove
> this synchronization, the behavior would be changed significantly.
>
> The reason that we can make the change in isClosed() implementation is
> that "APP_CLOSED" is the final state of the life-cycle of connection,
> therefore we don't care too much whether there is another thread is
> doing the closing or not. It looks like a little tricky.
>
> Xuelei
>
>> I hate race conditions! ;)
>>
>> Brad
>>
>>
>
From xuelei.fan at oracle.com Tue Aug 6 08:57:01 2013
From: xuelei.fan at oracle.com (Xuelei Fan)
Date: Tue, 06 Aug 2013 16:57:01 +0800
Subject: [8] Request for review: 8016848: javax_security/auth/login tests
fail in compact 1 and 2 profiles
In-Reply-To: <51FA9166.7010809@oracle.com>
References: <51FA9166.7010809@oracle.com>
Message-ID: <5200BA5D.4010606@oracle.com>
The fix looks fine.
BTW, I think the relationship between
javax.security.auth.login.Configuration and
javax.security.auth.login.ConfigurationSpi is not that instinctive in
the implementation. For example, the impl of
Configuration.getAppConfigurationEntry() should be able to use the impl
of ConfigurationSpi.engineGetAppConfigurationEntry(). And the provider
should only need to extend ConfigurationSpi rather than the
Configuration class. It would be nice to re-factoring the code if no
other concerns.
Xuelei
On 8/2/2013 12:48 AM, Sean Mullan wrote:
> Hello,
>
> Could you please review my fix for 8016848:
>
> webrev: http://cr.openjdk.java.net/~mullan/webrevs/8016848/webrev.00/
>
> bug: http://bugs.sun.com/bugdatabase/view_bug.do?bug_id=8016848
>
> This is a bug because
> javax.security.auth.login.Configuration.getConfiguration() throws a
> ClassCastException when run with the compact1 or compact2 profiles.
>
> This is because the default Configuration object that is returned is not
> in the compact1 profile. The default Configuration is specified by the
> "login.configuration.provider" security property (in the Java security
> properties file). This property is currently set to
> com.sun.security.auth.login.ConfigFile which is not in the compact1 or
> compact2 profiles
>
> The fix is to change the default value of the
> "login.configuration.provider" security property to
> sun.security.provider.ConfigFile, which will be a new class that is
> essentially a copy of com.sun.security.auth.login.ConfigFile. However,
> because it is in the sun.security.provider package, it will be in all
> profiles. We will not remove the com.sun.security.auth.login.ConfigFile
> class as there may be some applications directly using it.
>
> noreg-jck as there is an existing JCK test for this.
>
> Thanks,
> Sean
From sundararajan.athijegannathan at oracle.com Tue Aug 6 09:03:35 2013
From: sundararajan.athijegannathan at oracle.com (sundararajan.athijegannathan at oracle.com)
Date: Tue, 06 Aug 2013 09:03:35 +0000
Subject: hg: jdk8/tl/nashorn: 2 new changesets
Message-ID: <20130806090338.AC2B7485FB@hg.openjdk.java.net>
Changeset: 0ad00ae4fec6
Author: hannesw
Date: 2013-08-01 12:23 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/0ad00ae4fec6
8020132: Big object literal with numerical keys exceeds method size
Reviewed-by: lagergren, sundar
! src/jdk/nashorn/internal/codegen/CodeGenerator.java
! src/jdk/nashorn/internal/codegen/FieldObjectCreator.java
! src/jdk/nashorn/internal/codegen/MapCreator.java
! src/jdk/nashorn/internal/codegen/SpillObjectCreator.java
! src/jdk/nashorn/internal/objects/ArrayBufferView.java
! src/jdk/nashorn/internal/runtime/NashornLoader.java
! src/jdk/nashorn/internal/runtime/arrays/ArrayData.java
! src/jdk/nashorn/internal/runtime/arrays/ArrayIndex.java
! src/jdk/nashorn/internal/runtime/arrays/ArrayIterator.java
! src/jdk/nashorn/internal/runtime/arrays/DeletedArrayFilter.java
! src/jdk/nashorn/internal/runtime/arrays/DeletedRangeArrayFilter.java
! src/jdk/nashorn/internal/runtime/arrays/FrozenArrayFilter.java
! src/jdk/nashorn/internal/runtime/arrays/IntArrayData.java
! src/jdk/nashorn/internal/runtime/arrays/LongArrayData.java
! src/jdk/nashorn/internal/runtime/arrays/NoTypeArrayData.java
! src/jdk/nashorn/internal/runtime/arrays/NumberArrayData.java
! src/jdk/nashorn/internal/runtime/arrays/ObjectArrayData.java
! src/jdk/nashorn/internal/runtime/arrays/ReverseArrayIterator.java
! src/jdk/nashorn/internal/runtime/arrays/SealedArrayFilter.java
! src/jdk/nashorn/internal/runtime/arrays/SparseArrayData.java
! src/jdk/nashorn/internal/runtime/arrays/UndefinedArrayFilter.java
+ test/script/basic/JDK-8020132.js
+ test/script/basic/JDK-8020132.js.EXPECTED
Changeset: bb0f3c896cb7
Author: sundar
Date: 2013-08-06 13:10 +0530
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/bb0f3c896cb7
Merge
From dmitry.samersoff at oracle.com Tue Aug 6 10:05:31 2013
From: dmitry.samersoff at oracle.com (dmitry.samersoff at oracle.com)
Date: Tue, 06 Aug 2013 10:05:31 +0000
Subject: hg: jdk8/tl/jdk: 8011038: sourceObj validation during desereliazation
of RelationNotification should be relaxed
Message-ID: <20130806100558.D1A33485FD@hg.openjdk.java.net>
Changeset: fce446b29577
Author: dsamersoff
Date: 2013-08-06 14:04 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/fce446b29577
8011038: sourceObj validation during desereliazation of RelationNotification should be relaxed
Summary: sourceObj could be set to null by setSource() relax a validation of deserialized object.
Reviewed-by: sjiang, skoivu, dfuchs
! src/share/classes/javax/management/relation/RelationNotification.java
From chris.hegarty at oracle.com Tue Aug 6 10:20:26 2013
From: chris.hegarty at oracle.com (Chris Hegarty)
Date: Tue, 06 Aug 2013 11:20:26 +0100
Subject: Code review request: 8021788: JarInputStream doesn't provide
certificates for some file under META-INF
In-Reply-To: <51FEFFB1.2040506@oracle.com>
References: <51FEFFB1.2040506@oracle.com>
Message-ID: <5200CDEA.2010200@oracle.com>
This looks ok to me Max, but I think it would be good to get a second
review on this too.
-Chris.
On 05/08/2013 02:28, Weijun Wang wrote:
> Please take a look at
>
> http://cr.openjdk.java.net/~weijun/8021788/webrev.00/
>
> The problem is that the method treats no META-INF entry as normal. If we
> can be sure that MANIFEST.MF and signature-related files are always at
> the beginning, we can safely treat an entry normal when we have done
> with those.
>
> Thanks
> Max
From xuelei.fan at oracle.com Tue Aug 6 11:44:57 2013
From: xuelei.fan at oracle.com (Xuelei Fan)
Date: Tue, 06 Aug 2013 19:44:57 +0800
Subject: Code review request, 8020842 IDN do not throw IAE when hostname ends
with a trailing dot
Message-ID: <5200E1B9.7070002@oracle.com>
Hi,
Please review the bug fix to strict the illegal input checking in IDN.
webrev: http://cr.openjdk.java.net./~xuelei/8020842/webrev.00/
Here is two test cases, which are expected to get IAE.
Case 1:
String host = IDN.toASCII(".", IDN.USE_STD3_ASCII_RULES);
Exception in thread "main" java.lang.StringIndexOutOfBoundsException:
String index out of range: 0
at java.lang.StringBuffer.charAt(StringBuffer.java:204)
at java.net.IDN.toASCIIInternal(IDN.java:279)
at java.net.IDN.toASCII(IDN.java:118)
Case 2:
String host = IDN.toASCII("com.", IDN.USE_STD3_ASCII_RULES);
Thanks,
Xuelei
From vicente.romero at oracle.com Tue Aug 6 14:18:15 2013
From: vicente.romero at oracle.com (vicente.romero at oracle.com)
Date: Tue, 06 Aug 2013 14:18:15 +0000
Subject: hg: jdk8/tl/langtools: 8022186: javac generates dead code if a try
with an empty body has a finalizer
Message-ID: <20130806141821.C84924860B@hg.openjdk.java.net>
Changeset: 99b60bcf3862
Author: vromero
Date: 2013-08-06 15:08 +0100
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/99b60bcf3862
8022186: javac generates dead code if a try with an empty body has a finalizer
Reviewed-by: jjg
! src/share/classes/com/sun/tools/javac/jvm/Gen.java
+ test/tools/javac/T8022186/DeadCodeGeneratedForEmptyTryTest.java
From chris.hegarty at oracle.com Tue Aug 6 14:35:49 2013
From: chris.hegarty at oracle.com (chris.hegarty at oracle.com)
Date: Tue, 06 Aug 2013 14:35:49 +0000
Subject: hg: jdk8/tl/jdk: 8022344: Additional debug info for
test/java/net/NetworkInterface/IndexTest.java
Message-ID: <20130806143616.38D8B4860E@hg.openjdk.java.net>
Changeset: 6773af0dda02
Author: chegar
Date: 2013-08-06 15:35 +0100
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/6773af0dda02
8022344: Additional debug info for test/java/net/NetworkInterface/IndexTest.java
Reviewed-by: michaelm, alanb
! test/java/net/NetworkInterface/IndexTest.java
From weijun.wang at oracle.com Tue Aug 6 15:08:33 2013
From: weijun.wang at oracle.com (Weijun Wang)
Date: Tue, 06 Aug 2013 23:08:33 +0800
Subject: Code review request, 8020842 IDN do not throw IAE when hostname
ends with a trailing dot
In-Reply-To: <5200E1B9.7070002@oracle.com>
References: <5200E1B9.7070002@oracle.com>
Message-ID: <52011171.7090808@oracle.com>
I am not sure if IDN.java is the correct place to change. At least I've
seen trailing dots in DNS entries. So maybe it's not so illegal.
--Max
On 8/6/13 7:44 PM, Xuelei Fan wrote:
> Hi,
>
> Please review the bug fix to strict the illegal input checking in IDN.
>
> webrev: http://cr.openjdk.java.net./~xuelei/8020842/webrev.00/
>
> Here is two test cases, which are expected to get IAE.
>
> Case 1:
> String host = IDN.toASCII(".", IDN.USE_STD3_ASCII_RULES);
> Exception in thread "main" java.lang.StringIndexOutOfBoundsException:
> String index out of range: 0
> at java.lang.StringBuffer.charAt(StringBuffer.java:204)
> at java.net.IDN.toASCIIInternal(IDN.java:279)
> at java.net.IDN.toASCII(IDN.java:118)
>
> Case 2:
> String host = IDN.toASCII("com.", IDN.USE_STD3_ASCII_RULES);
>
> Thanks,
> Xuelei
>
From Xuelei.Fan at Oracle.Com Tue Aug 6 15:25:31 2013
From: Xuelei.Fan at Oracle.Com (Xuelei Fan)
Date: Tue, 6 Aug 2013 23:25:31 +0800
Subject: Code review request,
8020842 IDN do not throw IAE when hostname ends with a trailing dot
In-Reply-To: <52011171.7090808@oracle.com>
References: <5200E1B9.7070002@oracle.com> <52011171.7090808@oracle.com>
Message-ID:
On Aug 6, 2013, at 23:08, Weijun Wang wrote:
> I am not sure if IDN.java is the correct place to change. At least I've seen trailing dots in DNS entries. So maybe it's not so illegal.
>
Per RFC 1034, a domain name cannot end with dot. I will check other related specifications. What's the case you saw with trailing dots?
Thanks,
Xuelei
> --Max
>
> On 8/6/13 7:44 PM, Xuelei Fan wrote:
>> Hi,
>>
>> Please review the bug fix to strict the illegal input checking in IDN.
>>
>> webrev: http://cr.openjdk.java.net./~xuelei/8020842/webrev.00/
>>
>> Here is two test cases, which are expected to get IAE.
>>
>> Case 1:
>> String host = IDN.toASCII(".", IDN.USE_STD3_ASCII_RULES);
>> Exception in thread "main" java.lang.StringIndexOutOfBoundsException:
>> String index out of range: 0
>> at java.lang.StringBuffer.charAt(StringBuffer.java:204)
>> at java.net.IDN.toASCIIInternal(IDN.java:279)
>> at java.net.IDN.toASCII(IDN.java:118)
>>
>> Case 2:
>> String host = IDN.toASCII("com.", IDN.USE_STD3_ASCII_RULES);
>>
>> Thanks,
>> Xuelei
>>
From sean.mullan at oracle.com Tue Aug 6 15:56:29 2013
From: sean.mullan at oracle.com (sean.mullan at oracle.com)
Date: Tue, 06 Aug 2013 15:56:29 +0000
Subject: hg: jdk8/tl/jdk: 2 new changesets
Message-ID: <20130806155652.F28CB48610@hg.openjdk.java.net>
Changeset: 1f4af3e0447e
Author: mullan
Date: 2013-08-06 08:31 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/1f4af3e0447e
8022120: JCK test api/javax_xml/crypto/dsig/TransformService/index_ParamMethods fails
Summary: TransformService.init and marshalParams must throw NullPointerException when parent parameter is null
Reviewed-by: xuelei
! src/share/classes/org/jcp/xml/dsig/internal/dom/ApacheCanonicalizer.java
! src/share/classes/org/jcp/xml/dsig/internal/dom/ApacheTransform.java
+ test/javax/xml/crypto/dsig/TransformService/NullParent.java
Changeset: ba634b53f53a
Author: mullan
Date: 2013-08-06 08:34 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/ba634b53f53a
Merge
From mhall at mhcomputing.net Tue Aug 6 16:06:16 2013
From: mhall at mhcomputing.net (Matthew Hall)
Date: Tue, 06 Aug 2013 09:06:16 -0700
Subject: Code review request,
8020842 IDN do not throw IAE when hostname ends with a trailing dot
In-Reply-To: <52011171.7090808@oracle.com>
References: <5200E1B9.7070002@oracle.com> <52011171.7090808@oracle.com>
Message-ID: <056269b4-7ea6-4077-a189-ce40ce332dfb@email.android.com>
Trailing dots are allowed in plain DNS (thus almost surely in IDN), and the single dot represents the root zone. So you have to be careful making this sort of change to check the DNS RFCs first.
Matthew.
--
Sent from my mobile device.
Weijun Wang wrote:
>I am not sure if IDN.java is the correct place to change. At least I've
>
>seen trailing dots in DNS entries. So maybe it's not so illegal.
>
>--Max
>
>On 8/6/13 7:44 PM, Xuelei Fan wrote:
>> Hi,
>>
>> Please review the bug fix to strict the illegal input checking in
>IDN.
>>
>> webrev: http://cr.openjdk.java.net./~xuelei/8020842/webrev.00/
>>
>> Here is two test cases, which are expected to get IAE.
>>
>> Case 1:
>> String host = IDN.toASCII(".", IDN.USE_STD3_ASCII_RULES);
>> Exception in thread "main" java.lang.StringIndexOutOfBoundsException:
>> String index out of range: 0
>> at java.lang.StringBuffer.charAt(StringBuffer.java:204)
>> at java.net.IDN.toASCIIInternal(IDN.java:279)
>> at java.net.IDN.toASCII(IDN.java:118)
>>
>> Case 2:
>> String host = IDN.toASCII("com.", IDN.USE_STD3_ASCII_RULES);
>>
>> Thanks,
>> Xuelei
>>
From mhall at mhcomputing.net Tue Aug 6 16:09:07 2013
From: mhall at mhcomputing.net (Matthew Hall)
Date: Tue, 06 Aug 2013 09:09:07 -0700
Subject: Code review request,
8020842 IDN do not throw IAE when hostname ends with a trailing dot
In-Reply-To: <056269b4-7ea6-4077-a189-ce40ce332dfb@email.android.com>
References: <5200E1B9.7070002@oracle.com> <52011171.7090808@oracle.com>
<056269b4-7ea6-4077-a189-ce40ce332dfb@email.android.com>
Message-ID: <7ea06d02-2224-44fb-af21-dc3af48fb603@email.android.com>
Take a look here for more clarity:
http://en.wikipedia.org/wiki/Fully_qualified_domain_name
--
Sent from my mobile device.
Matthew Hall wrote:
>Trailing dots are allowed in plain DNS (thus almost surely in IDN), and
>the single dot represents the root zone. So you have to be careful
>making this sort of change to check the DNS RFCs first.
>
>Matthew.
From dmitry.samersoff at oracle.com Tue Aug 6 16:43:15 2013
From: dmitry.samersoff at oracle.com (Dmitry Samersoff)
Date: Tue, 06 Aug 2013 20:43:15 +0400
Subject: Code review request, 8020842 IDN do not throw IAE when hostname
ends with a trailing dot
In-Reply-To: <5200E1B9.7070002@oracle.com>
References: <5200E1B9.7070002@oracle.com>
Message-ID: <520127A3.3060405@oracle.com>
Xuelei,
. (dot) is perfectly valid domain name and it means root domain so com.
is valid domain name as well.
It thinks to me that in context of methods your change we should ignore
trailing dots, rather than throw exception.
-Dmitry
On 2013-08-06 15:44, Xuelei Fan wrote:
> Hi,
>
> Please review the bug fix to strict the illegal input checking in IDN.
>
> webrev: http://cr.openjdk.java.net./~xuelei/8020842/webrev.00/
>
> Here is two test cases, which are expected to get IAE.
>
> Case 1:
> String host = IDN.toASCII(".", IDN.USE_STD3_ASCII_RULES);
> Exception in thread "main" java.lang.StringIndexOutOfBoundsException:
> String index out of range: 0
> at java.lang.StringBuffer.charAt(StringBuffer.java:204)
> at java.net.IDN.toASCIIInternal(IDN.java:279)
> at java.net.IDN.toASCII(IDN.java:118)
>
> Case 2:
> String host = IDN.toASCII("com.", IDN.USE_STD3_ASCII_RULES);
>
> Thanks,
> Xuelei
>
--
Dmitry Samersoff
Oracle Java development team, Saint Petersburg, Russia
* I would love to change the world, but they won't give me the sources.
From sean.mullan at oracle.com Tue Aug 6 17:21:37 2013
From: sean.mullan at oracle.com (Sean Mullan)
Date: Tue, 06 Aug 2013 10:21:37 -0700
Subject: There should be a way to reorder the JSSE ciphers
In-Reply-To: <5200572D.7050602@oracle.com>
References: <5200572D.7050602@oracle.com>
Message-ID: <520130A1.8020605@oracle.com>
It might be useful to add a more general method to set boolean options
like this. For example:
public final void setOptions(Set options)
public final Option getOptions()
SSLParameters.Option is an enum:
public enum SSLParameters.Option {
ENFORCE_CIPHER_SUITE_ORDER,
// alternate ways to specify client auth
NEED_CLIENT_AUTH,
WANT_CLIENT_AUTH
}
The nice part about this is that you can easily add new options in the
future and providers can cycle through the set of options and throw an
exception for any that they don't yet support.
--Sean
On 08/05/2013 06:53 PM, Xuelei Fan wrote:
> Hi,
>
> We are thinking about to support cipher suites preference in JSSE by
> defining new methods in javax.net.ssl.SSLParameters.
>
> ----------------------------------------------------
> + /**
> + * Sets whether the cipher suites preference should be honored.
> + *
> + * @param on whether local cipher suites order in
> + * {@code #getCipherSuites}
> + * should be honored during SSL/TLS handshaking.
> + */
> + public final void setUseCipherSuitesOrder(boolean on);
>
>
> + /**
> + * Returns whether the cipher suites preference should be honored.
> + *
> + * @return whether local cipher suites order in
> + {@code #getCipherSuites}
> + * should be honored during SSL/TLS handshaking.
> + */
> + public final boolean getUseCipherSuitesOrder();
> ----------------------------------------------------
>
>
> By default, Oracle JSSE provider still honors the client's preference.
> The behavior can be changed by calling
> SSLParameters.setUseCipherSuitesOrder(true) in server side.
>
> We have had the cipher suites preference ordering in client side for
> many years, but we never said how to actually do it in specification and
> JSSE Reference Guide. With this update, the client side can enforce to
> honor cipher suite preference with the new method,
> SSLParameters.setUseCipherSuitesOrder(true). Other providers should
> also comply with this specification.
>
> Any feedback are welcome.
>
> Thanks,
> Xuelei
>
From sean.mullan at oracle.com Tue Aug 6 17:25:41 2013
From: sean.mullan at oracle.com (Sean Mullan)
Date: Tue, 06 Aug 2013 10:25:41 -0700
Subject: There should be a way to reorder the JSSE ciphers
In-Reply-To: <520130A1.8020605@oracle.com>
References: <5200572D.7050602@oracle.com> <520130A1.8020605@oracle.com>
Message-ID: <52013195.6040102@oracle.com>
On 08/06/2013 10:21 AM, Sean Mullan wrote:
> It might be useful to add a more general method to set boolean options
> like this. For example:
>
> public final void setOptions(Set options)
> public final Option getOptions()
oops, above should be:
public final Set getOptions()
--Sean
>
> SSLParameters.Option is an enum:
>
> public enum SSLParameters.Option {
> ENFORCE_CIPHER_SUITE_ORDER,
> // alternate ways to specify client auth
> NEED_CLIENT_AUTH,
> WANT_CLIENT_AUTH
> }
>
> The nice part about this is that you can easily add new options in the
> future and providers can cycle through the set of options and throw an
> exception for any that they don't yet support.
>
> --Sean
>
> On 08/05/2013 06:53 PM, Xuelei Fan wrote:
>> Hi,
>>
>> We are thinking about to support cipher suites preference in JSSE by
>> defining new methods in javax.net.ssl.SSLParameters.
>>
>> ----------------------------------------------------
>> + /**
>> + * Sets whether the cipher suites preference should be honored.
>> + *
>> + * @param on whether local cipher suites order in
>> + * {@code #getCipherSuites}
>> + * should be honored during SSL/TLS handshaking.
>> + */
>> + public final void setUseCipherSuitesOrder(boolean on);
>>
>>
>> + /**
>> + * Returns whether the cipher suites preference should be honored.
>> + *
>> + * @return whether local cipher suites order in
>> + {@code #getCipherSuites}
>> + * should be honored during SSL/TLS handshaking.
>> + */
>> + public final boolean getUseCipherSuitesOrder();
>> ----------------------------------------------------
>>
>>
>> By default, Oracle JSSE provider still honors the client's preference.
>> The behavior can be changed by calling
>> SSLParameters.setUseCipherSuitesOrder(true) in server side.
>>
>> We have had the cipher suites preference ordering in client side for
>> many years, but we never said how to actually do it in specification and
>> JSSE Reference Guide. With this update, the client side can enforce to
>> honor cipher suite preference with the new method,
>> SSLParameters.setUseCipherSuitesOrder(true). Other providers should
>> also comply with this specification.
>>
>> Any feedback are welcome.
>>
>> Thanks,
>> Xuelei
>>
>
From michael.x.mcmahon at oracle.com Tue Aug 6 17:35:03 2013
From: michael.x.mcmahon at oracle.com (Michael McMahon)
Date: Tue, 06 Aug 2013 18:35:03 +0100
Subject: Code review request, 8020842 IDN do not throw IAE when hostname
ends with a trailing dot
In-Reply-To: <520127A3.3060405@oracle.com>
References: <5200E1B9.7070002@oracle.com> <520127A3.3060405@oracle.com>
Message-ID: <520133C7.20401@oracle.com>
I don't really understand the reason for the restriction in SNIHostName
But, I guess that is where it should be enforced if it is required.
Michael.
On 06/08/13 17:43, Dmitry Samersoff wrote:
> Xuelei,
>
> . (dot) is perfectly valid domain name and it means root domain so com.
> is valid domain name as well.
>
> It thinks to me that in context of methods your change we should ignore
> trailing dots, rather than throw exception.
>
> -Dmitry
>
>
>
> On 2013-08-06 15:44, Xuelei Fan wrote:
>> Hi,
>>
>> Please review the bug fix to strict the illegal input checking in IDN.
>>
>> webrev: http://cr.openjdk.java.net./~xuelei/8020842/webrev.00/
>>
>> Here is two test cases, which are expected to get IAE.
>>
>> Case 1:
>> String host = IDN.toASCII(".", IDN.USE_STD3_ASCII_RULES);
>> Exception in thread "main" java.lang.StringIndexOutOfBoundsException:
>> String index out of range: 0
>> at java.lang.StringBuffer.charAt(StringBuffer.java:204)
>> at java.net.IDN.toASCIIInternal(IDN.java:279)
>> at java.net.IDN.toASCII(IDN.java:118)
>>
>> Case 2:
>> String host = IDN.toASCII("com.", IDN.USE_STD3_ASCII_RULES);
>>
>> Thanks,
>> Xuelei
>>
>
From brich at us.ibm.com Tue Aug 6 17:37:49 2013
From: brich at us.ibm.com (Bruce Rich)
Date: Tue, 6 Aug 2013 12:37:49 -0500
Subject: There should be a way to reorder the JSSE ciphers
In-Reply-To: <5200572D.7050602@oracle.com>
References: <5200572D.7050602@oracle.com>
Message-ID:
Thinking out loud here...seems like we need to talk about impacts on both
sides of the wire.
On the client side, I don't think this can have any effect. According to
the TLS RFC (link), the ClientHello includes the
cipher_suites
This is a list of the cryptographic options supported by the
client, with the client's first preference first. If the
session_id field is not empty (implying a session resumption
request), this vector MUST include at least the cipher_suite from
that session. Values are defined in Appendix A.5.
So according to the spec, the client's first preference is to be first in
the list. If the client is now passing an unordered list, how does the
server know the client doesn't care? There's no provision for passing an
indicator in the protocol. So I don't think this proposal really applies
on the client side, and perhaps the setting name is too general (should be
setUseClientsCipherSuiteOrder?)
On the server side, this may explicitly force the server to follow the
client's list order, or to do whatever it does today. We need to be clear
what "true" means and what "false" means. (Does "false" mean that the
server CANNOT follow the client's preferences?)
And if I understood your example correctly, the Oracle server today
follows SSLParameters.setUseCipherSuitesOrder(true), so to change
behavior, it would have to be set to
SSLParameters.setUseCipherSuitesOrder(false). Unless of course, it's
supposed to mean "use local preferences for cipher ordering", and the
server interprets it according to its priority order (not expressed in the
protocol in any way), in which case maybe the operation would be called
SSLParameters.setUseLocalCipherSuitesOrder(boolean). However, a setting
to "false" still cannot really mean anything on the client side, for the
reasons mentioned above.
Bruce A Rich
brich at-sign us dot ibm dot com
From: Xuelei Fan
To: OpenJDK
Date: 08/05/2013 09:10 PM
Subject: There should be a way to reorder the JSSE ciphers
Sent by: security-dev-bounces at openjdk.java.net
Hi,
We are thinking about to support cipher suites preference in JSSE by
defining new methods in javax.net.ssl.SSLParameters.
----------------------------------------------------
+ /**
+ * Sets whether the cipher suites preference should be honored.
+ *
+ * @param on whether local cipher suites order in
+ * {@code #getCipherSuites}
+ * should be honored during SSL/TLS handshaking.
+ */
+ public final void setUseCipherSuitesOrder(boolean on);
+ /**
+ * Returns whether the cipher suites preference should be honored.
+ *
+ * @return whether local cipher suites order in
+ {@code #getCipherSuites}
+ * should be honored during SSL/TLS handshaking.
+ */
+ public final boolean getUseCipherSuitesOrder();
----------------------------------------------------
By default, Oracle JSSE provider still honors the client's preference.
The behavior can be changed by calling
SSLParameters.setUseCipherSuitesOrder(true) in server side.
We have had the cipher suites preference ordering in client side for
many years, but we never said how to actually do it in specification and
JSSE Reference Guide. With this update, the client side can enforce to
honor cipher suite preference with the new method,
SSLParameters.setUseCipherSuitesOrder(true). Other providers should
also comply with this specification.
Any feedback are welcome.
Thanks,
Xuelei
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
From jason.uh at oracle.com Tue Aug 6 20:16:16 2013
From: jason.uh at oracle.com (Jason Uh)
Date: Tue, 06 Aug 2013 13:16:16 -0700
Subject: [8] Request for review: 8022439: Fix lint warnings in sun.security.ec
Message-ID: <52015990.9070405@oracle.com>
Hi Joe,
Could you please review this changeset, which takes care of deprecation
warnings in sun.security.ec?
http://cr.openjdk.java.net/~juh/8022439/webrev.00
Thanks,
Jason
From joe.darcy at oracle.com Tue Aug 6 20:25:21 2013
From: joe.darcy at oracle.com (joe.darcy at oracle.com)
Date: Tue, 06 Aug 2013 20:25:21 +0000
Subject: hg: jdk8/tl/jdk: 8022174: Fix doclint warnings in javax.sound; ...
Message-ID: <20130806202538.5AED948628@hg.openjdk.java.net>
Changeset: 98643f3ddf40
Author: darcy
Date: 2013-08-06 13:25 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/98643f3ddf40
8022174: Fix doclint warnings in javax.sound
8022404: Fix doclint issues in java.applet
Reviewed-by: prr
! src/share/classes/java/applet/AppletContext.java
! src/share/classes/javax/sound/midi/MetaMessage.java
! src/share/classes/javax/sound/midi/MidiDevice.java
! src/share/classes/javax/sound/midi/MidiDeviceReceiver.java
! src/share/classes/javax/sound/midi/MidiDeviceTransmitter.java
! src/share/classes/javax/sound/midi/MidiFileFormat.java
! src/share/classes/javax/sound/midi/MidiMessage.java
! src/share/classes/javax/sound/midi/MidiSystem.java
! src/share/classes/javax/sound/midi/ShortMessage.java
! src/share/classes/javax/sound/midi/Synthesizer.java
! src/share/classes/javax/sound/midi/SysexMessage.java
! src/share/classes/javax/sound/midi/Track.java
! src/share/classes/javax/sound/sampled/AudioFileFormat.java
! src/share/classes/javax/sound/sampled/AudioFormat.java
! src/share/classes/javax/sound/sampled/AudioSystem.java
! src/share/classes/javax/sound/sampled/BooleanControl.java
! src/share/classes/javax/sound/sampled/Mixer.java
! src/share/classes/javax/sound/sampled/spi/FormatConversionProvider.java
From joe.darcy at oracle.com Tue Aug 6 20:28:48 2013
From: joe.darcy at oracle.com (Joe Darcy)
Date: Tue, 06 Aug 2013 13:28:48 -0700
Subject: [8] Request for review: 8022439: Fix lint warnings in
sun.security.ec
In-Reply-To: <52015990.9070405@oracle.com>
References: <52015990.9070405@oracle.com>
Message-ID: <52015C80.5030808@oracle.com>
On 08/06/2013 01:16 PM, Jason Uh wrote:
> Hi Joe,
>
> Could you please review this changeset, which takes care of
> deprecation warnings in sun.security.ec?
>
> http://cr.openjdk.java.net/~juh/8022439/webrev.00
>
> Thanks,
> Jason
Hi Jason,
Since this is not a public class, adding @Deprected is fine without
doing additional paperwork.
Thanks,
-Joe
From stuart.marks at oracle.com Tue Aug 6 20:40:32 2013
From: stuart.marks at oracle.com (stuart.marks at oracle.com)
Date: Tue, 06 Aug 2013 20:40:32 +0000
Subject: hg: jdk8/tl/jdk: 8022412: Fixed warnings in java.util root,
except for HashMap
Message-ID: <20130806204046.A790D4862B@hg.openjdk.java.net>
Changeset: 12c1b78acf9a
Author: lagergren
Date: 2013-08-06 12:56 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/12c1b78acf9a
8022412: Fixed warnings in java.util root, except for HashMap
Reviewed-by: mduigou, darcy
Contributed-by: marcus.lagergren at oracle.com
! src/share/classes/java/util/ArrayPrefixHelpers.java
! src/share/classes/java/util/Collections.java
! src/share/classes/java/util/Comparator.java
! src/share/classes/java/util/Comparators.java
! src/share/classes/java/util/Hashtable.java
! src/share/classes/java/util/IdentityHashMap.java
! src/share/classes/java/util/Vector.java
! src/share/classes/java/util/WeakHashMap.java
From jason.uh at oracle.com Tue Aug 6 20:46:52 2013
From: jason.uh at oracle.com (jason.uh at oracle.com)
Date: Tue, 06 Aug 2013 20:46:52 +0000
Subject: hg: jdk8/tl/jdk: 8022439: Fix lint warnings in sun.security.ec
Message-ID: <20130806204704.1C4B04862C@hg.openjdk.java.net>
Changeset: 8112076ae424
Author: juh
Date: 2013-08-06 13:46 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/8112076ae424
8022439: Fix lint warnings in sun.security.ec
Reviewed-by: darcy
! src/share/classes/sun/security/ec/ECDSASignature.java
From jason.uh at oracle.com Tue Aug 6 20:54:58 2013
From: jason.uh at oracle.com (Jason Uh)
Date: Tue, 06 Aug 2013 13:54:58 -0700
Subject: [8] Request for Review: 8022443: Fix lint warnings in
sun.security.pkcs12
Message-ID: <520162A2.6030405@oracle.com>
Hi Joe,
Please review this changeset, which fixes lint deprecation warnings in
sun.security.pkcs12.
http://cr.openjdk.java.net/~juh/8022443/webrev.00/
Thanks!
Jason
From joe.darcy at oracle.com Tue Aug 6 21:03:29 2013
From: joe.darcy at oracle.com (Joe Darcy)
Date: Tue, 06 Aug 2013 14:03:29 -0700
Subject: [8] Request for Review: 8022443: Fix lint warnings in
sun.security.pkcs12
In-Reply-To: <520162A2.6030405@oracle.com>
References: <520162A2.6030405@oracle.com>
Message-ID: <520164A1.2080204@oracle.com>
On 08/06/2013 01:54 PM, Jason Uh wrote:
> Hi Joe,
>
> Please review this changeset, which fixes lint deprecation warnings in
> sun.security.pkcs12.
>
> http://cr.openjdk.java.net/~juh/8022443/webrev.00/
>
> Thanks!
>
> Jason
Hi Jason,
Given the deprecated overload of equals, your changes look fine.
Cheers,
-Joe
From stuart.marks at oracle.com Tue Aug 6 21:12:43 2013
From: stuart.marks at oracle.com (Stuart Marks)
Date: Tue, 06 Aug 2013 14:12:43 -0700
Subject: hg: jdk8/tl/jdk: 8020854: change RMI javadocs to specify that
remote objects are exported to the wildcard address
In-Reply-To:
References: <20130806020849.73652485F5@hg.openjdk.java.net>
Message-ID: <520166CB.9060009@oracle.com>
On 8/5/13 7:41 PM, Bernd Eckenfels wrote:
>> ! src/share/classes/java/rmi/server/RMISocketFactory.java
>
> I think setting the rmi server name to localhost is a dangerous recommendation.
> It might happen that it resolves to a IPv4 or IPv6 only address on a dual
> socket host. And InetAddress.getLoopbackAddress() might pick the preferred
> family different from that. So it is better to use the literal returned by that
> function. (or remove this from javadoc).
Oh yes, good point about localhost and IPv4 vs IPv6. I'll fix the example to
use an address instead of localhost.
Thanks,
s'marks
From jason.uh at oracle.com Tue Aug 6 21:10:36 2013
From: jason.uh at oracle.com (jason.uh at oracle.com)
Date: Tue, 06 Aug 2013 21:10:36 +0000
Subject: hg: jdk8/tl/jdk: 8022443: Fix lint warnings in sun.security.pkcs12
Message-ID: <20130806211049.52D984862E@hg.openjdk.java.net>
Changeset: 69cfd941aec2
Author: juh
Date: 2013-08-06 14:10 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/69cfd941aec2
8022443: Fix lint warnings in sun.security.pkcs12
Reviewed-by: darcy
! src/share/classes/sun/security/pkcs12/PKCS12KeyStore.java
From sean.mullan at oracle.com Tue Aug 6 21:15:04 2013
From: sean.mullan at oracle.com (Sean Mullan)
Date: Tue, 06 Aug 2013 14:15:04 -0700
Subject: [8] Request for Review: 8022443: Fix lint warnings in
sun.security.pkcs12
In-Reply-To: <520162A2.6030405@oracle.com>
References: <520162A2.6030405@oracle.com>
Message-ID: <52016758.7030902@oracle.com>
Looks fine to me, but is the intention to remove the cast once 8022444
(Remove sun.security.util.equals(ObjectIdentifier other) methods) is
fixed? Wouldn't it be easier just to fix 8022444 instead which would
also fix the lint warnings?
--Sean
On 08/06/2013 01:54 PM, Jason Uh wrote:
> Hi Joe,
>
> Please review this changeset, which fixes lint depre Remove sun.security.util.equals(ObjectIdentifier other) methodcation warnings in
> sun.security.pkcs12.
>
> http://cr.openjdk.java.net/~juh/8022443/webrev.00/
>
> Thanks!
>
> Jason
From dan.xu at oracle.com Tue Aug 6 21:34:13 2013
From: dan.xu at oracle.com (dan.xu at oracle.com)
Date: Tue, 06 Aug 2013 21:34:13 +0000
Subject: hg: jdk8/tl/jdk: 8022410: Fix Javac Warnings in com.sun.security.auth
Package
Message-ID: <20130806213427.3FD5948632@hg.openjdk.java.net>
Changeset: 4b8b811059db
Author: dxu
Date: 2013-08-06 14:33 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/4b8b811059db
8022410: Fix Javac Warnings in com.sun.security.auth Package
Reviewed-by: darcy
! src/share/classes/com/sun/security/auth/PolicyFile.java
! src/share/classes/com/sun/security/auth/SubjectCodeSource.java
From stuart.marks at oracle.com Tue Aug 6 21:19:57 2013
From: stuart.marks at oracle.com (stuart.marks at oracle.com)
Date: Tue, 06 Aug 2013 21:19:57 +0000
Subject: hg: jdk8/tl/jdk: 8022440: suppress deprecation warnings in sun.rmi
Message-ID: <20130806212010.B4F394862F@hg.openjdk.java.net>
Changeset: 31e923842d49
Author: smarks
Date: 2013-08-06 14:24 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/31e923842d49
8022440: suppress deprecation warnings in sun.rmi
Reviewed-by: mduigou
! src/share/classes/sun/rmi/runtime/Log.java
! src/share/classes/sun/rmi/server/ActivatableRef.java
! src/share/classes/sun/rmi/server/Dispatcher.java
! src/share/classes/sun/rmi/server/LoaderHandler.java
! src/share/classes/sun/rmi/server/UnicastRef.java
! src/share/classes/sun/rmi/server/UnicastServerRef.java
! src/share/classes/sun/rmi/server/Util.java
! src/share/classes/sun/rmi/transport/DGCImpl.java
! src/share/classes/sun/rmi/transport/StreamRemoteCall.java
! src/share/classes/sun/rmi/transport/Transport.java
! src/share/classes/sun/rmi/transport/proxy/RMIMasterSocketFactory.java
! src/share/classes/sun/rmi/transport/tcp/ConnectionMultiplexer.java
! src/share/classes/sun/rmi/transport/tcp/TCPTransport.java
From joel.franck at oracle.com Tue Aug 6 17:03:13 2013
From: joel.franck at oracle.com (joel.franck at oracle.com)
Date: Tue, 06 Aug 2013 17:03:13 +0000
Subject: hg: jdk8/tl/jdk: 7184826: (reflect) Add support for Project Lambda
concepts in core reflection
Message-ID: <20130806170335.9D79848615@hg.openjdk.java.net>
Changeset: cd0ea5563523
Author: jfranck
Date: 2013-08-06 18:54 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/cd0ea5563523
7184826: (reflect) Add support for Project Lambda concepts in core reflection
Reviewed-by: darcy, jfranck
Contributed-by: Amy Lu
+ test/java/lang/reflect/DefaultStaticTest/DefaultStaticInvokeTest.java
+ test/java/lang/reflect/DefaultStaticTest/DefaultStaticTestData.java
+ test/java/lang/reflect/DefaultStaticTest/helper/Declared.java
+ test/java/lang/reflect/DefaultStaticTest/helper/Mod.java
! test/java/lang/reflect/Method/DefaultMethodModeling.java
! test/java/lang/reflect/Method/IsDefaultTest.java
From dan.xu at oracle.com Tue Aug 6 20:42:20 2013
From: dan.xu at oracle.com (Dan Xu)
Date: Tue, 06 Aug 2013 13:42:20 -0700
Subject: RFR: JDK8022410 - Fix Javac Warnings in com.sun.security.auth Package
In-Reply-To: <520127DF.2050906@oracle.com>
References: <520020D1.3070903@oracle.com> <520127DF.2050906@oracle.com>
Message-ID: <52015FAC.9080304@oracle.com>
HiAll,
Please review the warning fix in com.sun.security.auth package. They are
all [deprecation] warnings. Thanks!
webrev: http://cr.openjdk.java.net/~dxu/8022410/webrev.00/
Thanks,
-Dan
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
From joe.darcy at oracle.com Tue Aug 6 20:52:22 2013
From: joe.darcy at oracle.com (Joe Darcy)
Date: Tue, 06 Aug 2013 13:52:22 -0700
Subject: RFR: JDK8022410 - Fix Javac Warnings in com.sun.security.auth
Package
In-Reply-To: <52015FAC.9080304@oracle.com>
References: <520020D1.3070903@oracle.com> <520127DF.2050906@oracle.com>
<52015FAC.9080304@oracle.com>
Message-ID: <52016206.4070908@oracle.com>
Hello,
Looks fine; thanks,
-Joe
On 08/06/2013 01:42 PM, Dan Xu wrote:
> HiAll,
>
> Please review the warning fix in com.sun.security.auth package. They
> are all [deprecation] warnings. Thanks!
>
> webrev: http://cr.openjdk.java.net/~dxu/8022410/webrev.00/
>
> Thanks,
>
> -Dan
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
From joe.darcy at oracle.com Tue Aug 6 23:01:58 2013
From: joe.darcy at oracle.com (joe.darcy at oracle.com)
Date: Tue, 06 Aug 2013 23:01:58 +0000
Subject: hg: jdk8/tl/jdk: 8022406: Fix doclint issues in java.beans
Message-ID: <20130806230214.28DEC48634@hg.openjdk.java.net>
Changeset: d5694d78ebc6
Author: darcy
Date: 2013-08-06 16:01 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/d5694d78ebc6
8022406: Fix doclint issues in java.beans
Reviewed-by: prr
! src/share/classes/java/beans/AppletInitializer.java
! src/share/classes/java/beans/Beans.java
! src/share/classes/java/beans/ConstructorProperties.java
! src/share/classes/java/beans/DefaultPersistenceDelegate.java
! src/share/classes/java/beans/EventHandler.java
! src/share/classes/java/beans/Expression.java
! src/share/classes/java/beans/IndexedPropertyDescriptor.java
! src/share/classes/java/beans/Introspector.java
! src/share/classes/java/beans/PersistenceDelegate.java
! src/share/classes/java/beans/PropertyChangeSupport.java
! src/share/classes/java/beans/PropertyDescriptor.java
! src/share/classes/java/beans/Transient.java
! src/share/classes/java/beans/VetoableChangeSupport.java
! src/share/classes/java/beans/beancontext/BeanContext.java
! src/share/classes/java/beans/beancontext/BeanContextChild.java
! src/share/classes/java/beans/beancontext/BeanContextChildSupport.java
! src/share/classes/java/beans/beancontext/BeanContextMembershipEvent.java
! src/share/classes/java/beans/beancontext/BeanContextServices.java
! src/share/classes/java/beans/beancontext/BeanContextServicesSupport.java
! src/share/classes/java/beans/beancontext/BeanContextSupport.java
From jason.uh at oracle.com Tue Aug 6 23:46:52 2013
From: jason.uh at oracle.com (Jason Uh)
Date: Tue, 06 Aug 2013 16:46:52 -0700
Subject: [8] Request for Review: 8022461: Fix lint warnings in
sun.security.{provider, rsa, x509}
Message-ID: <52018AEC.9060305@oracle.com>
Joe, Sean,
Could I please get a review of this changeset? This change fixes
deprecation warnings in:
sun.security.provider
sun.security.rsa
sun.security.x509
In sun.security.provider and sun.security.rsa, I change the use of
sun.security.x509.X509Key's key bytes to the BitArray form of the key.
Webrev: http://cr.openjdk.java.net/~juh/8022461/webrev.00/
Thanks,
Jason
From joe.darcy at oracle.com Tue Aug 6 23:45:51 2013
From: joe.darcy at oracle.com (joe.darcy at oracle.com)
Date: Tue, 06 Aug 2013 23:45:51 +0000
Subject: hg: jdk8/tl/jdk: 8022453: Fix doclint issues in javax.accessibility
Message-ID: <20130806234603.A3A9048638@hg.openjdk.java.net>
Changeset: 6cc8c2ad9804
Author: darcy
Date: 2013-08-06 16:45 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/6cc8c2ad9804
8022453: Fix doclint issues in javax.accessibility
Reviewed-by: prr
! src/share/classes/javax/accessibility/Accessible.java
! src/share/classes/javax/accessibility/AccessibleBundle.java
! src/share/classes/javax/accessibility/AccessibleExtendedTable.java
! src/share/classes/javax/accessibility/AccessibleRelationSet.java
! src/share/classes/javax/accessibility/AccessibleTable.java
! src/share/classes/javax/accessibility/AccessibleTableModelChange.java
! src/share/classes/javax/accessibility/AccessibleTextSequence.java
! src/share/classes/javax/accessibility/AccessibleValue.java
From joe.darcy at oracle.com Tue Aug 6 23:51:58 2013
From: joe.darcy at oracle.com (Joe Darcy)
Date: Tue, 06 Aug 2013 16:51:58 -0700
Subject: [8] Request for Review: 8022461: Fix lint warnings in
sun.security.{provider, rsa, x509}
In-Reply-To: <52018AEC.9060305@oracle.com>
References: <52018AEC.9060305@oracle.com>
Message-ID: <52018C1E.8060204@oracle.com>
Hi Jason,
Looks fine to me, but a security reviewer should approve as well.
Thanks,
-Joe
On 08/06/2013 04:46 PM, Jason Uh wrote:
> Joe, Sean,
>
> Could I please get a review of this changeset? This change fixes
> deprecation warnings in:
> sun.security.provider
> sun.security.rsa
> sun.security.x509
>
> In sun.security.provider and sun.security.rsa, I change the use of
> sun.security.x509.X509Key's key bytes to the BitArray form of the key.
>
> Webrev: http://cr.openjdk.java.net/~juh/8022461/webrev.00/
>
> Thanks,
> Jason
From henry.jen at oracle.com Tue Aug 6 23:21:11 2013
From: henry.jen at oracle.com (henry.jen at oracle.com)
Date: Tue, 06 Aug 2013 23:21:11 +0000
Subject: hg: jdk8/tl/jdk: 8015318: Extend Collector with 'finish' operation
Message-ID: <20130806232124.D773C48636@hg.openjdk.java.net>
Changeset: 939c3be6cc86
Author: briangoetz
Date: 2013-06-28 16:26 -0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/939c3be6cc86
8015318: Extend Collector with 'finish' operation
Reviewed-by: mduigou
Contributed-by: brian.goetz at oracle.com
! src/share/classes/java/util/DoubleSummaryStatistics.java
! src/share/classes/java/util/IntSummaryStatistics.java
! src/share/classes/java/util/LongSummaryStatistics.java
! src/share/classes/java/util/StringJoiner.java
! src/share/classes/java/util/stream/Collector.java
! src/share/classes/java/util/stream/Collectors.java
! src/share/classes/java/util/stream/DelegatingStream.java
! src/share/classes/java/util/stream/DoubleStream.java
! src/share/classes/java/util/stream/IntStream.java
! src/share/classes/java/util/stream/LongStream.java
! src/share/classes/java/util/stream/ReduceOps.java
! src/share/classes/java/util/stream/ReferencePipeline.java
! src/share/classes/java/util/stream/Stream.java
! src/share/classes/java/util/stream/package-info.java
! test/java/util/stream/test/org/openjdk/tests/java/util/FillableStringTest.java
! test/java/util/stream/test/org/openjdk/tests/java/util/stream/GroupByOpTest.java
! test/java/util/stream/test/org/openjdk/tests/java/util/stream/SummaryStatisticsTest.java
! test/java/util/stream/test/org/openjdk/tests/java/util/stream/TabulatorsTest.java
! test/jdk/lambda/MethodReferenceTestInstanceMethod.java
! test/jdk/lambda/separate/TestHarness.java
From joe.darcy at oracle.com Tue Aug 6 23:48:45 2013
From: joe.darcy at oracle.com (Joe Darcy)
Date: Tue, 06 Aug 2013 16:48:45 -0700
Subject: RFR: JDK8022410 - Fix Javac Warnings in com.sun.security.auth
Package
In-Reply-To: <580B6061-8041-44C7-AA2A-BADC64C6CF46@oracle.com>
References: <520020D1.3070903@oracle.com> <520127DF.2050906@oracle.com>
<52015FAC.9080304@oracle.com> <52016206.4070908@oracle.com>
<580B6061-8041-44C7-AA2A-BADC64C6CF46@oracle.com>
Message-ID: <52018B5D.2050005@oracle.com>
Hi Marcus,
Looks good; approved to go back.
Thanks,
-Joe
On 08/06/2013 04:15 PM, Marcus Lagergren wrote:
> Please review more warnings:
> http://cr.openjdk.java.net/~lagergren/8022454/webrev/
>
>
> On Aug 6, 2013, at 1:52 PM, Joe Darcy > wrote:
>
>> Hello,
>>
>> Looks fine; thanks,
>>
>> -Joe
>>
>> On 08/06/2013 01:42 PM, Dan Xu wrote:
>>> HiAll,
>>>
>>> Please review the warning fix in com.sun.security.auth package. They
>>> are all [deprecation] warnings. Thanks!
>>>
>>> webrev: http://cr.openjdk.java.net/~dxu/8022410/webrev.00/
>>>
>>> Thanks,
>>>
>>> -Dan
>>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
From joel.franck at oracle.com Tue Aug 6 23:40:45 2013
From: joel.franck at oracle.com (joel.franck at oracle.com)
Date: Tue, 06 Aug 2013 23:40:45 +0000
Subject: hg: jdk8/tl/langtools: 8009367: Wrong kind of name used in comparison
in javax.lang.model code for repeatable annotations
Message-ID: <20130806234048.1AF1848637@hg.openjdk.java.net>
Changeset: 051e64d0816e
Author: jfranck
Date: 2013-08-07 01:32 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/051e64d0816e
8009367: Wrong kind of name used in comparison in javax.lang.model code for repeatable annotations
Reviewed-by: jjg, darcy
! src/share/classes/com/sun/tools/javac/model/JavacAnnoConstructs.java
+ test/tools/javac/processing/model/element/8009367/TestQualifiedNameUsed.java
+ test/tools/javac/processing/model/element/8009367/p/Q.java
+ test/tools/javac/processing/model/element/8009367/p/QQ.java
+ test/tools/javac/processing/model/element/8009367/p/R.java
+ test/tools/javac/processing/model/element/8009367/p/RR.java
From lana.steuck at oracle.com Wed Aug 7 00:16:51 2013
From: lana.steuck at oracle.com (lana.steuck at oracle.com)
Date: Wed, 07 Aug 2013 00:16:51 +0000
Subject: hg: jdk8/tl/corba: 2 new changesets
Message-ID: <20130807001653.ECB1B4863C@hg.openjdk.java.net>
Changeset: 528c7e76eaee
Author: cl
Date: 2013-08-01 04:56 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/corba/rev/528c7e76eaee
Added tag jdk8-b101 for changeset a013024b0747
! .hgtags
Changeset: 342a954b68f3
Author: lana
Date: 2013-08-06 16:54 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/corba/rev/342a954b68f3
Merge
From lana.steuck at oracle.com Wed Aug 7 00:16:56 2013
From: lana.steuck at oracle.com (lana.steuck at oracle.com)
Date: Wed, 07 Aug 2013 00:16:56 +0000
Subject: hg: jdk8/tl/jaxws: Added tag jdk8-b101 for changeset 60b623a36164
Message-ID: <20130807001701.D5BDD4863E@hg.openjdk.java.net>
Changeset: 988a5f2ac559
Author: cl
Date: 2013-08-01 04:56 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jaxws/rev/988a5f2ac559
Added tag jdk8-b101 for changeset 60b623a36164
! .hgtags
From lana.steuck at oracle.com Wed Aug 7 00:16:59 2013
From: lana.steuck at oracle.com (lana.steuck at oracle.com)
Date: Wed, 07 Aug 2013 00:16:59 +0000
Subject: hg: jdk8/tl/nashorn: 3 new changesets
Message-ID: <20130807001704.8F0EE4863F@hg.openjdk.java.net>
Changeset: 573ccf92d646
Author: cl
Date: 2013-08-01 04:56 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/573ccf92d646
Added tag jdk8-b101 for changeset a302b05d0ee4
! .hgtags
Changeset: e966ff0a3ffe
Author: lana
Date: 2013-08-06 10:02 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/e966ff0a3ffe
Merge
Changeset: ab90c566272d
Author: lana
Date: 2013-08-06 17:01 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/ab90c566272d
Merge
From lana.steuck at oracle.com Wed Aug 7 00:16:56 2013
From: lana.steuck at oracle.com (lana.steuck at oracle.com)
Date: Wed, 07 Aug 2013 00:16:56 +0000
Subject: hg: jdk8/tl/jaxp: 2 new changesets
Message-ID: <20130807001706.D504A48640@hg.openjdk.java.net>
Changeset: b8cd8b101ecb
Author: cl
Date: 2013-08-01 04:56 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jaxp/rev/b8cd8b101ecb
Added tag jdk8-b101 for changeset 0a7432f898e5
! .hgtags
Changeset: 7cffafa606e9
Author: lana
Date: 2013-08-06 10:02 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jaxp/rev/7cffafa606e9
Merge
From lana.steuck at oracle.com Wed Aug 7 00:17:23 2013
From: lana.steuck at oracle.com (lana.steuck at oracle.com)
Date: Wed, 07 Aug 2013 00:17:23 +0000
Subject: hg: jdk8/tl/hotspot: 61 new changesets
Message-ID: <20130807001932.4D8C048642@hg.openjdk.java.net>
Changeset: 2285b4a0a4e6
Author: amurillo
Date: 2013-07-18 09:35 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/2285b4a0a4e6
8020797: new hotspot build - hs25-b43
Reviewed-by: jcoomes
! make/hotspot_version
Changeset: dbc0b5dc08f5
Author: fparain
Date: 2013-07-10 15:49 +0000
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/dbc0b5dc08f5
7143807: ResourceMark nesting problem in stringStream
Reviewed-by: kvn, dcubed
! src/share/vm/memory/resourceArea.hpp
! src/share/vm/runtime/thread.cpp
! src/share/vm/runtime/thread.hpp
! src/share/vm/utilities/ostream.cpp
! src/share/vm/utilities/ostream.hpp
Changeset: c9a5fab39234
Author: zgu
Date: 2013-07-11 13:15 -0400
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/c9a5fab39234
8012241: NMT huge memory footprint, it usually leads to OOME
Summary: Enforce memory limitation on NMT to prevent JVM OOM
Reviewed-by: acorn, dcubed, minqi
! src/share/vm/services/memTracker.cpp
Changeset: 5f056abe17c6
Author: zgu
Date: 2013-07-12 04:35 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/5f056abe17c6
Merge
Changeset: 2e8f19c2feef
Author: allwin
Date: 2013-07-12 18:43 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/2e8f19c2feef
7162400: Intermittent java.io.IOException: Bad file number during HotSpotVirtualMachine.executeCommand
Summary: Intermittent java.io.IOException: Bad file number during HotSpotVirtualMachine.executeCommand
Reviewed-by: dcubed, dholmes, sspitsyn, mgerdin, ctornqvi, dsamersoff
! src/os/bsd/vm/attachListener_bsd.cpp
! src/os/linux/vm/attachListener_linux.cpp
! src/os/solaris/vm/attachListener_solaris.cpp
! src/os/windows/vm/attachListener_windows.cpp
! src/share/vm/runtime/thread.cpp
! src/share/vm/services/attachListener.hpp
+ test/serviceability/attach/AttachWithStalePidFile.java
+ test/serviceability/attach/AttachWithStalePidFileTarget.java
Changeset: c0cb474be37e
Author: ctornqvi
Date: 2013-07-12 20:47 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/c0cb474be37e
Merge
Changeset: 862625d214fa
Author: fparain
Date: 2013-07-15 00:23 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/862625d214fa
Merge
Changeset: 23123fc6968a
Author: rbackman
Date: 2013-07-15 11:35 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/23123fc6968a
8019324: assert(_f2 == 0 || _f2 == f2) failed: illegal field change
Reviewed-by: dholmes, rbackman
Contributed-by: David Simms
! src/share/vm/oops/cpCache.hpp
Changeset: ee9e76adced3
Author: rbackman
Date: 2013-07-15 12:06 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/ee9e76adced3
Merge
Changeset: 33c52908bcdb
Author: dholmes
Date: 2013-07-15 23:23 -0400
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/33c52908bcdb
8015759: hotspot changes needed to compile with Visual Studio 2012
Reviewed-by: anthony, dholmes, dcubed
Contributed-by: Tim Bell
! make/windows/makefiles/compile.make
! make/windows/makefiles/sanity.make
! make/windows/makefiles/vm.make
! src/os_cpu/windows_x86/vm/unwind_windows_x86.hpp
Changeset: 39deebbc90b3
Author: mgerdin
Date: 2013-07-16 07:33 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/39deebbc90b3
6671508: JNI GetPrimitiveArrayCritical should not be callable on object arrays
Summary: Checked JNI now reports error for Get/ReleasePrimitiveArrayCritical on object arrays
Reviewed-by: dholmes, acorn
Contributed-by: david.simms at oracle.com
! src/share/vm/prims/jniCheck.cpp
Changeset: e619a2766bcc
Author: rbackman
Date: 2013-06-12 11:17 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/e619a2766bcc
8016131: nsk/sysdict/vm/stress/chain tests crash the VM in 'entry_frame_is_first()'
Reviewed-by: jrose, kvn, mgronlun
! src/cpu/sparc/vm/frame_sparc.inline.hpp
! src/cpu/x86/vm/frame_x86.inline.hpp
! src/share/vm/prims/forte.cpp
! src/share/vm/runtime/frame.cpp
! src/share/vm/runtime/frame.hpp
! src/share/vm/runtime/javaCalls.hpp
! src/share/vm/runtime/thread.cpp
! src/share/vm/runtime/thread.hpp
Changeset: 732af649bc3a
Author: ccheung
Date: 2013-07-17 12:22 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/732af649bc3a
8017498: JVM crashes when native code calls sigaction(sig) where sig>=0x20
Summary: Added (sig < MAXSIGNUM) check in jsig.c
Reviewed-by: dholmes, acorn
! src/os/linux/vm/jsig.c
+ test/runtime/jsig/Test8017498.sh
+ test/runtime/jsig/TestJNI.c
+ test/runtime/jsig/TestJNI.java
Changeset: 825e6cb66923
Author: jiangli
Date: 2013-07-17 18:06 -0400
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/825e6cb66923
8020309: Eliminate InstanceKlass::_cached_class_file_len.
Summary: Use JvmtiCachedClassFileData.
Reviewed-by: iklam, sspitsyn, dcubed
! src/share/vm/classfile/classFileParser.cpp
! src/share/vm/oops/instanceKlass.cpp
! src/share/vm/oops/instanceKlass.hpp
! src/share/vm/prims/jvmtiExport.cpp
! src/share/vm/prims/jvmtiExport.hpp
! src/share/vm/prims/jvmtiRedefineClasses.cpp
! src/share/vm/prims/jvmtiRedefineClasses.hpp
Changeset: 6388dbc4b7ca
Author: jiangli
Date: 2013-07-17 17:14 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/6388dbc4b7ca
Merge
Changeset: c29568b733d2
Author: dholmes
Date: 2013-07-18 06:47 -0400
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/c29568b733d2
8020697: jniCheck.cpp:check_is_obj_array asserts on TypeArrayKlass::cast(aOop->klass())
Reviewed-by: dcubed, fparain, dholmes
Contributed-by: David Simms
! src/share/vm/prims/jniCheck.cpp
Changeset: 5e3b6f79d280
Author: rbackman
Date: 2013-07-17 13:48 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/5e3b6f79d280
8020701: Avoid crashes in WatcherThread
Reviewed-by: acorn, dcubed, dsimms
! src/os/posix/vm/os_posix.cpp
! src/os/posix/vm/os_posix.hpp
! src/os/windows/vm/os_windows.cpp
! src/os/windows/vm/os_windows.hpp
! src/os_cpu/bsd_x86/vm/os_bsd_x86.cpp
! src/os_cpu/linux_sparc/vm/os_linux_sparc.cpp
! src/os_cpu/linux_x86/vm/os_linux_x86.cpp
! src/os_cpu/solaris_sparc/vm/os_solaris_sparc.cpp
! src/os_cpu/solaris_x86/vm/os_solaris_x86.cpp
! src/share/vm/runtime/mutex.cpp
! src/share/vm/runtime/os.cpp
! src/share/vm/runtime/os.hpp
! src/share/vm/runtime/thread.cpp
! src/share/vm/runtime/thread.hpp
Changeset: 248c459b2b75
Author: dcubed
Date: 2013-07-18 12:05 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/248c459b2b75
Merge
! src/share/vm/services/memTracker.cpp
Changeset: af21010d1062
Author: dcubed
Date: 2013-07-18 12:35 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/af21010d1062
Merge
! src/os/windows/vm/os_windows.cpp
! src/os_cpu/bsd_x86/vm/os_bsd_x86.cpp
! src/os_cpu/linux_sparc/vm/os_linux_sparc.cpp
! src/os_cpu/linux_x86/vm/os_linux_x86.cpp
! src/os_cpu/solaris_sparc/vm/os_solaris_sparc.cpp
! src/os_cpu/solaris_x86/vm/os_solaris_x86.cpp
! src/share/vm/runtime/os.hpp
Changeset: 02d7aa1456c9
Author: ccheung
Date: 2013-07-18 14:57 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/02d7aa1456c9
8004872: Early loading of HashMap and StringValue under -XX:+AggressiveOpts can be removed
Summary: this fix also removes the -XX:+UseStringCache option
Reviewed-by: dholmes, acorn, iklam
! src/share/vm/classfile/vmSymbols.hpp
! src/share/vm/opto/bytecodeInfo.cpp
! src/share/vm/runtime/arguments.cpp
! src/share/vm/runtime/globals.hpp
! src/share/vm/runtime/thread.cpp
Changeset: 383a5e21cc2d
Author: minqi
Date: 2013-07-18 18:00 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/383a5e21cc2d
Merge
Changeset: 060ae9b7ffea
Author: mgronlun
Date: 2013-07-19 17:56 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/060ae9b7ffea
8020547: Event based tracing needs a UNICODE string type
Reviewed-by: egahlin, rbackman, dcubed, brutisso, acorn
! src/share/vm/trace/traceDataTypes.hpp
! src/share/vm/trace/tracetypes.xml
! src/share/vm/trace/xinclude.mod
Changeset: 4614a598dae1
Author: minqi
Date: 2013-07-19 08:34 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/4614a598dae1
8016538: volatile double access via Unsafe.cpp is not atomic
Summary: volatile jdouble load/store is not atomic, fix by using of existing volatile jlong operations which are atomic for jdouble.
Reviewed-by: kvn, vladidan, jrose
Contributed-by: david.holmes at oracle.com
! src/os_cpu/bsd_x86/vm/orderAccess_bsd_x86.inline.hpp
! src/os_cpu/linux_x86/vm/orderAccess_linux_x86.inline.hpp
! src/os_cpu/solaris_x86/vm/orderAccess_solaris_x86.inline.hpp
! src/os_cpu/windows_x86/vm/orderAccess_windows_x86.inline.hpp
Changeset: 55a61ceb2fe7
Author: minqi
Date: 2013-07-19 11:17 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/55a61ceb2fe7
Merge
Changeset: 16511b7e3d35
Author: emc
Date: 2013-07-22 17:57 -0400
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/16511b7e3d35
8019632: Method parameters are not copied in clone_with_new_data
Summary: Add code to copy method parameters data in clone_with_new_data
Reviewed-by: coleenp, sspitsyn
! src/share/vm/oops/method.cpp
Changeset: 72727c4b6dec
Author: ccheung
Date: 2013-07-19 14:54 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/72727c4b6dec
8020791: [TESTBUG] runtime/jsig/Test8017498.sh failed to compile native code
Summary: Added -DLINUX to the gcc command and improved the .sh script
Reviewed-by: dcubed, dholmes, minqi
! test/runtime/jsig/Test8017498.sh
! test/runtime/jsig/TestJNI.c
Changeset: 5165d659cebd
Author: minqi
Date: 2013-07-22 22:21 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/5165d659cebd
Merge
Changeset: c0f353803b47
Author: minqi
Date: 2013-07-23 12:50 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/c0f353803b47
Merge
Changeset: c90c698831d7
Author: kvn
Date: 2013-07-12 14:01 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/c90c698831d7
8020215: Different execution plan when using JIT vs interpreter
Summary: fix bytecode analyzer
Reviewed-by: twisti
! src/share/vm/ci/bcEscapeAnalyzer.cpp
! src/share/vm/ci/bcEscapeAnalyzer.hpp
+ test/compiler/EscapeAnalysis/Test8020215.java
Changeset: fcf521c3fbc6
Author: kvn
Date: 2013-07-12 14:03 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/fcf521c3fbc6
8007898: Incorrect optimization of Memory Barriers in Matcher::post_store_load_barrier()
Summary: generate one "fat" membar instead of set of barriers for volitile store
Reviewed-by: roland
! src/share/vm/opto/matcher.cpp
! src/share/vm/opto/parse3.cpp
+ test/compiler/membars/DekkerTest.java
Changeset: 34ce0b5acb81
Author: morris
Date: 2013-07-15 06:27 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/34ce0b5acb81
Merge
Changeset: 0f57ccdb9084
Author: kvn
Date: 2013-07-15 10:28 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/0f57ccdb9084
8020433: Crash when using -XX:+RestoreMXCSROnJNICalls
Summary: remove StubRoutines::x86::_mxcsr_std and use StubRoutines::_mxcsr_std
Reviewed-by: jrose
! src/cpu/x86/vm/stubGenerator_x86_64.cpp
! src/cpu/x86/vm/stubRoutines_x86_64.cpp
! src/cpu/x86/vm/stubRoutines_x86_64.hpp
+ test/compiler/cpuflags/RestoreMXCSR.java
Changeset: 46a90f83df31
Author: morris
Date: 2013-07-19 13:59 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/46a90f83df31
Merge
! src/cpu/x86/vm/stubGenerator_x86_64.cpp
Changeset: 6efedc114807
Author: morris
Date: 2013-07-24 13:54 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/6efedc114807
Merge
Changeset: 01aa164323fa
Author: dholmes
Date: 2013-07-24 19:23 -0400
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/01aa164323fa
8020799: Allow customization of hotspot source directories and files
Reviewed-by: kvn, dlong
! make/linux/makefiles/vm.make
Changeset: a4b9a8ec8f4a
Author: jiangli
Date: 2013-07-25 18:12 -0400
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/a4b9a8ec8f4a
Merge
Changeset: 46487ba40ff2
Author: amurillo
Date: 2013-07-26 03:48 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/46487ba40ff2
Merge
Changeset: f6921c876db1
Author: amurillo
Date: 2013-07-26 03:48 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/f6921c876db1
Added tag hs25-b43 for changeset 46487ba40ff2
! .hgtags
Changeset: 7c9885d23744
Author: cl
Date: 2013-08-01 04:56 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/7c9885d23744
Added tag jdk8-b101 for changeset f6921c876db1
! .hgtags
Changeset: e84845884c85
Author: amurillo
Date: 2013-07-26 04:01 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/e84845884c85
8021566: new hotspot build - hs25-b44
Reviewed-by: jcoomes
! make/hotspot_version
Changeset: d90d1b96b65b
Author: kvn
Date: 2013-07-26 12:37 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/d90d1b96b65b
8008938: TieredCompilation should be default
Summary: switch on TieredCompilation by default
Reviewed-by: twisti
! src/cpu/sparc/vm/c2_globals_sparc.hpp
! src/cpu/x86/vm/c2_globals_x86.hpp
Changeset: 1b6395189726
Author: minqi
Date: 2013-07-19 14:43 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/1b6395189726
8012263: ciReplay: gracefully exit & report meaningful error when replay data parsing fails
Summary: find_method could return NULL so need explicitly check if there is error after parse_method, exit on error to avoid crash.
Reviewed-by: kvn, twisti
Contributed-by: yumin.qi at oracle.com
! src/share/vm/ci/ciReplay.cpp
Changeset: 5ad7f8179bf7
Author: minqi
Date: 2013-07-24 08:04 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/5ad7f8179bf7
Merge
Changeset: b6baf306e698
Author: fparain
Date: 2013-07-26 05:54 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/b6baf306e698
Merge
Changeset: 83ca9dc4564d
Author: fparain
Date: 2013-07-26 15:24 +0000
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/83ca9dc4564d
8019845: Memory leak during class redefinition
Reviewed-by: acorn, jmasa, coleenp, dcubed, mgerdin
! src/share/vm/memory/metaspace.cpp
Changeset: f9ee986a9fea
Author: ccheung
Date: 2013-07-30 14:14 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/f9ee986a9fea
8021296: [TESTBUG] Test8017498.sh fails to find "gcc" and fails to compile on some Linux releases
Summary: Added checking for gcc and simplified the sig_handler() in the test case
Reviewed-by: dcubed, coleenp, minqi, dlong
! test/runtime/6929067/Test6929067.sh
! test/runtime/7107135/Test7107135.sh
! test/runtime/jsig/Test8017498.sh
! test/runtime/jsig/TestJNI.c
Changeset: 0f98cc013b21
Author: fparain
Date: 2013-07-31 08:28 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/0f98cc013b21
Merge
Changeset: c65045599519
Author: dholmes
Date: 2013-07-25 21:05 -0400
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/c65045599519
8021314: minimal1.make needs to force off components not supported by the minimal VM
Reviewed-by: coleenp, bpittore
! make/bsd/makefiles/minimal1.make
! make/linux/makefiles/minimal1.make
Changeset: 078e5eb2e52e
Author: clucasius
Date: 2013-07-27 17:23 -0400
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/078e5eb2e52e
Merge
Changeset: da839a3c5735
Author: dholmes
Date: 2013-07-31 19:05 -0400
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/da839a3c5735
Merge
Changeset: e3c8767c5cf8
Author: tschatzl
Date: 2013-07-24 10:07 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/e3c8767c5cf8
8020123: Test gc/g1/TestPrintRegionRememberedSetInfo.java fails with "test result: Error. No action after @build"
Summary: Remove the @build tag and replace it by a @run tag so that the test gets executed
Reviewed-by: brutisso, mgerdin
! test/gc/g1/TestPrintRegionRememberedSetInfo.java
Changeset: 7b06ae405d7b
Author: jmasa
Date: 2013-07-23 09:49 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/7b06ae405d7b
6990419: CMS Remaining work for 6572569: consistently skewed work distribution in (long) re-mark pauses
Reviewed-by: rasbold, tschatzl, jmasa
Contributed-by: yamauchi at google.com
! src/share/vm/gc_implementation/concurrentMarkSweep/concurrentMarkSweepGeneration.cpp
! src/share/vm/gc_implementation/concurrentMarkSweep/concurrentMarkSweepGeneration.hpp
! src/share/vm/memory/defNewGeneration.cpp
! src/share/vm/memory/generation.hpp
! src/share/vm/runtime/globals.hpp
Changeset: fb7010c7c011
Author: jmasa
Date: 2013-07-25 07:02 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/fb7010c7c011
Merge
Changeset: ca9dedeebdec
Author: jmasa
Date: 2013-07-25 11:07 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/ca9dedeebdec
6412968: CMS Long initial mark pauses
Reviewed-by: rasbold, tschatzl, jmasa
Contributed-by: yamauchi at google.com
! src/share/vm/gc_implementation/concurrentMarkSweep/cmsOopClosures.hpp
! src/share/vm/gc_implementation/concurrentMarkSweep/concurrentMarkSweepGeneration.cpp
! src/share/vm/gc_implementation/concurrentMarkSweep/concurrentMarkSweepGeneration.hpp
! src/share/vm/memory/sharedHeap.cpp
! src/share/vm/runtime/globals.hpp
Changeset: 8796fd3ac898
Author: tamao
Date: 2013-07-26 13:34 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/8796fd3ac898
Merge
! src/share/vm/runtime/globals.hpp
Changeset: 313227279a05
Author: brutisso
Date: 2013-08-01 07:03 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/313227279a05
8021967: Deprecate -XX:DefaultMaxRAMFraction
Reviewed-by: tschatzl, jmasa, kvn, tamao
! src/share/vm/runtime/arguments.cpp
+ test/gc/startup_warnings/TestDefaultMaxRAMFraction.java
Changeset: dae8324fc7d1
Author: brutisso
Date: 2013-08-01 09:35 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/dae8324fc7d1
8021879: G1: G1HeapRegionSize flag value not updated correctly
Reviewed-by: tschatzl, jmasa
! src/share/vm/gc_implementation/g1/heapRegion.cpp
+ test/gc/arguments/TestG1HeapRegionSize.java
Changeset: 8d4ff57af591
Author: brutisso
Date: 2013-08-01 17:29 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/8d4ff57af591
8022051: G1: Remove some unused G1 flags
Reviewed-by: tschatzl, jmasa
! src/share/vm/gc_implementation/g1/g1_globals.hpp
Changeset: 69d0dbb53c78
Author: tamao
Date: 2013-08-01 17:17 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/69d0dbb53c78
Merge
Changeset: 530fe88b3b2c
Author: amurillo
Date: 2013-08-02 02:54 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/530fe88b3b2c
Merge
Changeset: c4697c1c4484
Author: amurillo
Date: 2013-08-02 02:54 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/c4697c1c4484
Added tag hs25-b44 for changeset 530fe88b3b2c
! .hgtags
From lana.steuck at oracle.com Wed Aug 7 00:17:01 2013
From: lana.steuck at oracle.com (lana.steuck at oracle.com)
Date: Wed, 07 Aug 2013 00:17:01 +0000
Subject: hg: jdk8/tl/langtools: 4 new changesets
Message-ID: <20130807001717.0D2A148641@hg.openjdk.java.net>
Changeset: 4c42fba7b0e7
Author: cl
Date: 2013-08-01 04:56 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/4c42fba7b0e7
Added tag jdk8-b101 for changeset 0324dbf07b0f
! .hgtags
Changeset: 453a305e1165
Author: lana
Date: 2013-08-06 10:03 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/453a305e1165
Merge
Changeset: f3ea20a6e958
Author: lana
Date: 2013-08-06 17:01 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/f3ea20a6e958
Merge
Changeset: b926dc251be8
Author: lana
Date: 2013-08-06 17:12 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/b926dc251be8
Merge
From lana.steuck at oracle.com Wed Aug 7 00:19:12 2013
From: lana.steuck at oracle.com (lana.steuck at oracle.com)
Date: Wed, 07 Aug 2013 00:19:12 +0000
Subject: hg: jdk8/tl/jdk: 28 new changesets
Message-ID: <20130807002511.5A6A848643@hg.openjdk.java.net>
Changeset: b52a2ecdb803
Author: cl
Date: 2013-08-01 04:56 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/b52a2ecdb803
Added tag jdk8-b101 for changeset 690161232823
! .hgtags
Changeset: 2978c0a543ed
Author: prr
Date: 2013-07-22 12:52 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/2978c0a543ed
7196866: CTW fails on all Solaris platforms
Reviewed-by: prr, jrose, twisti, kvn
! src/solaris/native/sun/awt/awt_GraphicsEnv.c
! src/solaris/native/sun/java2d/x11/XRBackendNative.c
Changeset: 784589c7bc55
Author: vadim
Date: 2013-07-24 13:38 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/784589c7bc55
8008782: NPE in TrueTypeGlyphMapper
Reviewed-by: bae, prr
! src/share/classes/sun/font/TrueTypeFont.java
Changeset: db2e3a686cf3
Author: jchen
Date: 2013-07-24 12:40 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/db2e3a686cf3
8011709: [parfait] False positive: memory leak in jdk/src/share/native/sun/font/layout/CanonShaping.cpp
Reviewed-by: jgodinez, prr
! src/share/native/sun/font/layout/CanonShaping.cpp
Changeset: c2e27e7a42ae
Author: jchen
Date: 2013-07-24 13:05 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/c2e27e7a42ae
8005126: [parfait] #418 - #428 XRBackendNative.c Integer overflow
Reviewed-by: prr, vadim
! src/solaris/native/sun/java2d/x11/XRBackendNative.c
Changeset: 833f05116f7b
Author: bae
Date: 2013-07-25 17:14 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/833f05116f7b
8019201: Regression: java.awt.image.ConvolveOp throws java.awt.image.ImagingOpException
Reviewed-by: prr
! src/share/native/sun/awt/medialib/awt_ImagingLib.c
+ test/sun/awt/image/ImagingLib/SamePackingTypeTest.java
Changeset: a8b9df782017
Author: serb
Date: 2013-07-26 21:18 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/a8b9df782017
7190349: [macosx] Text (Label) is incorrectly drawn with a rotated g2d
8013569: [macosx] JLabel preferred size incorrect on retina displays with non-default font size
Reviewed-by: prr
! src/macosx/classes/sun/font/CStrike.java
! src/macosx/native/sun/font/AWTStrike.h
! src/macosx/native/sun/font/AWTStrike.m
! src/macosx/native/sun/font/CGGlyphImages.m
+ test/java/awt/Graphics2D/DrawString/DrawRotatedString.java
+ test/java/awt/Graphics2D/IncorrectTextSize/IncorrectTextSize.java
Changeset: 467a0c21790b
Author: jgodinez
Date: 2013-07-26 15:08 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/467a0c21790b
8020208: NullPointerException at sun.print.Win32PrintService.getMediaPrintables
Reviewed-by: jchen, prr
! src/windows/classes/sun/print/Win32PrintService.java
Changeset: 56c6f9a9653d
Author: jgodinez
Date: 2013-07-26 15:25 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/56c6f9a9653d
8016343: [macosx] Print job goes to default printer regardless of chosen printer
Reviewed-by: jchen, prr
! src/share/classes/sun/print/PSPrinterJob.java
! src/solaris/classes/sun/print/IPPPrintService.java
! src/solaris/classes/sun/print/UnixPrintJob.java
! test/javax/print/DialogMargins.java
Changeset: 1c48544c3da9
Author: lana
Date: 2013-07-26 15:46 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/1c48544c3da9
Merge
- src/share/classes/com/sun/org/apache/xml/internal/security/resource/log4j.properties
- src/share/classes/com/sun/org/apache/xml/internal/security/transforms/implementations/FuncHereContext.java
- src/share/classes/com/sun/org/apache/xml/internal/security/utils/CachedXPathAPIHolder.java
- src/share/classes/com/sun/org/apache/xml/internal/security/utils/CachedXPathFuncHereAPI.java
- src/share/classes/com/sun/org/apache/xml/internal/security/utils/XPathFuncHereAPI.java
- src/share/classes/java/util/stream/StreamBuilder.java
- src/share/classes/javax/security/auth/callback/package.html
- src/share/classes/javax/security/auth/kerberos/package.html
- src/share/classes/javax/security/auth/login/package.html
- src/share/classes/javax/security/auth/package.html
- src/share/classes/javax/security/auth/spi/package.html
- src/share/classes/javax/security/auth/x500/package.html
- src/share/classes/javax/security/cert/package.html
- src/share/classes/javax/security/sasl/package.html
- test/java/util/Collections/EmptySortedSet.java
Changeset: 921338e44ba7
Author: lana
Date: 2013-07-26 17:12 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/921338e44ba7
Merge
Changeset: 046025f78ea8
Author: jgodinez
Date: 2013-07-30 13:01 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/046025f78ea8
8021835: Fix for 8016343 will not compile on Windows.
Reviewed-by: jchen, prr
! src/share/classes/sun/print/PSPrinterJob.java
Changeset: 7f0e569c5a66
Author: bae
Date: 2013-07-31 13:11 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/7f0e569c5a66
8020983: OutOfMemoryError caused by non garbage collected JPEGImageWriter Instances
Reviewed-by: prr, flar
! src/share/native/sun/awt/image/jpeg/imageioJPEG.c
+ test/javax/imageio/plugins/jpeg/JpegWriterLeakTest.java
Changeset: 607ad960fe24
Author: malenkov
Date: 2013-07-22 15:36 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/607ad960fe24
8019975: closed/javax/swing/JFileChooser/4966171/bug4966171.java throws java.io.NotSerializableException: javax.swing.plaf.basic.BasicFileChooserUI$AcceptAllFileFilter
Reviewed-by: alexsch
! src/share/classes/javax/swing/JFileChooser.java
Changeset: 3cbe376233a9
Author: malenkov
Date: 2013-07-22 20:33 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/3cbe376233a9
8015926: NPE when using SynthTreeUI's expandPath()
Reviewed-by: alexsch
! src/share/classes/javax/swing/plaf/synth/SynthTreeUI.java
+ test/javax/swing/plaf/synth/Test8015926.java
Changeset: bdad697c03aa
Author: pchelko
Date: 2013-07-23 13:09 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/bdad697c03aa
7184951: [macosx] Exception at java.awt.datatransfer on headless mode (only in GUI session)
Reviewed-by: art, anthony
! src/macosx/classes/sun/lwawt/macosx/CDataTransferer.java
Changeset: 99ee6ddab113
Author: serb
Date: 2013-07-24 17:14 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/99ee6ddab113
8017189: [macosx] AWT program menu disabled on Mac
Reviewed-by: leonidr, anthony
! src/macosx/classes/sun/lwawt/macosx/CPlatformWindow.java
! src/macosx/native/sun/awt/AWTWindow.h
! src/macosx/native/sun/awt/AWTWindow.m
! src/macosx/native/sun/awt/CMenuBar.m
Changeset: 7bd6eda2d217
Author: leonidr
Date: 2013-07-26 16:22 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/7bd6eda2d217
8007267: [macosx] com.apple.eawt.Application.setDefaultMenuBar is not working
Reviewed-by: anthony, serb
! src/macosx/classes/com/apple/eawt/_AppMenuBarHandler.java
! src/macosx/classes/sun/lwawt/macosx/CMenuComponent.java
! src/macosx/native/sun/awt/AWTWindow.m
! src/macosx/native/sun/awt/CMenuItem.m
Changeset: 65c90209edbb
Author: lana
Date: 2013-07-26 15:19 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/65c90209edbb
Merge
- src/share/classes/com/sun/org/apache/xml/internal/security/resource/log4j.properties
- src/share/classes/com/sun/org/apache/xml/internal/security/transforms/implementations/FuncHereContext.java
- src/share/classes/com/sun/org/apache/xml/internal/security/utils/CachedXPathAPIHolder.java
- src/share/classes/com/sun/org/apache/xml/internal/security/utils/CachedXPathFuncHereAPI.java
- src/share/classes/com/sun/org/apache/xml/internal/security/utils/XPathFuncHereAPI.java
- src/share/classes/java/util/stream/StreamBuilder.java
- src/share/classes/javax/security/auth/callback/package.html
- src/share/classes/javax/security/auth/kerberos/package.html
- src/share/classes/javax/security/auth/login/package.html
- src/share/classes/javax/security/auth/package.html
- src/share/classes/javax/security/auth/spi/package.html
- src/share/classes/javax/security/auth/x500/package.html
- src/share/classes/javax/security/cert/package.html
- src/share/classes/javax/security/sasl/package.html
- test/java/util/Collections/EmptySortedSet.java
Changeset: 37016eaea5d2
Author: serb
Date: 2013-07-29 16:57 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/37016eaea5d2
6230360: Spelling mistake in documentation for AWT: 1.4, 1.5, 1.6, 1.7
Reviewed-by: malenkov, art
! src/share/classes/java/awt/AWTException.java
Changeset: bf80c2965a84
Author: malenkov
Date: 2013-07-29 18:48 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/bf80c2965a84
8010782: clean up source files containing carriage return characters
Reviewed-by: alexsch, art
! src/share/classes/com/sun/java/swing/plaf/gtk/resources/gtk.properties
! src/share/classes/com/sun/swing/internal/plaf/synth/resources/synth.properties
Changeset: 1e482f58c747
Author: ant
Date: 2013-07-30 16:15 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/1e482f58c747
8020927: JLightweightFrame API should export layout properties change notifications
Reviewed-by: anthony
! src/share/classes/sun/swing/JLightweightFrame.java
! src/share/classes/sun/swing/LightweightContent.java
Changeset: 336a94dbecb5
Author: malenkov
Date: 2013-07-30 17:46 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/336a94dbecb5
8015300: JComboBox text sometimes become selected, sometimes not (Windows LAF)
Reviewed-by: alexsch, serb
! src/share/classes/com/sun/java/swing/plaf/windows/WindowsComboBoxUI.java
+ test/javax/swing/JComboBox/8015300/Test8015300.java
Changeset: 726ac8f75b54
Author: lana
Date: 2013-07-31 12:56 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/726ac8f75b54
Merge
Changeset: 0741b19835b0
Author: lana
Date: 2013-07-31 13:02 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/0741b19835b0
Merge
- src/share/classes/java/net/package.html
Changeset: 8ed8e2b4b90e
Author: lana
Date: 2013-08-06 10:10 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/8ed8e2b4b90e
Merge
Changeset: 2bc9ce1aade5
Author: lana
Date: 2013-08-06 17:01 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/2bc9ce1aade5
Merge
Changeset: 7ab5f19a9a31
Author: lana
Date: 2013-08-06 17:13 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/7ab5f19a9a31
Merge
From lana.steuck at oracle.com Wed Aug 7 00:16:51 2013
From: lana.steuck at oracle.com (lana.steuck at oracle.com)
Date: Wed, 07 Aug 2013 00:16:51 +0000
Subject: hg: jdk8/tl: Added tag jdk8-b101 for changeset 9f74a220677d
Message-ID: <20130807001651.B35284863B@hg.openjdk.java.net>
Changeset: 5eb3c1dc348f
Author: cl
Date: 2013-08-01 04:56 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/rev/5eb3c1dc348f
Added tag jdk8-b101 for changeset 9f74a220677d
! .hgtags
From dan.xu at oracle.com Wed Aug 7 01:16:57 2013
From: dan.xu at oracle.com (dan.xu at oracle.com)
Date: Wed, 07 Aug 2013 01:16:57 +0000
Subject: hg: jdk8/tl/jdk: 8022478: Fix Warnings In sun.net.www.protocol.http
Package
Message-ID: <20130807011708.86F7148645@hg.openjdk.java.net>
Changeset: 1d21ff5c2b3f
Author: dxu
Date: 2013-08-06 18:16 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/1d21ff5c2b3f
8022478: Fix Warnings In sun.net.www.protocol.http Package
Reviewed-by: darcy
! src/share/classes/sun/net/www/protocol/http/AuthCacheValue.java
! src/share/classes/sun/net/www/protocol/http/AuthenticationInfo.java
From mike.duigou at oracle.com Wed Aug 7 01:21:43 2013
From: mike.duigou at oracle.com (mike.duigou at oracle.com)
Date: Wed, 07 Aug 2013 01:21:43 +0000
Subject: hg: jdk8/tl/jdk: 8022476: cleanup some raw types and unchecked
warnings in java.util.stream
Message-ID: <20130807012155.28BBF48646@hg.openjdk.java.net>
Changeset: e117fcdd2176
Author: mduigou
Date: 2013-08-06 18:18 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/e117fcdd2176
8022476: cleanup some raw types and unchecked warnings in java.util.stream
Reviewed-by: darcy
Contributed-by: mike.duigou at oracle.com, henry.jen at oracle.com
! src/share/classes/java/util/Optional.java
! src/share/classes/java/util/stream/AbstractPipeline.java
! src/share/classes/java/util/stream/AbstractShortCircuitTask.java
! src/share/classes/java/util/stream/DoublePipeline.java
! src/share/classes/java/util/stream/IntPipeline.java
! src/share/classes/java/util/stream/LongPipeline.java
! src/share/classes/java/util/stream/Nodes.java
! src/share/classes/java/util/stream/ReduceOps.java
! src/share/classes/java/util/stream/ReferencePipeline.java
! src/share/classes/java/util/stream/Sink.java
! src/share/classes/java/util/stream/SortedOps.java
! src/share/classes/java/util/stream/StreamSpliterators.java
From weijun.wang at oracle.com Wed Aug 7 01:30:46 2013
From: weijun.wang at oracle.com (Weijun Wang)
Date: Wed, 07 Aug 2013 09:30:46 +0800
Subject: [8] Request for Review: 8022461: Fix lint warnings in
sun.security.{provider, rsa, x509}
In-Reply-To: <52018C1E.8060204@oracle.com>
References: <52018AEC.9060305@oracle.com> <52018C1E.8060204@oracle.com>
Message-ID: <5201A346.6010507@oracle.com>
Change looks fine.
Minor issue:
Extra parenthesis in
src/share/classes/sun/security/rsa/RSAPublicKeyImpl.java:
+ byte[] keyArray =
+ (new DerValue(DerValue.tag_Sequence,
+ out.toByteArray())).toByteArray();
One question:
In src/share/classes/sun/security/x509/X509Key.java, two fields are now
not recommended:
@Deprecated
protected byte[] key = null;
/*
* The number of bits unused in the last byte of the key.
* Added to keep the byte[] key form consistent with the BitArray
* form. Can de deleted when byte[] key is deleted.
*/
private int unusedBits = 0;
I understand that key should be marked @Deprecated because it's
protected and therefore part of (although private) API, but what about
unusedBits? Is it better to also mark it @Deprecated?
Thanks
Max
On 8/7/13 7:51 AM, Joe Darcy wrote:
> Hi Jason,
>
> Looks fine to me, but a security reviewer should approve as well.
>
> Thanks,
>
> -Joe
>
> On 08/06/2013 04:46 PM, Jason Uh wrote:
>> Joe, Sean,
>>
>> Could I please get a review of this changeset? This change fixes
>> deprecation warnings in:
>> sun.security.provider
>> sun.security.rsa
>> sun.security.x509
>>
>> In sun.security.provider and sun.security.rsa, I change the use of
>> sun.security.x509.X509Key's key bytes to the BitArray form of the key.
>>
>> Webrev: http://cr.openjdk.java.net/~juh/8022461/webrev.00/
>>
>> Thanks,
>> Jason
>
From xuelei.fan at oracle.com Wed Aug 7 01:43:49 2013
From: xuelei.fan at oracle.com (Xuelei Fan)
Date: Wed, 07 Aug 2013 09:43:49 +0800
Subject: [8] Request for Review: 8022461: Fix lint warnings in
sun.security.{provider, rsa, x509}
In-Reply-To: <52018AEC.9060305@oracle.com>
References: <52018AEC.9060305@oracle.com>
Message-ID: <5201A655.7000707@oracle.com>
Looks fine to me.
BTW, I was wondering whether we can remove the deprecated attributes in
X509Key after this fix. And as only the encodedKey is serialized, I
think we can use the @serial tag and transient fields to make the code
more friendly.
Xuelei
On 8/7/2013 7:46 AM, Jason Uh wrote:
> Joe, Sean,
>
> Could I please get a review of this changeset? This change fixes
> deprecation warnings in:
> sun.security.provider
> sun.security.rsa
> sun.security.x509
>
> In sun.security.provider and sun.security.rsa, I change the use of
> sun.security.x509.X509Key's key bytes to the BitArray form of the key.
>
> Webrev: http://cr.openjdk.java.net/~juh/8022461/webrev.00/
>
> Thanks,
> Jason
From xuelei.fan at oracle.com Wed Aug 7 02:26:39 2013
From: xuelei.fan at oracle.com (Xuelei Fan)
Date: Wed, 07 Aug 2013 10:26:39 +0800
Subject: There should be a way to reorder the JSSE ciphers
In-Reply-To:
References: <5200572D.7050602@oracle.com>
Message-ID: <5201B05F.5050204@oracle.com>
Thank you for the valued feedback!
On 8/7/2013 1:37 AM, Bruce Rich wrote:
> Thinking out loud here...seems like we need to talk about impacts on
> both sides of the wire.
>
> On the client side, I don't think this can have any effect. According
> to the TLS RFC (link ), the
> ClientHello includes the
>
> cipher_suites
> This is a list of the cryptographic options supported by the
> client, with the client's first preference first. If the
> session_id field is not empty (implying a session resumption
> request), this vector MUST include at least the cipher_suite from
> that session. Values are defined in Appendix A.5.
>
> So according to the spec, the client's first preference is to be first
> in the list. If the client is now passing an unordered list, how does
> the server know the client doesn't care? There's no provision for
> passing an indicator in the protocol. So I don't think this proposal
> really applies on the client side, and perhaps the setting name is too
> general (should be setUseClientsCipherSuiteOrder?)
>
The cipher suites in the ClientHello message is always ordered. What I
want to propose to honor local cipher suites order in the return value
SSLParameters.getCipherSuites() during SSL/TLS handshaking. In the
past, we don't specify what the cipher suite order should look like in
ClientHello message. I think most providers use the order of the return
value of SSLParamaters.getCipherSuites(). But we won't declare the
behavior in the specification. With this update, I want to describe
this behavior as part the specification.
But we may run into compatibility issues if third party's implementation
does not honor the order in SSLParamaters.getCipherSuites(). In order
to avoid compatibility issues, it is safer to set the default value of
getUseCipherSuitesOrder() to false, and won't define the behavior when
getUseCipherSuitesOrder() is false.
That is:
In client side:
1. if getUseCipherSuitesOrder() return true, the ClientHello messages
should use same the cipher suites order as getCipherSuites();
2. if getUseCipherSuitesOrder() return false, the behavior is not
defined (It is not required to honor the order in getCipherSuites()).
In server side:
1. if getUseCipherSuitesOrder() return true, the cipher suite selection
prefer to use the order in getCipherSuites, but not the order in
ClientHello message;
2. if getUseCipherSuitesOrder() return false, the behavior should comply
to TLS specification: the cipher suite selection should honor the order
in ClientHello message. (It is not required to honor the order in
getCipherSuites(), but should comply to TLS protocols.)
> On the server side, this may explicitly force the server to follow the
> client's list order, or to do whatever it does today. We need to be
> clear what "true" means and what "false" means. (Does "false" mean that
> the server CANNOT follow the client's preferences?)
>
See above.
> And if I understood your example correctly, the Oracle server today
> follows SSLParameters.setUseCipherSuitesOrder(true), so to change
> behavior, it would have to be set to
> SSLParameters.setUseCipherSuitesOrder(false).
Not exactly, when SSLParameters is used in sever side,
setUseCipherSuitesOrder(false) means won't honor the order in
getCipherSuites(), which is the default behavior today and tomorrow.
The tricky is that we need to think about the parameters from the
viewpoint of server side here. In server side,
SSLParameter.getCipherSuites() defines what kind of cipher suites are
supported in server side, and the order.
> Unless of course, it's
> supposed to mean "use local preferences for cipher ordering", and the
> server interprets it according to its priority order (not expressed in
> the protocol in any way), in which case maybe the operation would be
> called SSLParameters.setUseLocalCipherSuitesOrder(boolean).
Yes.
> However, a
> setting to "false" still cannot really mean anything on the client side,
> for the reasons mentioned above.
>
Right, the behavior is not defined. See above.
I will try to make the specification more clear.
Thanks again for the feedback.
Xuelei
> Bruce A Rich
> brich at-sign us dot ibm dot com
>
>
>
>
> From: Xuelei Fan
> To: OpenJDK
> Date: 08/05/2013 09:10 PM
> Subject: There should be a way to reorder the JSSE ciphers
> Sent by: security-dev-bounces at openjdk.java.net
> ------------------------------------------------------------------------
>
>
>
> Hi,
>
> We are thinking about to support cipher suites preference in JSSE by
> defining new methods in javax.net.ssl.SSLParameters.
>
> ----------------------------------------------------
> + /**
> + * Sets whether the cipher suites preference should be honored.
> + *
> + * @param on whether local cipher suites order in
> + * {@code #getCipherSuites}
> + * should be honored during SSL/TLS handshaking.
> + */
> + public final void setUseCipherSuitesOrder(boolean on);
>
>
> + /**
> + * Returns whether the cipher suites preference should be honored.
> + *
> + * @return whether local cipher suites order in
> + {@code #getCipherSuites}
> + * should be honored during SSL/TLS handshaking.
> + */
> + public final boolean getUseCipherSuitesOrder();
> ----------------------------------------------------
>
>
> By default, Oracle JSSE provider still honors the client's preference.
> The behavior can be changed by calling
> SSLParameters.setUseCipherSuitesOrder(true) in server side.
>
> We have had the cipher suites preference ordering in client side for
> many years, but we never said how to actually do it in specification and
> JSSE Reference Guide. With this update, the client side can enforce to
> honor cipher suite preference with the new method,
> SSLParameters.setUseCipherSuitesOrder(true). Other providers should
> also comply with this specification.
>
> Any feedback are welcome.
>
> Thanks,
> Xuelei
>
>
From bernd-2013 at eckenfels.net Wed Aug 7 02:57:39 2013
From: bernd-2013 at eckenfels.net (Bernd Eckenfels)
Date: Wed, 07 Aug 2013 04:57:39 +0200
Subject: There should be a way to reorder the JSSE ciphers
In-Reply-To: <5201B05F.5050204@oracle.com>
References: <5200572D.7050602@oracle.com>
<5201B05F.5050204@oracle.com>
Message-ID:
Hello Xuelei,
I dont get the Idea behind this. There are quite a few aspects of the SSL
handshake which could/should be dynamically configurable and we don't have
an option for today (for example the renegotiation).
For SSL Cipher order there is no real demand to make it configurable (and
it seems there is not even an alternative implementation which differs
from the RFC method). So why would one make it configurable?
If there is a specification gap, I would fix it there and simply specify
that client implementations SHOULD honor the cipher sequence for sending
the handshake and servers SHOULD be RFC compliant. I think major
implementations expect exactly this anyway (there are FAQs on what ciphers
to select).
If a server implementation choses to differ from the RFC because it thinks
it can better decide on a cipher (for example by calculating strength/cost
for all pairs and picking the best combination or by having a prefered and
acceptable list - (which is I guess what google servers do)) it is
implementation specific if and when it uses it.
(One could think about a generic CipherSelector interface or a decide
method in the HandshakeListener if you really want to make this
configurable independend of the implementations. I somewhat doubt that
there are a lot of users who implement high-performance SSL servers in
pure Java anyway).
Am 07.08.2013, 04:26 Uhr, schrieb Xuelei Fan :
> The tricky is that we need to think about the parameters from the
> viewpoint of server side here. In server side,
> SSLParameter.getCipherSuites() defines what kind of cipher suites are
> supported in server side, and the order.
I can imagine one wants to influence the picking of ciphers on the server
in a way that it is not RFC compliant but more performant/secure. A
ordered list on the server is not a method I would chose. Instead I would
have a list of prefered ciphers (pick the first prefered cipher from the
client and only if there are none pick the first otherwise supported
cipher from the client). For this to work a SSL implementation needs more
than a ordered list, so it would do something implementation dependend
anyway, why would one need a standardized boolean in addition?
Bernd
From xuelei.fan at oracle.com Wed Aug 7 03:31:24 2013
From: xuelei.fan at oracle.com (Xuelei Fan)
Date: Wed, 07 Aug 2013 11:31:24 +0800
Subject: There should be a way to reorder the JSSE ciphers
In-Reply-To:
References: <5200572D.7050602@oracle.com>
<5201B05F.5050204@oracle.com>
Message-ID: <5201BF8C.3060204@oracle.com>
To have the server to selection the cipher suites according to itself
preference is not standard compliant. However, there are potential
requirements to have such feature so that the server can have more
control over the selection of cipher suites. OpenSSL has had the option
for a while (SSL_OP_CIPHER_SERVER_PREFERENCE) and Apache support this
option also (SSLHONORCIPHERORDER).
This feature can be used to improve the security of TLS connection, for
example to mitigate the BEAST attacks in a proactive approach.
Sometimes, server cannot control the quality of TLS implementation and
usage in client side, but by choosing a stronger cipher suites or an
effective cipher suite, the server has an option to control the quality
of the TLS connection.
On 8/7/2013 10:57 AM, Bernd Eckenfels wrote:
> Hello Xuelei,
>
> I dont get the Idea behind this. There are quite a few aspects of the
> SSL handshake which could/should be dynamically configurable and we
> don't have an option for today (for example the renegotiation).
>
> For SSL Cipher order there is no real demand to make it configurable
> (and it seems there is not even an alternative implementation which
> differs from the RFC method). So why would one make it configurable?
>
> If there is a specification gap, I would fix it there and simply specify
> that client implementations SHOULD honor the cipher sequence for sending
> the handshake and servers SHOULD be RFC compliant. I think major
> implementations expect exactly this anyway (there are FAQs on what
> ciphers to select).
>
> If a server implementation choses to differ from the RFC because it
> thinks it can better decide on a cipher (for example by calculating
> strength/cost for all pairs and picking the best combination or by
> having a prefered and acceptable list - (which is I guess what google
> servers do)) it is implementation specific if and when it uses it.
>
> (One could think about a generic CipherSelector interface or a decide
> method in the HandshakeListener if you really want to make this
> configurable independend of the implementations. I somewhat doubt that
> there are a lot of users who implement high-performance SSL servers in
> pure Java anyway).
>
> Am 07.08.2013, 04:26 Uhr, schrieb Xuelei Fan :
>> The tricky is that we need to think about the parameters from the
>> viewpoint of server side here. In server side,
>> SSLParameter.getCipherSuites() defines what kind of cipher suites are
>> supported in server side, and the order.
>
> I can imagine one wants to influence the picking of ciphers on the
> server in a way that it is not RFC compliant but more performant/secure.
> A ordered list on the server is not a method I would chose. Instead I
> would have a list of prefered ciphers (pick the first prefered cipher
> from the client and only if there are none pick the first otherwise
> supported cipher from the client).
That's an alternative approach.
We have already have the server supported cipher suites
(getCipherSuites()). We want to re-use the supported cipher suites, by
adding a feature those cipher suites can be ordered and honored (in your
words, the preferred ciphers). It's a simpler interface, I think.
Thanks,
Xuelei
> For this to work a SSL implementation
> needs more than a ordered list, so it would do something implementation
> dependend anyway, why would one need a standardized boolean in addition?
>
> Bernd
From weijun.wang at oracle.com Wed Aug 7 03:48:01 2013
From: weijun.wang at oracle.com (Weijun Wang)
Date: Wed, 07 Aug 2013 11:48:01 +0800
Subject: Code review request: 7151062: [macosx] SCDynamicStore prints error
messages to stderr
Message-ID: <5201C371.2000901@oracle.com>
Please take a look at
http://cr.openjdk.java.net/~weijun/7151062/webrev.00/
There is spurious output to stderr from SCDynamicConfig reading. These
cases can be simply debugged by looking at the scutil output and there
is no need to print anything in Java. Therefore just remove them.
Noreg-cleanup.
Thanks
Max
From weijun.wang at oracle.com Wed Aug 7 03:49:14 2013
From: weijun.wang at oracle.com (Weijun Wang)
Date: Wed, 07 Aug 2013 11:49:14 +0800
Subject: Code review request: 8016594: Native Windows ccache still reads
DES tickets
In-Reply-To: <51E3D6B8.5000907@oracle.com>
References: <51E3D6B8.5000907@oracle.com>
Message-ID: <5201C3BA.2040507@oracle.com>
Ping again.
On 7/15/13 7:02 PM, Weijun Wang wrote:
> Please take a look at
>
> http://cr.openjdk.java.net/~weijun/8016594/webrev.00/
>
> Instead of always reading tickets with session key of DES/RC4 etypes, it
> should accept any ticket in the default_tkt_enctypes setting.
>
> No reg test, needs a SQE test running with Windows 2008 as server.
>
> Thanks
> Max
From weijun.wang at oracle.com Wed Aug 7 03:49:34 2013
From: weijun.wang at oracle.com (Weijun Wang)
Date: Wed, 07 Aug 2013 11:49:34 +0800
Subject: Code review request: 8012615: Realm.getRealmsList returns realms
list in wrong
In-Reply-To: <51F631CE.7080502@oracle.com>
References: <51F631CE.7080502@oracle.com>
Message-ID: <5201C3CE.4010205@oracle.com>
Ping again.
On 7/29/13 5:11 PM, Weijun Wang wrote:
> Hi Valerie
>
> Please review the capaths code change at
>
> http://cr.openjdk.java.net/~weijun/8012615/webrev.01/
>
> It includes:
>
> Config.java
> ===========
>
> Add method to check if a sub-stanza exists.
>
> Realm.java
> ==========
>
> Rewrite reading cross-realm path for both [capaths] and hierarchy. The
> [capaths] part implements the chaining process.
>
> CredentialsUtils.java
> =====================
>
> When reading cross-realm TGT for a path A->B->C->D->SERVERREALM, the
> current impl first gets krbtgt/SERVERREALM at A, and then fallback to
> krbtgt/D at A, krbtgt/C at A and krbtgt/B at A. In fact, since the capath is
> already there, krbtgt/B at A should be the first to check. I don't know
> about the history of this code and dare not change much. But I at least
> reverse the order of the fallback (what the code calls inner loop) to
> try krbtgt/B at A first.
>
> Tried on a local setup of 5 MIT KDC realms configured with a
> one-direction cross-auth from K1 to K5. The MIT kvno command starts with
> kinit in K1 and goes thru krbtgt/K2 at K1, krbtgt/K3 at K2, krbtgt/K4 at K3,
> krbtgt/K5 at K4 and finally get service ticket to host/host.k5 at K5. Now Java
> can do the same with the same krb5.conf.
>
> Thanks
> Max
From mhall at mhcomputing.net Wed Aug 7 06:09:46 2013
From: mhall at mhcomputing.net (Matthew Hall)
Date: Tue, 6 Aug 2013 23:09:46 -0700
Subject: There should be a way to reorder the JSSE ciphers
In-Reply-To:
References: <5200572D.7050602@oracle.com>
<5201B05F.5050204@oracle.com>
Message-ID: <20130807060946.GA12277@mhcomputing.net>
On Wed, Aug 07, 2013 at 04:57:39AM +0200, Bernd Eckenfels wrote:
> (One could think about a generic CipherSelector interface or a
> decide method in the HandshakeListener if you really want to make
> this configurable independend of the implementations. I somewhat
> doubt that there are a lot of users who implement high-performance
> SSL servers in pure Java anyway).
This is not totally true. Many people use the PKCS11 Provider to do it with
Java in the upper layer, and C for the crypto primitives, but the cipher
negotiation happens in the C code. It is a very popular and performant way of
handling SSL + NIO in Tomcat for example.
> I can imagine one wants to influence the picking of ciphers on the
> server in a way that it is not RFC compliant but more
> performant/secure. A ordered list on the server is not a method I
> would chose. Instead I would have a list of prefered ciphers (pick
> the first prefered cipher from the client and only if there are none
> pick the first otherwise supported cipher from the client).
This sounds good in theory but when you work in an Internet scale content
provider it breaks things when the client can pick bad ciphers and the server
just allows it to happen like in default Java up until now.
So you really need a way to have a very short list on the server, ordered by
level of socket connections and amount of bandwidth that can be handled by a
given cipher according to internal benchmarks, and you need to find the most
peformant one the client can allow from your very short list of ciphers, that
you've decided meet your minimum security cut-off for a given service.
Matthew.
From bernd-2013 at eckenfels.net Wed Aug 7 06:54:15 2013
From: bernd-2013 at eckenfels.net (Bernd Eckenfels)
Date: Wed, 7 Aug 2013 08:54:15 +0200
Subject: There should be a way to reorder the JSSE ciphers
In-Reply-To: <20130807060946.GA12277@mhcomputing.net>
References: <5200572D.7050602@oracle.com>
<5201B05F.5050204@oracle.com>
<20130807060946.GA12277@mhcomputing.net>
Message-ID:
Hello,
Am 07.08.2013 um 08:09 schrieb Matthew Hall :
> This sounds good in theory but when you work in an Internet scale content
> provider it breaks things when the client can pick bad ciphers and the server
> just allows it to happen like in default Java up until now.
Well yes, if you think there is a bad cipher in the default enabled suite then it is good to disable it (The default enabled list is better these days). You can do that without setting a new boolean flag which is ignored by the default implementation.
I am not arguing about more flexibility in the configuration of cipher selection. if you have a smarter JSSE implementation then this is also good.
I think both dont need an additional boolean switch.
If the JDK JSSE implementation will offer different server side stategies to pick the cipher it would be most helpfull to have a (string) option to specify the strategy. This option name can be standadized and others then can pick it up as well. You could even specify "RFC" and "ServerOrder" as the two mandatory supported options.
Greetings
Bernd
From mhall at mhcomputing.net Wed Aug 7 06:57:30 2013
From: mhall at mhcomputing.net (Matthew Hall)
Date: Tue, 6 Aug 2013 23:57:30 -0700
Subject: There should be a way to reorder the JSSE ciphers
In-Reply-To:
References: <5200572D.7050602@oracle.com>
<5201B05F.5050204@oracle.com>
<20130807060946.GA12277@mhcomputing.net>
Message-ID: <20130807065730.GB12502@mhcomputing.net>
On Wed, Aug 07, 2013 at 08:54:15AM +0200, Bernd Eckenfels wrote:
> Well yes, if you think there is a bad cipher in the default enabled suite
> then it is good to disable it (The default enabled list is better these
> days). You can do that without setting a new boolean flag which is ignored
> by the default implementation.
I don't think disabling ciphers on the server side works that great in Java
since the client can still screw up the ordering. I have seen some bugs from
this myself, regardless what it might claim in the RFC.
> If the JDK JSSE implementation will offer different server side stategies to
> pick the cipher it would be most helpfull to have a (string) option to
> specify the strategy. This option name can be standadized and others then
> can pick it up as well. You could even specify "RFC" and "ServerOrder" as
> the two mandatory supported options.
Yes, I agree with your and others' suggestions on this. It should use Enum or
String or even Integer constants of some sort instead of anything hard-coded
like invididual Booleans.
> Greetings
> Bernd
Matthew.
From xuelei.fan at oracle.com Wed Aug 7 07:18:02 2013
From: xuelei.fan at oracle.com (Xuelei Fan)
Date: Wed, 07 Aug 2013 15:18:02 +0800
Subject: There should be a way to reorder the JSSE ciphers
In-Reply-To: <20130807065730.GB12502@mhcomputing.net>
References: <5200572D.7050602@oracle.com>
<5201B05F.5050204@oracle.com>
<20130807060946.GA12277@mhcomputing.net>
<20130807065730.GB12502@mhcomputing.net>
Message-ID: <5201F4AA.2090606@oracle.com>
On 8/7/2013 2:57 PM, Matthew Hall wrote:
> On Wed, Aug 07, 2013 at 08:54:15AM +0200, Bernd Eckenfels wrote:
>> Well yes, if you think there is a bad cipher in the default enabled suite
>> then it is good to disable it (The default enabled list is better these
>> days). You can do that without setting a new boolean flag which is ignored
>> by the default implementation.
>
> I don't think disabling ciphers on the server side works that great in Java
> since the client can still screw up the ordering. I have seen some bugs from
> this myself, regardless what it might claim in the RFC.
>
>> If the JDK JSSE implementation will offer different server side stategies to
>> pick the cipher it would be most helpfull to have a (string) option to
>> specify the strategy. This option name can be standadized and others then
>> can pick it up as well. You could even specify "RFC" and "ServerOrder" as
>> the two mandatory supported options.
>
> Yes, I agree with your and others' suggestions on this. It should use Enum or
> String or even Integer constants of some sort instead of anything hard-coded
> like invididual Booleans.
>
hard-coded? I did not catch the idea. It was proposed to define a new
method:
SSLParameters.setUseCipherSuitesOrder(boolean on);
I was considering to use enum as Sean suggested. Both String and
integer is not accept to me because they are pretty easy to get used
incorrectly.
Anyway, I think we all agree we need public method/interface to
configure the behavior that server can select cipher suites on its own
preference.
Xuelei
>> Greetings
>> Bernd
>
> Matthew.
>
From bernd-2013 at eckenfels.net Wed Aug 7 07:31:23 2013
From: bernd-2013 at eckenfels.net (Bernd Eckenfels)
Date: Wed, 07 Aug 2013 09:31:23 +0200
Subject: There should be a way to reorder the JSSE ciphers
In-Reply-To: <5201F4AA.2090606@oracle.com>
References: <5200572D.7050602@oracle.com>
<5201B05F.5050204@oracle.com>
<20130807060946.GA12277@mhcomputing.net>
<20130807065730.GB12502@mhcomputing.net> <5201F4AA.2090606@oracle.com>
Message-ID:
Am 07.08.2013, 09:18 Uhr, schrieb Xuelei Fan :
> I was considering to use enum as Sean suggested. Both String and
> integer is not accept to me because they are pretty easy to get used
> incorrectly.
Strings have the big advantage that you can put this advanced parameter
into a config file and even use implementation specific values
you/appvendor dont know at compile time.
For having the same flexibility with typed parameters a lot of
infrastructure might be needed for discovery (I think no JDK component has
that level for an interface).
Enums are speficically bad in allowing provider specific algorithms,
Integers would only work with a registry. Strings are self describing
enough to go without a registry (if you want to be safe you could use URIs
like XML Parser params/features).
Gruss
Bernd
--
http://bernd.eckenfels.net
From bernd-2013 at eckenfels.net Wed Aug 7 07:45:01 2013
From: bernd-2013 at eckenfels.net (Bernd Eckenfels)
Date: Wed, 07 Aug 2013 09:45:01 +0200
Subject: There should be a way to reorder the JSSE ciphers
In-Reply-To: <20130807065730.GB12502@mhcomputing.net>
References: <5200572D.7050602@oracle.com>
<5201B05F.5050204@oracle.com>
<20130807060946.GA12277@mhcomputing.net>
<20130807065730.GB12502@mhcomputing.net>
Message-ID:
Am 07.08.2013, 08:57 Uhr, schrieb Matthew Hall :
> I don't think disabling ciphers on the server side works that great in
> Java since the client can still screw up the ordering.
Hmm.. do you mean the disabled cipher is used anyway or do you mean it
will pick a suboptimal enabled cipher? I dont know about bugs who allow to
negotiate disabled ciphers. Picking suboptimal ciphers from the point of
view of the server operator can of course still happen with a short(er)
list. It would be good if JDK JSSE can provide a different selector
strategy.
Gruss
Bernd
From dmitry.samersoff at oracle.com Wed Aug 7 09:23:19 2013
From: dmitry.samersoff at oracle.com (Dmitry Samersoff)
Date: Wed, 07 Aug 2013 13:23:19 +0400
Subject: Code review request: 8016594: Native Windows ccache still reads
DES tickets
In-Reply-To: <51E3D6B8.5000907@oracle.com>
References: <51E3D6B8.5000907@oracle.com>
Message-ID: <52021207.80507@oracle.com>
Weijun,
nativeccache.c:
322: Could you change strlen("krbtgt") to sizeof("krbtgt")-1 to save a
bit of computer power?
NativeCreds.c:
(a)
478: As it doesn't have sence to process ticket if
KERB_TICKET_FLAGS_invalid is set, it might be better to move
if (msticket->TicketFlags & KERB_TICKET_FLAGS_invalid) out of loop to
ll. 462
(b)
Original code always ignore RC4 & MD4 combination, but changed code not.
Is it intentional? if yes, could you add an appropriate comments?
-Dmitry
On 2013-07-15 15:02, Weijun Wang wrote:
> Please take a look at
>
> http://cr.openjdk.java.net/~weijun/8016594/webrev.00/
>
> Instead of always reading tickets with session key of DES/RC4 etypes, it
> should accept any ticket in the default_tkt_enctypes setting.
>
> No reg test, needs a SQE test running with Windows 2008 as server.
>
> Thanks
> Max
--
Dmitry Samersoff
Oracle Java development team, Saint Petersburg, Russia
* I would love to change the world, but they won't give me the sources.
From vicente.romero at oracle.com Wed Aug 7 09:41:49 2013
From: vicente.romero at oracle.com (vicente.romero at oracle.com)
Date: Wed, 07 Aug 2013 09:41:49 +0000
Subject: hg: jdk8/tl/langtools: 8020997: TreeMaker.AnnotationBuilder creates
broken element literals with repeating annotations
Message-ID: <20130807094204.96FBC48665@hg.openjdk.java.net>
Changeset: f3deeccbf4cf
Author: vromero
Date: 2013-08-07 10:41 +0100
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/f3deeccbf4cf
8020997: TreeMaker.AnnotationBuilder creates broken element literals with repeating annotations
Reviewed-by: jjg, jfranck
! src/share/classes/com/sun/tools/javac/tree/TreeMaker.java
+ test/tools/javac/T8020997/CannotCompileRepeatedAnnoTest.java
From xuelei.fan at oracle.com Wed Aug 7 09:57:48 2013
From: xuelei.fan at oracle.com (Xuelei Fan)
Date: Wed, 07 Aug 2013 17:57:48 +0800
Subject: Code review request: 7151062: [macosx] SCDynamicStore prints
error messages to stderr
In-Reply-To: <5201C371.2000901@oracle.com>
References: <5201C371.2000901@oracle.com>
Message-ID: <52021A1C.4040401@oracle.com>
Looks fine!
Xuelei
On 8/7/2013 11:48 AM, Weijun Wang wrote:
> Please take a look at
>
> http://cr.openjdk.java.net/~weijun/7151062/webrev.00/
>
> There is spurious output to stderr from SCDynamicConfig reading. These
> cases can be simply debugged by looking at the scutil output and there
> is no need to print anything in Java. Therefore just remove them.
>
> Noreg-cleanup.
>
> Thanks
> Max
From vicente.romero at oracle.com Wed Aug 7 10:11:08 2013
From: vicente.romero at oracle.com (vicente.romero at oracle.com)
Date: Wed, 07 Aug 2013 10:11:08 +0000
Subject: hg: jdk8/tl/langtools: 8008274: javac should not reference/use sample
code
Message-ID: <20130807101110.F276C48668@hg.openjdk.java.net>
Changeset: c7dcf899ffff
Author: vromero
Date: 2013-08-07 11:04 +0100
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/c7dcf899ffff
8008274: javac should not reference/use sample code
Reviewed-by: jjg
! src/share/classes/com/sun/tools/javac/Main.java
From weijun.wang at oracle.com Wed Aug 7 10:58:26 2013
From: weijun.wang at oracle.com (Weijun Wang)
Date: Wed, 07 Aug 2013 18:58:26 +0800
Subject: Code review request: 8016594: Native Windows ccache still reads
DES tickets
In-Reply-To: <52021207.80507@oracle.com>
References: <51E3D6B8.5000907@oracle.com> <52021207.80507@oracle.com>
Message-ID: <52022852.7090203@oracle.com>
On 8/7/13 5:23 PM, Dmitry Samersoff wrote:
> Weijun,
>
> nativeccache.c:
>
> 322: Could you change strlen("krbtgt") to sizeof("krbtgt")-1 to save a
> bit of computer power?
Sure.
>
> NativeCreds.c:
>
> (a)
> 478: As it doesn't have sence to process ticket if
> KERB_TICKET_FLAGS_invalid is set, it might be better to move
>
> if (msticket->TicketFlags & KERB_TICKET_FLAGS_invalid) out of loop to
> ll. 462
Good. I'll also move the time compare out of loop.
>
> (b)
> Original code always ignore RC4 & MD4 combination, but changed code not.
> Is it intentional? if yes, could you add an appropriate comments?
That's because KERB_ETYPE_RC4_MD4 is a MS-private etype we don't
support. Now that we pass in default_tkt_enctypes explicitly as an
argument it seems no need to hardcode or comment on anything.
Thanks
Max
>
> -Dmitry
>
> On 2013-07-15 15:02, Weijun Wang wrote:
>> Please take a look at
>>
>> http://cr.openjdk.java.net/~weijun/8016594/webrev.00/
>>
>> Instead of always reading tickets with session key of DES/RC4 etypes, it
>> should accept any ticket in the default_tkt_enctypes setting.
>>
>> No reg test, needs a SQE test running with Windows 2008 as server.
>>
>> Thanks
>> Max
>
>
From weijun.wang at oracle.com Wed Aug 7 11:07:15 2013
From: weijun.wang at oracle.com (weijun.wang at oracle.com)
Date: Wed, 07 Aug 2013 11:07:15 +0000
Subject: hg: jdk8/tl/jdk: 7151062: [macosx] SCDynamicStore prints error
messages to stderr
Message-ID: <20130807110825.4E6F348669@hg.openjdk.java.net>
Changeset: 906dd23334c1
Author: weijun
Date: 2013-08-07 19:06 +0800
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/906dd23334c1
7151062: [macosx] SCDynamicStore prints error messages to stderr
Reviewed-by: xuelei
! src/macosx/native/java/util/SCDynamicStoreConfig.m
From dmitry.samersoff at oracle.com Wed Aug 7 11:12:20 2013
From: dmitry.samersoff at oracle.com (Dmitry Samersoff)
Date: Wed, 07 Aug 2013 15:12:20 +0400
Subject: Code review request: 8016594: Native Windows ccache still reads
DES tickets
In-Reply-To: <52022852.7090203@oracle.com>
References: <51E3D6B8.5000907@oracle.com> <52021207.80507@oracle.com>
<52022852.7090203@oracle.com>
Message-ID: <52022B94.4060005@oracle.com>
Weijun,
> That's because KERB_ETYPE_RC4_MD4 is a MS-private etype we don't
> support. Now that we pass in default_tkt_enctypes explicitly as an
> argument it seems no need to hardcode or comment on anything.
OK. Thank you for explaining.
-Dmitry
On 2013-08-07 14:58, Weijun Wang wrote:
>
>
> On 8/7/13 5:23 PM, Dmitry Samersoff wrote:
>> Weijun,
>>
>> nativeccache.c:
>>
>> 322: Could you change strlen("krbtgt") to sizeof("krbtgt")-1 to save a
>> bit of computer power?
>
> Sure.
>
>>
>> NativeCreds.c:
>>
>> (a)
>> 478: As it doesn't have sence to process ticket if
>> KERB_TICKET_FLAGS_invalid is set, it might be better to move
>>
>> if (msticket->TicketFlags & KERB_TICKET_FLAGS_invalid) out of loop to
>> ll. 462
>
> Good. I'll also move the time compare out of loop.
>
>>
>> (b)
>> Original code always ignore RC4 & MD4 combination, but changed code not.
>> Is it intentional? if yes, could you add an appropriate comments?
>
> That's because KERB_ETYPE_RC4_MD4 is a MS-private etype we don't
> support. Now that we pass in default_tkt_enctypes explicitly as an
> argument it seems no need to hardcode or comment on anything.
>
> Thanks
> Max
>
>>
>> -Dmitry
>>
>> On 2013-07-15 15:02, Weijun Wang wrote:
>>> Please take a look at
>>>
>>> http://cr.openjdk.java.net/~weijun/8016594/webrev.00/
>>>
>>> Instead of always reading tickets with session key of DES/RC4 etypes, it
>>> should accept any ticket in the default_tkt_enctypes setting.
>>>
>>> No reg test, needs a SQE test running with Windows 2008 as server.
>>>
>>> Thanks
>>> Max
>>
>>
--
Dmitry Samersoff
Oracle Java development team, Saint Petersburg, Russia
* I would love to change the world, but they won't give me the sources.
From xuelei.fan at oracle.com Wed Aug 7 11:31:39 2013
From: xuelei.fan at oracle.com (Xuelei Fan)
Date: Wed, 07 Aug 2013 19:31:39 +0800
Subject: Code review request: 8016594: Native Windows ccache still reads
DES tickets
In-Reply-To: <52022852.7090203@oracle.com>
References: <51E3D6B8.5000907@oracle.com> <52021207.80507@oracle.com>
<52022852.7090203@oracle.com>
Message-ID: <5202301B.2070603@oracle.com>
On 8/7/2013 6:58 PM, Weijun Wang wrote:
>
>
> On 8/7/13 5:23 PM, Dmitry Samersoff wrote:
>> Weijun,
>>
>> nativeccache.c:
>>
>> 322: Could you change strlen("krbtgt") to sizeof("krbtgt")-1 to save a
>> bit of computer power?
>
> Sure.
strncmp() is normally work with strlen() while comparing two strings, in
case the length of the two string are not equal.
- 322 if (strncmp (serverName, "krbtgt", strlen("krbtgt")) == 0 &&
+ 322 if (strlen(serverName) == sizeof("krbtgt") &&
+ strncmp (serverName, "krbtgt", sizeof("krbtgt")) == 0 &&
BTW, as it is a local function, would you like to add a "static" keyword
to isIn() function?
Xuelei
From xuelei.fan at oracle.com Wed Aug 7 11:34:32 2013
From: xuelei.fan at oracle.com (Xuelei Fan)
Date: Wed, 07 Aug 2013 19:34:32 +0800
Subject: Code review request: 8016594: Native Windows ccache still reads
DES tickets
In-Reply-To: <5202301B.2070603@oracle.com>
References: <51E3D6B8.5000907@oracle.com> <52021207.80507@oracle.com>
<52022852.7090203@oracle.com> <5202301B.2070603@oracle.com>
Message-ID: <520230C8.7050106@oracle.com>
On 8/7/2013 7:31 PM, Xuelei Fan wrote:
> On 8/7/2013 6:58 PM, Weijun Wang wrote:
>>
>>
>> On 8/7/13 5:23 PM, Dmitry Samersoff wrote:
>>> Weijun,
>>>
>>> nativeccache.c:
>>>
>>> 322: Could you change strlen("krbtgt") to sizeof("krbtgt")-1 to save a
>>> bit of computer power?
>>
>> Sure.
>
> strncmp() is normally work with strlen() while comparing two strings, in
> case the length of the two string are not equal.
>
> - 322 if (strncmp (serverName, "krbtgt", strlen("krbtgt")) == 0 &&
> + 322 if (strlen(serverName) == sizeof("krbtgt") &&
> + strncmp (serverName, "krbtgt", sizeof("krbtgt")) == 0 &&
>
Ooops, why not use strcmp directly if both are null-terminated?
Xuelei
> BTW, as it is a local function, would you like to add a "static" keyword
> to isIn() function?
>
> Xuelei
>
From dmitry.samersoff at oracle.com Wed Aug 7 11:53:38 2013
From: dmitry.samersoff at oracle.com (Dmitry Samersoff)
Date: Wed, 07 Aug 2013 15:53:38 +0400
Subject: Code review request: 8016594: Native Windows ccache still reads
DES tickets
In-Reply-To: <5202301B.2070603@oracle.com>
References: <51E3D6B8.5000907@oracle.com> <52021207.80507@oracle.com>
<52022852.7090203@oracle.com> <5202301B.2070603@oracle.com>
Message-ID: <52023542.9090109@oracle.com>
Xuelei,
1. strncmp calls strlen at first, so explicit call to strlen is not
necessary.
2. strlen("krbtgt") == sizeof("krbtgt")-1
as sizeof count terminating 0.
-Dmitry
On 2013-08-07 15:31, Xuelei Fan wrote:
> On 8/7/2013 6:58 PM, Weijun Wang wrote:
>>
>>
>> On 8/7/13 5:23 PM, Dmitry Samersoff wrote:
>>> Weijun,
>>>
>>> nativeccache.c:
>>>
>>> 322: Could you change strlen("krbtgt") to sizeof("krbtgt")-1 to save a
>>> bit of computer power?
>>
>> Sure.
>
> strncmp() is normally work with strlen() while comparing two strings, in
> case the length of the two string are not equal.
>
> - 322 if (strncmp (serverName, "krbtgt", strlen("krbtgt")) == 0 &&
> + 322 if (strlen(serverName) == sizeof("krbtgt") &&
> + strncmp (serverName, "krbtgt", sizeof("krbtgt")) == 0 &&
>
> BTW, as it is a local function, would you like to add a "static" keyword
> to isIn() function?
>
> Xuelei
>
--
Dmitry Samersoff
Oracle Java development team, Saint Petersburg, Russia
* I would love to change the world, but they won't give me the source code.
From xuelei.fan at oracle.com Wed Aug 7 12:44:15 2013
From: xuelei.fan at oracle.com (Xuelei Fan)
Date: Wed, 07 Aug 2013 20:44:15 +0800
Subject: Code review request, 8020842 IDN do not throw IAE when hostname
ends with a trailing dot
In-Reply-To: <520133C7.20401@oracle.com>
References: <5200E1B9.7070002@oracle.com> <520127A3.3060405@oracle.com>
<520133C7.20401@oracle.com>
Message-ID: <5202411F.2010706@oracle.com>
On 8/7/2013 12:06 AM, Matthew Hall wrote:
> Trailing dots are allowed in plain DNS (thus almost surely in IDN),
> and the single dot represents the root zone. So you have to be
> careful making this sort of change to check the DNS RFCs first.
That's the first question we need to answer, whether IDN allow tailling
dots ("com."), zero-length root label ("."), and zero-length label ("",
for example ""example..com")?
Per the specification of IDN.toASCII():
=======================================
"ToASCII operation can fail. ToASCII fails if any step of it fails. If
ToASCII operation fails, an IllegalArgumentException will be thrown. In
this case, the input string should not be used in an internationalized
domain name.
A label is an individual part of a domain name. The original ToASCII
operation, as defined in RFC 3490, only operates on a single label. This
method can handle both label and entire domain name, by assuming that
labels in a domain name are always separated by dots. ...
Throws IllegalArgumentException - if the input string doesn't conform to
RFC 3490 specification"
Per the specification of RFC 3490:
==================================
[section 2]
"A label is an individual part of a domain name. Labels are usually
shown separated by dots; for example, the domain name
"www.example.com" is composed of three labels: "www", "example", and
"com". (The zero-length root label described in [STD13], which can
be explicit as in "www.example.com." or implicit as in
"www.example.com", is not considered a label in this specification.)"
"An "internationalized label" is a label to which the ToASCII
operation (see section 4) can be applied without failing (with the
UseSTD3ASCIIRules flag unset). ...
Although most Unicode characters can appear in
internationalized labels, ToASCII will fail for some input strings,
and such strings are not valid internationalized labels."
"An "internationalized domain name" (IDN) is a domain name in which
every label is an internationalized label."
[Section 4.1]
"ToASCII consists of the following steps:
...
8. Verify that the number of code points is in the range 1 to 63
inclusive."
Here are the questions:
1. whether "example..com" is an valid IDN?
As dot is used as label separators, there are three labels,
"example", "", "com". Per RFC 3490, "" is not a valid label. Hence,
"example..com" is not a valid IDN.
We need to address the issue in IDN.
2. whether "xyz." is an valid IDN?
It's an gray area, I think. We can treat the trailing "." as root
label, or a label separator.
If the trailing "." is treated as label separator, "xyz." is invalid
per RFC 3490.
if the trailing "." is treated as root label, what's the expected
return value of IDN.toASCII("xyz.")? I think the return value can be
either "xyz." or "xyz". The current implementation returns "xyz".
We may need not to update the implementation if tailing "." is
treated as root label.
3. whether "." is an valid IDN?
It's an gray area again, I think.
As above, if the trailing "." is treated as root label, I think the
return value can be either "." or "". The current implementation throws
a StringIndexOutOfBoundsException.
However, what empty domain name ("") really means? I would prefer to
return "." for "." instead.
We need to address the issue in IDN.
Here comes the solution, the IDN.toASCII() returns:
1. "." for ".";
2. "xyz" for "xyz.";
3. IAE for "example..com".
Does it make sense?
Thanks,
Xuelei
On 8/7/2013 1:35 AM, Michael McMahon wrote:
> I don't really understand the reason for the restriction in SNIHostName
> But, I guess that is where it should be enforced if it is required.
>
> Michael.
>
> On 06/08/13 17:43, Dmitry Samersoff wrote:
>> Xuelei,
>>
>> . (dot) is perfectly valid domain name and it means root domain so com.
>> is valid domain name as well.
>>
>> It thinks to me that in context of methods your change we should ignore
>> trailing dots, rather than throw exception.
>>
>> -Dmitry
>>
>>
>>
>> On 2013-08-06 15:44, Xuelei Fan wrote:
>>> Hi,
>>>
>>> Please review the bug fix to strict the illegal input checking in IDN.
>>>
>>> webrev: http://cr.openjdk.java.net./~xuelei/8020842/webrev.00/
>>>
>>> Here is two test cases, which are expected to get IAE.
>>>
>>> Case 1:
>>> String host = IDN.toASCII(".", IDN.USE_STD3_ASCII_RULES);
>>> Exception in thread "main" java.lang.StringIndexOutOfBoundsException:
>>> String index out of range: 0
>>> at java.lang.StringBuffer.charAt(StringBuffer.java:204)
>>> at java.net.IDN.toASCIIInternal(IDN.java:279)
>>> at java.net.IDN.toASCII(IDN.java:118)
>>>
>>> Case 2:
>>> String host = IDN.toASCII("com.", IDN.USE_STD3_ASCII_RULES);
>>>
>>> Thanks,
>>> Xuelei
>>>
>>
>
From sundararajan.athijegannathan at oracle.com Wed Aug 7 12:47:00 2013
From: sundararajan.athijegannathan at oracle.com (sundararajan.athijegannathan at oracle.com)
Date: Wed, 07 Aug 2013 12:47:00 +0000
Subject: hg: jdk8/tl/jdk: 8022483: Nashorn compatibility issues in jhat's OQL
feature
Message-ID: <20130807124753.CE61248677@hg.openjdk.java.net>
Changeset: 99f4319763a9
Author: sundar
Date: 2013-08-07 18:16 +0530
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/99f4319763a9
8022483: Nashorn compatibility issues in jhat's OQL feature
Reviewed-by: lagergren, attila, hannesw
! src/share/classes/com/sun/tools/hat/resources/hat.js
! src/share/classes/com/sun/tools/hat/resources/oqlhelp.html
From xuelei.fan at oracle.com Wed Aug 7 13:09:13 2013
From: xuelei.fan at oracle.com (Xuelei Fan)
Date: Wed, 07 Aug 2013 21:09:13 +0800
Subject: Code review request: 8016594: Native Windows ccache still reads
DES tickets
In-Reply-To: <52023542.9090109@oracle.com>
References: <51E3D6B8.5000907@oracle.com> <52021207.80507@oracle.com>
<52022852.7090203@oracle.com> <5202301B.2070603@oracle.com>
<52023542.9090109@oracle.com>
Message-ID: <520246F9.3080705@oracle.com>
On 8/7/2013 7:53 PM, Dmitry Samersoff wrote:
> Xuelei,
>
> 1. strncmp calls strlen at first, so explicit call to strlen is not
> necessary.
>
I was wondering to make the comparing when the length of serverName is
bigger than strlen("krbtgt"). For example, "krbtgt_extra". Mine
suggested code is incorrect, as the output name of krb5_unparse_name may
be "krbtgt_extra/h.o.s.t at realm", but not "krbtgt_extra".
It's a little problem, but we might want to make the comparing more
precisely.
> 2. strlen("krbtgt") == sizeof("krbtgt")-1
> as sizeof count terminating 0.
>
You are right.
Xuelei
> -Dmitry
>
>
> On 2013-08-07 15:31, Xuelei Fan wrote:
>> On 8/7/2013 6:58 PM, Weijun Wang wrote:
>>>
>>>
>>> On 8/7/13 5:23 PM, Dmitry Samersoff wrote:
>>>> Weijun,
>>>>
>>>> nativeccache.c:
>>>>
>>>> 322: Could you change strlen("krbtgt") to sizeof("krbtgt")-1 to save a
>>>> bit of computer power?
>>>
>>> Sure.
>>
>> strncmp() is normally work with strlen() while comparing two strings, in
>> case the length of the two string are not equal.
>>
>> - 322 if (strncmp (serverName, "krbtgt", strlen("krbtgt")) == 0 &&
>> + 322 if (strlen(serverName) == sizeof("krbtgt") &&
>> + strncmp (serverName, "krbtgt", sizeof("krbtgt")) == 0 &&
>>
>> BTW, as it is a local function, would you like to add a "static" keyword
>> to isIn() function?
>>
>> Xuelei
>>
>
>
From dmitry.samersoff at oracle.com Wed Aug 7 13:10:23 2013
From: dmitry.samersoff at oracle.com (Dmitry Samersoff)
Date: Wed, 07 Aug 2013 17:10:23 +0400
Subject: Code review request, 8020842 IDN do not throw IAE when hostname
ends with a trailing dot
In-Reply-To: <5202411F.2010706@oracle.com>
References: <5200E1B9.7070002@oracle.com> <520127A3.3060405@oracle.com>
<520133C7.20401@oracle.com> <5202411F.2010706@oracle.com>
Message-ID: <5202473F.70808@oracle.com>
Xuelei,
root label is an empty label[1], dot is a label separator, so in printed
form domain names is dot-terminated.
Please see also below inline.
[1]
RFC rfc1034.txt:
Internally, programs that manipulate domain names should represent them
as sequences of labels, where each label is a length octet followed by
an octet string. Because all domain names end at the root, *which has a
null string for a label*, these internal representations can use a
length byte of zero to terminate a domain name.
On 2013-08-07 16:44, Xuelei Fan wrote:
> On 8/7/2013 12:06 AM, Matthew Hall wrote:
>> Trailing dots are allowed in plain DNS (thus almost surely in IDN),
>> and the single dot represents the root zone. So you have to be
>> careful making this sort of change to check the DNS RFCs first.
>
> That's the first question we need to answer, whether IDN allow tailling
> dots ("com."), zero-length root label ("."), and zero-length label ("",
> for example ""example..com")?
>
> Per the specification of IDN.toASCII():
> =======================================
> "ToASCII operation can fail. ToASCII fails if any step of it fails. If
> ToASCII operation fails, an IllegalArgumentException will be thrown. In
> this case, the input string should not be used in an internationalized
> domain name.
>
> A label is an individual part of a domain name. The original ToASCII
> operation, as defined in RFC 3490, only operates on a single label. This
> method can handle both label and entire domain name, by assuming that
> labels in a domain name are always separated by dots. ...
>
> Throws IllegalArgumentException - if the input string doesn't conform to
> RFC 3490 specification"
>
> Per the specification of RFC 3490:
> ==================================
> [section 2]
> "A label is an individual part of a domain name. Labels are usually
> shown separated by dots; for example, the domain name
> "www.example.com" is composed of three labels: "www", "example", and
> "com". (The zero-length root label described in [STD13], which can
> be explicit as in "www.example.com." or implicit as in
> "www.example.com", is not considered a label in this specification.)"
>
> "An "internationalized label" is a label to which the ToASCII
> operation (see section 4) can be applied without failing (with the
> UseSTD3ASCIIRules flag unset). ...
> Although most Unicode characters can appear in
> internationalized labels, ToASCII will fail for some input strings,
> and such strings are not valid internationalized labels."
>
> "An "internationalized domain name" (IDN) is a domain name in which
> every label is an internationalized label."
>
> [Section 4.1]
> "ToASCII consists of the following steps:
>
> ...
>
> 8. Verify that the number of code points is in the range 1 to 63
> inclusive."
>
>
> Here are the questions:
> 1. whether "example..com" is an valid IDN?
> As dot is used as label separators, there are three labels,
> "example", "", "com". Per RFC 3490, "" is not a valid label. Hence,
> "example..com" is not a valid IDN.
>
> We need to address the issue in IDN.
Root label can't appear in the middle of domain name, so example..com is
an invalid domain name and appropriate exception have to be thrown.
>
> 2. whether "xyz." is an valid IDN?
> It's an gray area, I think. We can treat the trailing "." as root
> label, or a label separator.
> If the trailing "." is treated as label separator, "xyz." is invalid
> per RFC 3490.
> if the trailing "." is treated as root label, what's the expected
> return value of IDN.toASCII("xyz.")? I think the return value can be
> either "xyz." or "xyz". The current implementation returns "xyz".
>
> We may need not to update the implementation if tailing "." is
> treated as root label.
Empty label at the end of domain names is valid per RFC 1034 and means
root label. So we should process this name and return all non-empty
labels.
> 3. whether "." is an valid IDN?
> It's an gray area again, I think.
> As above, if the trailing "." is treated as root label, I think the
> return value can be either "." or "". The current implementation throws
> a StringIndexOutOfBoundsException.
>
> However, what empty domain name ("") really means? I would prefer to
> return "." for "." instead.
>
> We need to address the issue in IDN.
As dot is a label separator and root (empty) label can't appear in the
middle of domain name, . (dot) is not valid name and this case is
similar to case (1) - we should throw an appropriate exception.
-Dmitry
>
> Here comes the solution, the IDN.toASCII() returns:
> 1. "." for ".";
> 2. "xyz" for "xyz.";
> 3. IAE for "example..com".
>
> Does it make sense?
>
> Thanks,
> Xuelei
>
>
> On 8/7/2013 1:35 AM, Michael McMahon wrote:
>> I don't really understand the reason for the restriction in SNIHostName
>> But, I guess that is where it should be enforced if it is required.
>>
>> Michael.
>>
>> On 06/08/13 17:43, Dmitry Samersoff wrote:
>>> Xuelei,
>>>
>>> . (dot) is perfectly valid domain name and it means root domain so com.
>>> is valid domain name as well.
>>>
>>> It thinks to me that in context of methods your change we should ignore
>>> trailing dots, rather than throw exception.
>>>
>>> -Dmitry
>>>
>>>
>>>
>>> On 2013-08-06 15:44, Xuelei Fan wrote:
>>>> Hi,
>>>>
>>>> Please review the bug fix to strict the illegal input checking in IDN.
>>>>
>>>> webrev: http://cr.openjdk.java.net./~xuelei/8020842/webrev.00/
>>>>
>>>> Here is two test cases, which are expected to get IAE.
>>>>
>>>> Case 1:
>>>> String host = IDN.toASCII(".", IDN.USE_STD3_ASCII_RULES);
>>>> Exception in thread "main" java.lang.StringIndexOutOfBoundsException:
>>>> String index out of range: 0
>>>> at java.lang.StringBuffer.charAt(StringBuffer.java:204)
>>>> at java.net.IDN.toASCIIInternal(IDN.java:279)
>>>> at java.net.IDN.toASCII(IDN.java:118)
>>>>
>>>> Case 2:
>>>> String host = IDN.toASCII("com.", IDN.USE_STD3_ASCII_RULES);
>>>>
>>>> Thanks,
>>>> Xuelei
>>>>
>>>
>>
>
--
Dmitry Samersoff
Oracle Java development team, Saint Petersburg, Russia
* I would love to change the world, but they won't give me the sources.
From weijun.wang at oracle.com Wed Aug 7 13:30:37 2013
From: weijun.wang at oracle.com (Weijun Wang)
Date: Wed, 07 Aug 2013 21:30:37 +0800
Subject: Code review request: 8016594: Native Windows ccache still reads
DES tickets
In-Reply-To: <520246F9.3080705@oracle.com>
References: <51E3D6B8.5000907@oracle.com> <52021207.80507@oracle.com>
<52022852.7090203@oracle.com> <5202301B.2070603@oracle.com>
<52023542.9090109@oracle.com> <520246F9.3080705@oracle.com>
Message-ID: <52024BFD.1070703@oracle.com>
First, thanks for your feedbacks.
I only intended to fix etypes in this bug and since I don't have a lot
of experience on native kerberos on Mac (it is the Heimdal impl instead
of MIT's) I didn't want to touch a lot.
Precisely, comparing only "krbtgt" is not enough. When doing cross-realm
auth from R1 to R2, it's likely to have "krbtgt/R2 at R1" in ccache and it
should not used as initial TGT.
Shall we fix this in another bug when I (or QE) are more familiar with
native krb5 on Mac?
Thanks
Max
On 8/7/13 9:09 PM, Xuelei Fan wrote:
> On 8/7/2013 7:53 PM, Dmitry Samersoff wrote:
>> Xuelei,
>>
>> 1. strncmp calls strlen at first, so explicit call to strlen is not
>> necessary.
>>
> I was wondering to make the comparing when the length of serverName is
> bigger than strlen("krbtgt"). For example, "krbtgt_extra". Mine
> suggested code is incorrect, as the output name of krb5_unparse_name may
> be "krbtgt_extra/h.o.s.t at realm", but not "krbtgt_extra".
>
> It's a little problem, but we might want to make the comparing more
> precisely.
>
>> 2. strlen("krbtgt") == sizeof("krbtgt")-1
>> as sizeof count terminating 0.
>>
> You are right.
>
> Xuelei
>
>> -Dmitry
>>
>>
>> On 2013-08-07 15:31, Xuelei Fan wrote:
>>> On 8/7/2013 6:58 PM, Weijun Wang wrote:
>>>>
>>>>
>>>> On 8/7/13 5:23 PM, Dmitry Samersoff wrote:
>>>>> Weijun,
>>>>>
>>>>> nativeccache.c:
>>>>>
>>>>> 322: Could you change strlen("krbtgt") to sizeof("krbtgt")-1 to save a
>>>>> bit of computer power?
>>>>
>>>> Sure.
>>>
>>> strncmp() is normally work with strlen() while comparing two strings, in
>>> case the length of the two string are not equal.
>>>
>>> - 322 if (strncmp (serverName, "krbtgt", strlen("krbtgt")) == 0 &&
>>> + 322 if (strlen(serverName) == sizeof("krbtgt") &&
>>> + strncmp (serverName, "krbtgt", sizeof("krbtgt")) == 0 &&
>>>
>>> BTW, as it is a local function, would you like to add a "static" keyword
>>> to isIn() function?
>>>
>>> Xuelei
>>>
>>
>>
>
From xuelei.fan at oracle.com Wed Aug 7 13:32:56 2013
From: xuelei.fan at oracle.com (Xuelei Fan)
Date: Wed, 07 Aug 2013 21:32:56 +0800
Subject: Code review request: 8016594: Native Windows ccache still reads
DES tickets
In-Reply-To: <52024BFD.1070703@oracle.com>
References: <51E3D6B8.5000907@oracle.com> <52021207.80507@oracle.com>
<52022852.7090203@oracle.com> <5202301B.2070603@oracle.com>
<52023542.9090109@oracle.com> <520246F9.3080705@oracle.com>
<52024BFD.1070703@oracle.com>
Message-ID: <52024C88.5080609@oracle.com>
On 8/7/2013 9:30 PM, Weijun Wang wrote:
> First, thanks for your feedbacks.
>
> I only intended to fix etypes in this bug and since I don't have a lot
> of experience on native kerberos on Mac (it is the Heimdal impl instead
> of MIT's) I didn't want to touch a lot.
>
> Precisely, comparing only "krbtgt" is not enough. When doing cross-realm
> auth from R1 to R2, it's likely to have "krbtgt/R2 at R1" in ccache and it
> should not used as initial TGT.
>
> Shall we fix this in another bug when I (or QE) are more familiar with
> native krb5 on Mac?
>
OK to me.
Xuelei
> Thanks
> Max
>
> On 8/7/13 9:09 PM, Xuelei Fan wrote:
>> On 8/7/2013 7:53 PM, Dmitry Samersoff wrote:
>>> Xuelei,
>>>
>>> 1. strncmp calls strlen at first, so explicit call to strlen is not
>>> necessary.
>>>
>> I was wondering to make the comparing when the length of serverName is
>> bigger than strlen("krbtgt"). For example, "krbtgt_extra". Mine
>> suggested code is incorrect, as the output name of krb5_unparse_name may
>> be "krbtgt_extra/h.o.s.t at realm", but not "krbtgt_extra".
>>
>> It's a little problem, but we might want to make the comparing more
>> precisely.
>>
>>> 2. strlen("krbtgt") == sizeof("krbtgt")-1
>>> as sizeof count terminating 0.
>>>
>> You are right.
>>
>> Xuelei
>>
>>> -Dmitry
>>>
>>>
>>> On 2013-08-07 15:31, Xuelei Fan wrote:
>>>> On 8/7/2013 6:58 PM, Weijun Wang wrote:
>>>>>
>>>>>
>>>>> On 8/7/13 5:23 PM, Dmitry Samersoff wrote:
>>>>>> Weijun,
>>>>>>
>>>>>> nativeccache.c:
>>>>>>
>>>>>> 322: Could you change strlen("krbtgt") to sizeof("krbtgt")-1 to
>>>>>> save a
>>>>>> bit of computer power?
>>>>>
>>>>> Sure.
>>>>
>>>> strncmp() is normally work with strlen() while comparing two
>>>> strings, in
>>>> case the length of the two string are not equal.
>>>>
>>>> - 322 if (strncmp (serverName, "krbtgt", strlen("krbtgt")) == 0 &&
>>>> + 322 if (strlen(serverName) == sizeof("krbtgt") &&
>>>> + strncmp (serverName, "krbtgt", sizeof("krbtgt")) == 0 &&
>>>>
>>>> BTW, as it is a local function, would you like to add a "static"
>>>> keyword
>>>> to isIn() function?
>>>>
>>>> Xuelei
>>>>
>>>
>>>
>>
From xuelei.fan at oracle.com Wed Aug 7 13:43:10 2013
From: xuelei.fan at oracle.com (xuelei.fan at oracle.com)
Date: Wed, 07 Aug 2013 13:43:10 +0000
Subject: hg: jdk8/tl/jdk: 8013809: deadlock in SSLSocketImpl between between
write and close
Message-ID: <20130807134325.C4A2E48679@hg.openjdk.java.net>
Changeset: 8c7cf4926157
Author: xuelei
Date: 2013-08-07 06:42 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/8c7cf4926157
8013809: deadlock in SSLSocketImpl between between write and close
Reviewed-by: wetmore
! src/share/classes/sun/security/ssl/SSLSocketImpl.java
From michael.x.mcmahon at oracle.com Wed Aug 7 14:05:40 2013
From: michael.x.mcmahon at oracle.com (Michael McMahon)
Date: Wed, 07 Aug 2013 15:05:40 +0100
Subject: Code review request, 8020842 IDN do not throw IAE when hostname
ends with a trailing dot
In-Reply-To: <5202411F.2010706@oracle.com>
References: <5200E1B9.7070002@oracle.com> <520127A3.3060405@oracle.com>
<520133C7.20401@oracle.com> <5202411F.2010706@oracle.com>
Message-ID: <52025434.8070200@oracle.com>
Resolvers seem to accept queries using trailing dots.
eg nslookup www.oracle.com.
or InetAddress.getByName("www.oracle.com.");
The part of RFC3490 quoted below seems to me to be saying
that the empty label implied by the trailing dot is not regarded
as a label so that you don't end up calling toAscii() or toUnicode()
with an empty string. I don't think it's saying the trailing dot can't
be there.
Michael
On 07/08/13 13:44, Xuelei Fan wrote:
> On 8/7/2013 12:06 AM, Matthew Hall wrote:
>> Trailing dots are allowed in plain DNS (thus almost surely in IDN),
>> and the single dot represents the root zone. So you have to be
>> careful making this sort of change to check the DNS RFCs first.
> That's the first question we need to answer, whether IDN allow tailling
> dots ("com."), zero-length root label ("."), and zero-length label ("",
> for example ""example..com")?
>
> Per the specification of IDN.toASCII():
> =======================================
> "ToASCII operation can fail. ToASCII fails if any step of it fails. If
> ToASCII operation fails, an IllegalArgumentException will be thrown. In
> this case, the input string should not be used in an internationalized
> domain name.
>
> A label is an individual part of a domain name. The original ToASCII
> operation, as defined in RFC 3490, only operates on a single label. This
> method can handle both label and entire domain name, by assuming that
> labels in a domain name are always separated by dots. ...
>
> Throws IllegalArgumentException - if the input string doesn't conform to
> RFC 3490 specification"
>
> Per the specification of RFC 3490:
> ==================================
> [section 2]
> "A label is an individual part of a domain name. Labels are usually
> shown separated by dots; for example, the domain name
> "www.example.com" is composed of three labels: "www", "example", and
> "com". (The zero-length root label described in [STD13], which can
> be explicit as in "www.example.com." or implicit as in
> "www.example.com", is not considered a label in this specification.)"
>
> "An "internationalized label" is a label to which the ToASCII
> operation (see section 4) can be applied without failing (with the
> UseSTD3ASCIIRules flag unset). ...
> Although most Unicode characters can appear in
> internationalized labels, ToASCII will fail for some input strings,
> and such strings are not valid internationalized labels."
>
> "An "internationalized domain name" (IDN) is a domain name in which
> every label is an internationalized label."
>
> [Section 4.1]
> "ToASCII consists of the following steps:
>
> ...
>
> 8. Verify that the number of code points is in the range 1 to 63
> inclusive."
>
>
> Here are the questions:
> 1. whether "example..com" is an valid IDN?
> As dot is used as label separators, there are three labels,
> "example", "", "com". Per RFC 3490, "" is not a valid label. Hence,
> "example..com" is not a valid IDN.
>
> We need to address the issue in IDN.
>
> 2. whether "xyz." is an valid IDN?
> It's an gray area, I think. We can treat the trailing "." as root
> label, or a label separator.
> If the trailing "." is treated as label separator, "xyz." is invalid
> per RFC 3490.
> if the trailing "." is treated as root label, what's the expected
> return value of IDN.toASCII("xyz.")? I think the return value can be
> either "xyz." or "xyz". The current implementation returns "xyz".
>
> We may need not to update the implementation if tailing "." is
> treated as root label.
>
> 3. whether "." is an valid IDN?
> It's an gray area again, I think.
> As above, if the trailing "." is treated as root label, I think the
> return value can be either "." or "". The current implementation throws
> a StringIndexOutOfBoundsException.
>
> However, what empty domain name ("") really means? I would prefer to
> return "." for "." instead.
>
> We need to address the issue in IDN.
>
>
> Here comes the solution, the IDN.toASCII() returns:
> 1. "." for ".";
> 2. "xyz" for "xyz.";
> 3. IAE for "example..com".
>
> Does it make sense?
>
> Thanks,
> Xuelei
>
>
> On 8/7/2013 1:35 AM, Michael McMahon wrote:
>> I don't really understand the reason for the restriction in SNIHostName
>> But, I guess that is where it should be enforced if it is required.
>>
>> Michael.
>>
>> On 06/08/13 17:43, Dmitry Samersoff wrote:
>>> Xuelei,
>>>
>>> . (dot) is perfectly valid domain name and it means root domain so com.
>>> is valid domain name as well.
>>>
>>> It thinks to me that in context of methods your change we should ignore
>>> trailing dots, rather than throw exception.
>>>
>>> -Dmitry
>>>
>>>
>>>
>>> On 2013-08-06 15:44, Xuelei Fan wrote:
>>>> Hi,
>>>>
>>>> Please review the bug fix to strict the illegal input checking in IDN.
>>>>
>>>> webrev: http://cr.openjdk.java.net./~xuelei/8020842/webrev.00/
>>>>
>>>> Here is two test cases, which are expected to get IAE.
>>>>
>>>> Case 1:
>>>> String host = IDN.toASCII(".", IDN.USE_STD3_ASCII_RULES);
>>>> Exception in thread "main" java.lang.StringIndexOutOfBoundsException:
>>>> String index out of range: 0
>>>> at java.lang.StringBuffer.charAt(StringBuffer.java:204)
>>>> at java.net.IDN.toASCIIInternal(IDN.java:279)
>>>> at java.net.IDN.toASCII(IDN.java:118)
>>>>
>>>> Case 2:
>>>> String host = IDN.toASCII("com.", IDN.USE_STD3_ASCII_RULES);
>>>>
>>>> Thanks,
>>>> Xuelei
>>>>
From xuelei.fan at oracle.com Wed Aug 7 14:13:46 2013
From: xuelei.fan at oracle.com (Xuelei Fan)
Date: Wed, 07 Aug 2013 22:13:46 +0800
Subject: Code review request, 8020842 IDN do not throw IAE when hostname
ends with a trailing dot
In-Reply-To: <52025434.8070200@oracle.com>
References: <5200E1B9.7070002@oracle.com> <520127A3.3060405@oracle.com>
<520133C7.20401@oracle.com> <5202411F.2010706@oracle.com>
<52025434.8070200@oracle.com>
Message-ID: <5202561A.5040908@oracle.com>
On 8/7/2013 10:05 PM, Michael McMahon wrote:
> Resolvers seem to accept queries using trailing dots.
>
> eg nslookup www.oracle.com.
>
> or InetAddress.getByName("www.oracle.com.");
>
> The part of RFC3490 quoted below seems to me to be saying
> that the empty label implied by the trailing dot is not regarded
> as a label so that you don't end up calling toAscii() or toUnicode()
> with an empty string. I don't think it's saying the trailing dot can't
> be there.
>
It makes sense.
What's your preference to return for IDN.toASCII("www.oracle.com."),
"www.oracle.com." or "www.oracle.com"? The current returned value is
"www.oracle.com". I would like to reserve the behavior in this update.
I think we are on same page soon.
Thanks,
Xuelei
> Michael
>
> On 07/08/13 13:44, Xuelei Fan wrote:
>> On 8/7/2013 12:06 AM, Matthew Hall wrote:
>>> Trailing dots are allowed in plain DNS (thus almost surely in IDN),
>>> and the single dot represents the root zone. So you have to be
>>> careful making this sort of change to check the DNS RFCs first.
>> That's the first question we need to answer, whether IDN allow tailling
>> dots ("com."), zero-length root label ("."), and zero-length label ("",
>> for example ""example..com")?
>>
>> Per the specification of IDN.toASCII():
>> =======================================
>> "ToASCII operation can fail. ToASCII fails if any step of it fails. If
>> ToASCII operation fails, an IllegalArgumentException will be thrown. In
>> this case, the input string should not be used in an internationalized
>> domain name.
>>
>> A label is an individual part of a domain name. The original ToASCII
>> operation, as defined in RFC 3490, only operates on a single label. This
>> method can handle both label and entire domain name, by assuming that
>> labels in a domain name are always separated by dots. ...
>>
>> Throws IllegalArgumentException - if the input string doesn't conform to
>> RFC 3490 specification"
>>
>> Per the specification of RFC 3490:
>> ==================================
>> [section 2]
>> "A label is an individual part of a domain name. Labels are usually
>> shown separated by dots; for example, the domain name
>> "www.example.com" is composed of three labels: "www", "example", and
>> "com". (The zero-length root label described in [STD13], which can
>> be explicit as in "www.example.com." or implicit as in
>> "www.example.com", is not considered a label in this specification.)"
>>
>> "An "internationalized label" is a label to which the ToASCII
>> operation (see section 4) can be applied without failing (with the
>> UseSTD3ASCIIRules flag unset). ...
>> Although most Unicode characters can appear in
>> internationalized labels, ToASCII will fail for some input strings,
>> and such strings are not valid internationalized labels."
>>
>> "An "internationalized domain name" (IDN) is a domain name in which
>> every label is an internationalized label."
>>
>> [Section 4.1]
>> "ToASCII consists of the following steps:
>>
>> ...
>>
>> 8. Verify that the number of code points is in the range 1 to 63
>> inclusive."
>>
>>
>> Here are the questions:
>> 1. whether "example..com" is an valid IDN?
>> As dot is used as label separators, there are three labels,
>> "example", "", "com". Per RFC 3490, "" is not a valid label. Hence,
>> "example..com" is not a valid IDN.
>>
>> We need to address the issue in IDN.
>>
>> 2. whether "xyz." is an valid IDN?
>> It's an gray area, I think. We can treat the trailing "." as root
>> label, or a label separator.
>> If the trailing "." is treated as label separator, "xyz." is invalid
>> per RFC 3490.
>> if the trailing "." is treated as root label, what's the expected
>> return value of IDN.toASCII("xyz.")? I think the return value can be
>> either "xyz." or "xyz". The current implementation returns "xyz".
>>
>> We may need not to update the implementation if tailing "." is
>> treated as root label.
>>
>> 3. whether "." is an valid IDN?
>> It's an gray area again, I think.
>> As above, if the trailing "." is treated as root label, I think the
>> return value can be either "." or "". The current implementation throws
>> a StringIndexOutOfBoundsException.
>>
>> However, what empty domain name ("") really means? I would prefer to
>> return "." for "." instead.
>>
>> We need to address the issue in IDN.
>>
>>
>> Here comes the solution, the IDN.toASCII() returns:
>> 1. "." for ".";
>> 2. "xyz" for "xyz.";
>> 3. IAE for "example..com".
>>
>> Does it make sense?
>>
>> Thanks,
>> Xuelei
>>
>>
>> On 8/7/2013 1:35 AM, Michael McMahon wrote:
>>> I don't really understand the reason for the restriction in SNIHostName
>>> But, I guess that is where it should be enforced if it is required.
>>>
>>> Michael.
>>>
>>> On 06/08/13 17:43, Dmitry Samersoff wrote:
>>>> Xuelei,
>>>>
>>>> . (dot) is perfectly valid domain name and it means root domain so com.
>>>> is valid domain name as well.
>>>>
>>>> It thinks to me that in context of methods your change we should ignore
>>>> trailing dots, rather than throw exception.
>>>>
>>>> -Dmitry
>>>>
>>>>
>>>>
>>>> On 2013-08-06 15:44, Xuelei Fan wrote:
>>>>> Hi,
>>>>>
>>>>> Please review the bug fix to strict the illegal input checking in IDN.
>>>>>
>>>>> webrev: http://cr.openjdk.java.net./~xuelei/8020842/webrev.00/
>>>>>
>>>>> Here is two test cases, which are expected to get IAE.
>>>>>
>>>>> Case 1:
>>>>> String host = IDN.toASCII(".", IDN.USE_STD3_ASCII_RULES);
>>>>> Exception in thread "main" java.lang.StringIndexOutOfBoundsException:
>>>>> String index out of range: 0
>>>>> at java.lang.StringBuffer.charAt(StringBuffer.java:204)
>>>>> at java.net.IDN.toASCIIInternal(IDN.java:279)
>>>>> at java.net.IDN.toASCII(IDN.java:118)
>>>>>
>>>>> Case 2:
>>>>> String host = IDN.toASCII("com.", IDN.USE_STD3_ASCII_RULES);
>>>>>
>>>>> Thanks,
>>>>> Xuelei
>>>>>
>
From michael.x.mcmahon at oracle.com Wed Aug 7 14:18:14 2013
From: michael.x.mcmahon at oracle.com (Michael McMahon)
Date: Wed, 07 Aug 2013 15:18:14 +0100
Subject: Code review request, 8020842 IDN do not throw IAE when hostname
ends with a trailing dot
In-Reply-To: <5202561A.5040908@oracle.com>
References: <5200E1B9.7070002@oracle.com> <520127A3.3060405@oracle.com>
<520133C7.20401@oracle.com> <5202411F.2010706@oracle.com>
<52025434.8070200@oracle.com> <5202561A.5040908@oracle.com>
Message-ID: <52025726.8060203@oracle.com>
On 07/08/13 15:13, Xuelei Fan wrote:
> On 8/7/2013 10:05 PM, Michael McMahon wrote:
>> Resolvers seem to accept queries using trailing dots.
>>
>> eg nslookup www.oracle.com.
>>
>> or InetAddress.getByName("www.oracle.com.");
>>
>> The part of RFC3490 quoted below seems to me to be saying
>> that the empty label implied by the trailing dot is not regarded
>> as a label so that you don't end up calling toAscii() or toUnicode()
>> with an empty string. I don't think it's saying the trailing dot can't
>> be there.
>>
> It makes sense.
>
> What's your preference to return for IDN.toASCII("www.oracle.com."),
> "www.oracle.com." or "www.oracle.com"? The current returned value is
> "www.oracle.com". I would like to reserve the behavior in this update.
My opinion is to keep it as at present ie. "www.oracle.com."
Michael
> I think we are on same page soon.
>
> Thanks,
> Xuelei
>
>> Michael
>>
>> On 07/08/13 13:44, Xuelei Fan wrote:
>>> On 8/7/2013 12:06 AM, Matthew Hall wrote:
>>>> Trailing dots are allowed in plain DNS (thus almost surely in IDN),
>>>> and the single dot represents the root zone. So you have to be
>>>> careful making this sort of change to check the DNS RFCs first.
>>> That's the first question we need to answer, whether IDN allow tailling
>>> dots ("com."), zero-length root label ("."), and zero-length label ("",
>>> for example ""example..com")?
>>>
>>> Per the specification of IDN.toASCII():
>>> =======================================
>>> "ToASCII operation can fail. ToASCII fails if any step of it fails. If
>>> ToASCII operation fails, an IllegalArgumentException will be thrown. In
>>> this case, the input string should not be used in an internationalized
>>> domain name.
>>>
>>> A label is an individual part of a domain name. The original ToASCII
>>> operation, as defined in RFC 3490, only operates on a single label. This
>>> method can handle both label and entire domain name, by assuming that
>>> labels in a domain name are always separated by dots. ...
>>>
>>> Throws IllegalArgumentException - if the input string doesn't conform to
>>> RFC 3490 specification"
>>>
>>> Per the specification of RFC 3490:
>>> ==================================
>>> [section 2]
>>> "A label is an individual part of a domain name. Labels are usually
>>> shown separated by dots; for example, the domain name
>>> "www.example.com" is composed of three labels: "www", "example", and
>>> "com". (The zero-length root label described in [STD13], which can
>>> be explicit as in "www.example.com." or implicit as in
>>> "www.example.com", is not considered a label in this specification.)"
>>>
>>> "An "internationalized label" is a label to which the ToASCII
>>> operation (see section 4) can be applied without failing (with the
>>> UseSTD3ASCIIRules flag unset). ...
>>> Although most Unicode characters can appear in
>>> internationalized labels, ToASCII will fail for some input strings,
>>> and such strings are not valid internationalized labels."
>>>
>>> "An "internationalized domain name" (IDN) is a domain name in which
>>> every label is an internationalized label."
>>>
>>> [Section 4.1]
>>> "ToASCII consists of the following steps:
>>>
>>> ...
>>>
>>> 8. Verify that the number of code points is in the range 1 to 63
>>> inclusive."
>>>
>>>
>>> Here are the questions:
>>> 1. whether "example..com" is an valid IDN?
>>> As dot is used as label separators, there are three labels,
>>> "example", "", "com". Per RFC 3490, "" is not a valid label. Hence,
>>> "example..com" is not a valid IDN.
>>>
>>> We need to address the issue in IDN.
>>>
>>> 2. whether "xyz." is an valid IDN?
>>> It's an gray area, I think. We can treat the trailing "." as root
>>> label, or a label separator.
>>> If the trailing "." is treated as label separator, "xyz." is invalid
>>> per RFC 3490.
>>> if the trailing "." is treated as root label, what's the expected
>>> return value of IDN.toASCII("xyz.")? I think the return value can be
>>> either "xyz." or "xyz". The current implementation returns "xyz".
>>>
>>> We may need not to update the implementation if tailing "." is
>>> treated as root label.
>>>
>>> 3. whether "." is an valid IDN?
>>> It's an gray area again, I think.
>>> As above, if the trailing "." is treated as root label, I think the
>>> return value can be either "." or "". The current implementation throws
>>> a StringIndexOutOfBoundsException.
>>>
>>> However, what empty domain name ("") really means? I would prefer to
>>> return "." for "." instead.
>>>
>>> We need to address the issue in IDN.
>>>
>>>
>>> Here comes the solution, the IDN.toASCII() returns:
>>> 1. "." for ".";
>>> 2. "xyz" for "xyz.";
>>> 3. IAE for "example..com".
>>>
>>> Does it make sense?
>>>
>>> Thanks,
>>> Xuelei
>>>
>>>
>>> On 8/7/2013 1:35 AM, Michael McMahon wrote:
>>>> I don't really understand the reason for the restriction in SNIHostName
>>>> But, I guess that is where it should be enforced if it is required.
>>>>
>>>> Michael.
>>>>
>>>> On 06/08/13 17:43, Dmitry Samersoff wrote:
>>>>> Xuelei,
>>>>>
>>>>> . (dot) is perfectly valid domain name and it means root domain so com.
>>>>> is valid domain name as well.
>>>>>
>>>>> It thinks to me that in context of methods your change we should ignore
>>>>> trailing dots, rather than throw exception.
>>>>>
>>>>> -Dmitry
>>>>>
>>>>>
>>>>>
>>>>> On 2013-08-06 15:44, Xuelei Fan wrote:
>>>>>> Hi,
>>>>>>
>>>>>> Please review the bug fix to strict the illegal input checking in IDN.
>>>>>>
>>>>>> webrev: http://cr.openjdk.java.net./~xuelei/8020842/webrev.00/
>>>>>>
>>>>>> Here is two test cases, which are expected to get IAE.
>>>>>>
>>>>>> Case 1:
>>>>>> String host = IDN.toASCII(".", IDN.USE_STD3_ASCII_RULES);
>>>>>> Exception in thread "main" java.lang.StringIndexOutOfBoundsException:
>>>>>> String index out of range: 0
>>>>>> at java.lang.StringBuffer.charAt(StringBuffer.java:204)
>>>>>> at java.net.IDN.toASCIIInternal(IDN.java:279)
>>>>>> at java.net.IDN.toASCII(IDN.java:118)
>>>>>>
>>>>>> Case 2:
>>>>>> String host = IDN.toASCII("com.", IDN.USE_STD3_ASCII_RULES);
>>>>>>
>>>>>> Thanks,
>>>>>> Xuelei
>>>>>>
From sean.mullan at oracle.com Wed Aug 7 14:58:00 2013
From: sean.mullan at oracle.com (Sean Mullan)
Date: Wed, 07 Aug 2013 07:58:00 -0700
Subject: [8] Request for Review: 8022461: Fix lint warnings in
sun.security.{provider, rsa, x509}
In-Reply-To: <52018AEC.9060305@oracle.com>
References: <52018AEC.9060305@oracle.com>
Message-ID: <52026078.1050108@oracle.com>
AlgIdDSA:
- you can remove the comment on line 99:
// XXX deprecated for general use
since @Deprecated is self-explanatory.
--Sean
On 08/06/2013 04:46 PM, Jason Uh wrote:
> Joe, Sean,
>
> Could I please get a review of this changeset? This change fixes
> deprecation warnings in:
> sun.security.provider
> sun.security.rsa
> sun.security.x509
>
> In sun.security.provider and sun.security.rsa, I change the use of
> sun.security.x509.X509Key's key bytes to the BitArray form of the key.
>
> Webrev: http://cr.openjdk.java.net/~juh/8022461/webrev.00/
>
> Thanks,
> Jason
From dmitry.samersoff at oracle.com Wed Aug 7 14:56:29 2013
From: dmitry.samersoff at oracle.com (Dmitry Samersoff)
Date: Wed, 07 Aug 2013 18:56:29 +0400
Subject: Code review request: 8016594: Native Windows ccache still reads
DES tickets
In-Reply-To: <52024BFD.1070703@oracle.com>
References: <51E3D6B8.5000907@oracle.com> <52021207.80507@oracle.com>
<52022852.7090203@oracle.com> <5202301B.2070603@oracle.com>
<52023542.9090109@oracle.com> <520246F9.3080705@oracle.com>
<52024BFD.1070703@oracle.com>
Message-ID: <5202601D.8030106@oracle.com>
OK for me too.
-Dmitry
On 2013-08-07 17:30, Weijun Wang wrote:
> First, thanks for your feedbacks.
>
> I only intended to fix etypes in this bug and since I don't have a lot
> of experience on native kerberos on Mac (it is the Heimdal impl instead
> of MIT's) I didn't want to touch a lot.
>
> Precisely, comparing only "krbtgt" is not enough. When doing cross-realm
> auth from R1 to R2, it's likely to have "krbtgt/R2 at R1" in ccache and it
> should not used as initial TGT.
>
> Shall we fix this in another bug when I (or QE) are more familiar with
> native krb5 on Mac?
>
> Thanks
> Max
>
> On 8/7/13 9:09 PM, Xuelei Fan wrote:
>> On 8/7/2013 7:53 PM, Dmitry Samersoff wrote:
>>> Xuelei,
>>>
>>> 1. strncmp calls strlen at first, so explicit call to strlen is not
>>> necessary.
>>>
>> I was wondering to make the comparing when the length of serverName is
>> bigger than strlen("krbtgt"). For example, "krbtgt_extra". Mine
>> suggested code is incorrect, as the output name of krb5_unparse_name may
>> be "krbtgt_extra/h.o.s.t at realm", but not "krbtgt_extra".
>>
>> It's a little problem, but we might want to make the comparing more
>> precisely.
>>
>>> 2. strlen("krbtgt") == sizeof("krbtgt")-1
>>> as sizeof count terminating 0.
>>>
>> You are right.
>>
>> Xuelei
>>
>>> -Dmitry
>>>
>>>
>>> On 2013-08-07 15:31, Xuelei Fan wrote:
>>>> On 8/7/2013 6:58 PM, Weijun Wang wrote:
>>>>>
>>>>>
>>>>> On 8/7/13 5:23 PM, Dmitry Samersoff wrote:
>>>>>> Weijun,
>>>>>>
>>>>>> nativeccache.c:
>>>>>>
>>>>>> 322: Could you change strlen("krbtgt") to sizeof("krbtgt")-1 to
>>>>>> save a
>>>>>> bit of computer power?
>>>>>
>>>>> Sure.
>>>>
>>>> strncmp() is normally work with strlen() while comparing two
>>>> strings, in
>>>> case the length of the two string are not equal.
>>>>
>>>> - 322 if (strncmp (serverName, "krbtgt", strlen("krbtgt")) == 0 &&
>>>> + 322 if (strlen(serverName) == sizeof("krbtgt") &&
>>>> + strncmp (serverName, "krbtgt", sizeof("krbtgt")) == 0 &&
>>>>
>>>> BTW, as it is a local function, would you like to add a "static"
>>>> keyword
>>>> to isIn() function?
>>>>
>>>> Xuelei
>>>>
>>>
>>>
>>
--
Dmitry Samersoff
Oracle Java development team, Saint Petersburg, Russia
* I would love to change the world, but they won't give me the sources.
From xuelei.fan at oracle.com Wed Aug 7 15:17:05 2013
From: xuelei.fan at oracle.com (Xuelei Fan)
Date: Wed, 07 Aug 2013 23:17:05 +0800
Subject: Code review request, 8020842 IDN do not throw IAE when hostname
ends with a trailing dot
In-Reply-To: <52025726.8060203@oracle.com>
References: <5200E1B9.7070002@oracle.com> <520127A3.3060405@oracle.com>
<520133C7.20401@oracle.com> <5202411F.2010706@oracle.com>
<52025434.8070200@oracle.com> <5202561A.5040908@oracle.com>
<52025726.8060203@oracle.com>
Message-ID: <520264F1.1090802@oracle.com>
Please review the new update:
http://cr.openjdk.java.net./~xuelei/8020842/webrev.01/
With this update, "com." is valid (return "com."); "." and
"example..com" are invalid. And IAE will be thrown for invalid IDN.
Thanks,
Xuelei
On 8/7/2013 10:18 PM, Michael McMahon wrote:
> On 07/08/13 15:13, Xuelei Fan wrote:
>> On 8/7/2013 10:05 PM, Michael McMahon wrote:
>>> Resolvers seem to accept queries using trailing dots.
>>>
>>> eg nslookup www.oracle.com.
>>>
>>> or InetAddress.getByName("www.oracle.com.");
>>>
>>> The part of RFC3490 quoted below seems to me to be saying
>>> that the empty label implied by the trailing dot is not regarded
>>> as a label so that you don't end up calling toAscii() or toUnicode()
>>> with an empty string. I don't think it's saying the trailing dot can't
>>> be there.
>>>
>> It makes sense.
>>
>> What's your preference to return for IDN.toASCII("www.oracle.com."),
>> "www.oracle.com." or "www.oracle.com"? The current returned value is
>> "www.oracle.com". I would like to reserve the behavior in this update.
>
> My opinion is to keep it as at present ie. "www.oracle.com."
>
> Michael
>
>> I think we are on same page soon.
>>
>> Thanks,
>> Xuelei
>>
>>> Michael
>>>
>>> On 07/08/13 13:44, Xuelei Fan wrote:
>>>> On 8/7/2013 12:06 AM, Matthew Hall wrote:
>>>>> Trailing dots are allowed in plain DNS (thus almost surely in IDN),
>>>>> and the single dot represents the root zone. So you have to be
>>>>> careful making this sort of change to check the DNS RFCs first.
>>>> That's the first question we need to answer, whether IDN allow tailling
>>>> dots ("com."), zero-length root label ("."), and zero-length label ("",
>>>> for example ""example..com")?
>>>>
>>>> Per the specification of IDN.toASCII():
>>>> =======================================
>>>> "ToASCII operation can fail. ToASCII fails if any step of it fails. If
>>>> ToASCII operation fails, an IllegalArgumentException will be thrown. In
>>>> this case, the input string should not be used in an internationalized
>>>> domain name.
>>>>
>>>> A label is an individual part of a domain name. The original ToASCII
>>>> operation, as defined in RFC 3490, only operates on a single label.
>>>> This
>>>> method can handle both label and entire domain name, by assuming that
>>>> labels in a domain name are always separated by dots. ...
>>>>
>>>> Throws IllegalArgumentException - if the input string doesn't
>>>> conform to
>>>> RFC 3490 specification"
>>>>
>>>> Per the specification of RFC 3490:
>>>> ==================================
>>>> [section 2]
>>>> "A label is an individual part of a domain name. Labels are usually
>>>> shown separated by dots; for example, the domain name
>>>> "www.example.com" is composed of three labels: "www", "example", and
>>>> "com". (The zero-length root label described in [STD13], which can
>>>> be explicit as in "www.example.com." or implicit as in
>>>> "www.example.com", is not considered a label in this
>>>> specification.)"
>>>>
>>>> "An "internationalized label" is a label to which the ToASCII
>>>> operation (see section 4) can be applied without failing (with the
>>>> UseSTD3ASCIIRules flag unset). ...
>>>> Although most Unicode characters can appear in
>>>> internationalized labels, ToASCII will fail for some input strings,
>>>> and such strings are not valid internationalized labels."
>>>>
>>>> "An "internationalized domain name" (IDN) is a domain name in which
>>>> every label is an internationalized label."
>>>>
>>>> [Section 4.1]
>>>> "ToASCII consists of the following steps:
>>>>
>>>> ...
>>>>
>>>> 8. Verify that the number of code points is in the range 1 to 63
>>>> inclusive."
>>>>
>>>>
>>>> Here are the questions:
>>>> 1. whether "example..com" is an valid IDN?
>>>> As dot is used as label separators, there are three labels,
>>>> "example", "", "com". Per RFC 3490, "" is not a valid label. Hence,
>>>> "example..com" is not a valid IDN.
>>>>
>>>> We need to address the issue in IDN.
>>>>
>>>> 2. whether "xyz." is an valid IDN?
>>>> It's an gray area, I think. We can treat the trailing "." as root
>>>> label, or a label separator.
>>>> If the trailing "." is treated as label separator, "xyz." is
>>>> invalid
>>>> per RFC 3490.
>>>> if the trailing "." is treated as root label, what's the expected
>>>> return value of IDN.toASCII("xyz.")? I think the return value can be
>>>> either "xyz." or "xyz". The current implementation returns "xyz".
>>>>
>>>> We may need not to update the implementation if tailing "." is
>>>> treated as root label.
>>>>
>>>> 3. whether "." is an valid IDN?
>>>> It's an gray area again, I think.
>>>> As above, if the trailing "." is treated as root label, I think
>>>> the
>>>> return value can be either "." or "". The current implementation
>>>> throws
>>>> a StringIndexOutOfBoundsException.
>>>>
>>>> However, what empty domain name ("") really means? I would
>>>> prefer to
>>>> return "." for "." instead.
>>>>
>>>> We need to address the issue in IDN.
>>>>
>>>>
>>>> Here comes the solution, the IDN.toASCII() returns:
>>>> 1. "." for ".";
>>>> 2. "xyz" for "xyz.";
>>>> 3. IAE for "example..com".
>>>>
>>>> Does it make sense?
>>>>
>>>> Thanks,
>>>> Xuelei
>>>>
>>>>
>>>> On 8/7/2013 1:35 AM, Michael McMahon wrote:
>>>>> I don't really understand the reason for the restriction in
>>>>> SNIHostName
>>>>> But, I guess that is where it should be enforced if it is required.
>>>>>
>>>>> Michael.
>>>>>
>>>>> On 06/08/13 17:43, Dmitry Samersoff wrote:
>>>>>> Xuelei,
>>>>>>
>>>>>> . (dot) is perfectly valid domain name and it means root domain so
>>>>>> com.
>>>>>> is valid domain name as well.
>>>>>>
>>>>>> It thinks to me that in context of methods your change we should
>>>>>> ignore
>>>>>> trailing dots, rather than throw exception.
>>>>>>
>>>>>> -Dmitry
>>>>>>
>>>>>>
>>>>>>
>>>>>> On 2013-08-06 15:44, Xuelei Fan wrote:
>>>>>>> Hi,
>>>>>>>
>>>>>>> Please review the bug fix to strict the illegal input checking in
>>>>>>> IDN.
>>>>>>>
>>>>>>> webrev: http://cr.openjdk.java.net./~xuelei/8020842/webrev.00/
>>>>>>>
>>>>>>> Here is two test cases, which are expected to get IAE.
>>>>>>>
>>>>>>> Case 1:
>>>>>>> String host = IDN.toASCII(".", IDN.USE_STD3_ASCII_RULES);
>>>>>>> Exception in thread "main"
>>>>>>> java.lang.StringIndexOutOfBoundsException:
>>>>>>> String index out of range: 0
>>>>>>> at java.lang.StringBuffer.charAt(StringBuffer.java:204)
>>>>>>> at java.net.IDN.toASCIIInternal(IDN.java:279)
>>>>>>> at java.net.IDN.toASCII(IDN.java:118)
>>>>>>>
>>>>>>> Case 2:
>>>>>>> String host = IDN.toASCII("com.", IDN.USE_STD3_ASCII_RULES);
>>>>>>>
>>>>>>> Thanks,
>>>>>>> Xuelei
>>>>>>>
>
From sean.mullan at oracle.com Wed Aug 7 16:08:02 2013
From: sean.mullan at oracle.com (Sean Mullan)
Date: Wed, 07 Aug 2013 09:08:02 -0700
Subject: [8] Request for review: 8016848: javax_security/auth/login tests
fail in compact 1 and 2 profiles
In-Reply-To: <5200BA5D.4010606@oracle.com>
References: <51FA9166.7010809@oracle.com> <5200BA5D.4010606@oracle.com>
Message-ID: <520270E2.8040106@oracle.com>
On 08/06/2013 01:57 AM, Xuelei Fan wrote:
> The fix looks fine.
>
> BTW, I think the relationship between
> javax.security.auth.login.Configuration and
> javax.security.auth.login.ConfigurationSpi is not that instinctive in
> the implementation. For example, the impl of
> Configuration.getAppConfigurationEntry() should be able to use the impl
> of ConfigurationSpi.engineGetAppConfigurationEntry(). And the provider
> should only need to extend ConfigurationSpi rather than the
> Configuration class. It would be nice to re-factoring the code if no
> other concerns.
I'm not sure I understand the refactoring that you are suggesting, could
you give an example? Also, ConfigurationSpi was added in JDK 1.6 after
Configuration had already been added since 1.4. So we still need to
preserve compatibility with implementations that extend from Configuration.
--Sean
>
> Xuelei
>
> On 8/2/2013 12:48 AM, Sean Mullan wrote:
>> Hello,
>>
>> Could you please review my fix for 8016848:
>>
>> webrev: http://cr.openjdk.java.net/~mullan/webrevs/8016848/webrev.00/
>>
>> bug: http://bugs.sun.com/bugdatabase/view_bug.do?bug_id=8016848
>>
>> This is a bug because
>> javax.security.auth.login.Configuration.getConfiguration() throws a
>> ClassCastException when run with the compact1 or compact2 profiles.
>>
>> This is because the default Configuration object that is returned is not
>> in the compact1 profile. The default Configuration is specified by the
>> "login.configuration.provider" security property (in the Java security
>> properties file). This property is currently set to
>> com.sun.security.auth.login.ConfigFile which is not in the compact1 or
>> compact2 profiles
>>
>> The fix is to change the default value of the
>> "login.configuration.provider" security property to
>> sun.security.provider.ConfigFile, which will be a new class that is
>> essentially a copy of com.sun.security.auth.login.ConfigFile. However,
>> because it is in the sun.security.provider package, it will be in all
>> profiles. We will not remove the com.sun.security.auth.login.ConfigFile
>> class as there may be some applications directly using it.
>>
>> noreg-jck as there is an existing JCK test for this.
>>
>> Thanks,
>> Sean
>
From mhall at mhcomputing.net Wed Aug 7 16:32:38 2013
From: mhall at mhcomputing.net (Matthew Hall)
Date: Wed, 7 Aug 2013 09:32:38 -0700
Subject: There should be a way to reorder the JSSE ciphers
In-Reply-To: <5201F4AA.2090606@oracle.com>
References: <5200572D.7050602@oracle.com>
<5201B05F.5050204@oracle.com>
<20130807060946.GA12277@mhcomputing.net>
<20130807065730.GB12502@mhcomputing.net>
<5201F4AA.2090606@oracle.com>
Message-ID: <20130807163238.GA14776@mhcomputing.net>
On Wed, Aug 07, 2013 at 03:18:02PM +0800, Xuelei Fan wrote:
> hard-coded? I did not catch the idea. It was proposed to define a new
> method:
>
> SSLParameters.setUseCipherSuitesOrder(boolean on);
>
> I was considering to use enum as Sean suggested. Both String and
> integer is not accept to me because they are pretty easy to get used
> incorrectly.
What happens when another kind of flag is needed, such as
UseClientSniExtension, or who knows what other thing?
This Boolean approach doesn't allow introducing new flags when experimenting
or trying to support new RFCs. That's all we are saying when calling this
hard-coded.
Matthew.
From joe.darcy at oracle.com Wed Aug 7 16:39:59 2013
From: joe.darcy at oracle.com (joe.darcy at oracle.com)
Date: Wed, 07 Aug 2013 16:39:59 +0000
Subject: hg: jdk8/tl/jdk: 8022454: Fixed various serializations and
deprecation warnings in java.util, java.net and sun.tools
Message-ID: <20130807164058.5468948686@hg.openjdk.java.net>
Changeset: c1f129f62f36
Author: lagergren
Date: 2013-08-07 08:08 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/c1f129f62f36
8022454: Fixed various serializations and deprecation warnings in java.util, java.net and sun.tools
Reviewed-by: darcy
Contributed-by: marcus.lagergren at oracle.com
! src/share/classes/java/net/SocketAddress.java
! src/share/classes/java/util/logging/XMLFormatter.java
! src/share/classes/sun/tools/jar/JarException.java
From dan.xu at oracle.com Wed Aug 7 19:13:55 2013
From: dan.xu at oracle.com (dan.xu at oracle.com)
Date: Wed, 07 Aug 2013 19:13:55 +0000
Subject: hg: jdk8/tl/jdk: 8022554: Fix Warnings in sun.invoke.anon Package
Message-ID: <20130807191425.1EC9648690@hg.openjdk.java.net>
Changeset: d1c82d5bee3f
Author: dxu
Date: 2013-08-07 12:13 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/d1c82d5bee3f
8022554: Fix Warnings in sun.invoke.anon Package
Reviewed-by: darcy, mduigou, lancea
! src/share/classes/sun/invoke/anon/ConstantPoolPatch.java
From valerie.peng at oracle.com Wed Aug 7 20:27:44 2013
From: valerie.peng at oracle.com (Valerie (Yu-Ching) Peng)
Date: Wed, 07 Aug 2013 13:27:44 -0700
Subject: [8] Request for review: 8016848: javax_security/auth/login tests
fail in compact 1 and 2 profiles
In-Reply-To: <520270E2.8040106@oracle.com>
References: <51FA9166.7010809@oracle.com> <5200BA5D.4010606@oracle.com>
<520270E2.8040106@oracle.com>
Message-ID: <5202ADC0.5090600@oracle.com>
Sounds like Xuelie is referring to the general model between the XXX and
XXXSpi classes, i.e. XXX is the public class which encapsulate XXXSpi
(the underlying engine class that service providers implement). For
example, javax.crypto.Cipher and javax.crypto.CipherSpi is one example.
But I recall there are some classes which do not completely follow the
model such as java.security.MessageDigest.
Valerie
On 08/07/13 09:08, Sean Mullan wrote:
> On 08/06/2013 01:57 AM, Xuelei Fan wrote:
>> The fix looks fine.
>>
>> BTW, I think the relationship between
>> javax.security.auth.login.Configuration and
>> javax.security.auth.login.ConfigurationSpi is not that instinctive in
>> the implementation. For example, the impl of
>> Configuration.getAppConfigurationEntry() should be able to use the impl
>> of ConfigurationSpi.engineGetAppConfigurationEntry(). And the provider
>> should only need to extend ConfigurationSpi rather than the
>> Configuration class. It would be nice to re-factoring the code if no
>> other concerns.
>
> I'm not sure I understand the refactoring that you are suggesting,
> could you give an example? Also, ConfigurationSpi was added in JDK 1.6
> after Configuration had already been added since 1.4. So we still need
> to preserve compatibility with implementations that extend from
> Configuration.
>
> --Sean
>
>>
>> Xuelei
>>
>> On 8/2/2013 12:48 AM, Sean Mullan wrote:
>>> Hello,
>>>
>>> Could you please review my fix for 8016848:
>>>
>>> webrev: http://cr.openjdk.java.net/~mullan/webrevs/8016848/webrev.00/
>>>
>>> bug: http://bugs.sun.com/bugdatabase/view_bug.do?bug_id=8016848
>>>
>>> This is a bug because
>>> javax.security.auth.login.Configuration.getConfiguration() throws a
>>> ClassCastException when run with the compact1 or compact2 profiles.
>>>
>>> This is because the default Configuration object that is returned is
>>> not
>>> in the compact1 profile. The default Configuration is specified by the
>>> "login.configuration.provider" security property (in the Java security
>>> properties file). This property is currently set to
>>> com.sun.security.auth.login.ConfigFile which is not in the compact1 or
>>> compact2 profiles
>>>
>>> The fix is to change the default value of the
>>> "login.configuration.provider" security property to
>>> sun.security.provider.ConfigFile, which will be a new class that is
>>> essentially a copy of com.sun.security.auth.login.ConfigFile. However,
>>> because it is in the sun.security.provider package, it will be in all
>>> profiles. We will not remove the com.sun.security.auth.login.ConfigFile
>>> class as there may be some applications directly using it.
>>>
>>> noreg-jck as there is an existing JCK test for this.
>>>
>>> Thanks,
>>> Sean
>>
>
From mhall at mhcomputing.net Wed Aug 7 20:33:05 2013
From: mhall at mhcomputing.net (Matthew Hall)
Date: Wed, 7 Aug 2013 13:33:05 -0700
Subject: [8] Request for review: 8016848: javax_security/auth/login tests
fail in compact 1 and 2 profiles
In-Reply-To: <5202ADC0.5090600@oracle.com>
References: <51FA9166.7010809@oracle.com> <5200BA5D.4010606@oracle.com>
<520270E2.8040106@oracle.com> <5202ADC0.5090600@oracle.com>
Message-ID: <20130807203305.GB15972@mhcomputing.net>
On Wed, Aug 07, 2013 at 01:27:44PM -0700, Valerie (Yu-Ching) Peng wrote:
> But I recall there are some classes which do not completely follow the model
> such as java.security.MessageDigest.
>
> Valerie
To be clear, just because some such classes exist doesn't mean we should make
more of them, they are kind of problematic if they don't use the SPI pattern
the right way... ;-)
Matthew.
From valerie.peng at oracle.com Wed Aug 7 20:45:22 2013
From: valerie.peng at oracle.com (Valerie (Yu-Ching) Peng)
Date: Wed, 07 Aug 2013 13:45:22 -0700
Subject: Code review request: 8012615: Realm.getRealmsList returns realms
list in wrong
In-Reply-To: <5201C3CE.4010205@oracle.com>
References: <51F631CE.7080502@oracle.com> <5201C3CE.4010205@oracle.com>
Message-ID: <5202B1E2.9050607@oracle.com>
Was catching up on other tasks, will come back to this today or tomorrow...
Thanks,
Valerie
On 08/06/13 20:49, Weijun Wang wrote:
> Ping again.
>
> On 7/29/13 5:11 PM, Weijun Wang wrote:
>> Hi Valerie
>>
>> Please review the capaths code change at
>>
>> http://cr.openjdk.java.net/~weijun/8012615/webrev.01/
>>
>> It includes:
>>
>> Config.java
>> ===========
>>
>> Add method to check if a sub-stanza exists.
>>
>> Realm.java
>> ==========
>>
>> Rewrite reading cross-realm path for both [capaths] and hierarchy. The
>> [capaths] part implements the chaining process.
>>
>> CredentialsUtils.java
>> =====================
>>
>> When reading cross-realm TGT for a path A->B->C->D->SERVERREALM, the
>> current impl first gets krbtgt/SERVERREALM at A, and then fallback to
>> krbtgt/D at A, krbtgt/C at A and krbtgt/B at A. In fact, since the capath is
>> already there, krbtgt/B at A should be the first to check. I don't know
>> about the history of this code and dare not change much. But I at least
>> reverse the order of the fallback (what the code calls inner loop) to
>> try krbtgt/B at A first.
>>
>> Tried on a local setup of 5 MIT KDC realms configured with a
>> one-direction cross-auth from K1 to K5. The MIT kvno command starts with
>> kinit in K1 and goes thru krbtgt/K2 at K1, krbtgt/K3 at K2, krbtgt/K4 at K3,
>> krbtgt/K5 at K4 and finally get service ticket to host/host.k5 at K5. Now Java
>> can do the same with the same krb5.conf.
>>
>> Thanks
>> Max
From henry.jen at oracle.com Wed Aug 7 00:43:18 2013
From: henry.jen at oracle.com (henry.jen at oracle.com)
Date: Wed, 07 Aug 2013 00:43:18 +0000
Subject: hg: jdk8/tl/jdk: 8022446: Fix serial warnings in java.util.stream
Message-ID: <20130807004332.2400448644@hg.openjdk.java.net>
Changeset: e303c228bf31
Author: henryjen
Date: 2013-08-06 17:42 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/e303c228bf31
8022446: Fix serial warnings in java.util.stream
Reviewed-by: darcy
! src/share/classes/java/util/stream/AbstractShortCircuitTask.java
! src/share/classes/java/util/stream/AbstractTask.java
! src/share/classes/java/util/stream/FindOps.java
! src/share/classes/java/util/stream/ForEachOps.java
! src/share/classes/java/util/stream/MatchOps.java
! src/share/classes/java/util/stream/Nodes.java
! src/share/classes/java/util/stream/ReduceOps.java
! src/share/classes/java/util/stream/SliceOps.java
From jason.uh at oracle.com Wed Aug 7 23:13:12 2013
From: jason.uh at oracle.com (Jason Uh)
Date: Wed, 07 Aug 2013 16:13:12 -0700
Subject: [8] Request for Review: 8022461: Fix lint warnings in
sun.security.{provider, rsa, x509}
In-Reply-To: <5201A346.6010507@oracle.com>
References: <52018AEC.9060305@oracle.com> <52018C1E.8060204@oracle.com>
<5201A346.6010507@oracle.com>
Message-ID: <5202D488.7090800@oracle.com>
On 8/6/13 6:30 PM, Weijun Wang wrote:
> Change looks fine.
>
> Minor issue:
>
> Extra parenthesis in
> src/share/classes/sun/security/rsa/RSAPublicKeyImpl.java:
>
> + byte[] keyArray =
> + (new DerValue(DerValue.tag_Sequence,
> + out.toByteArray())).toByteArray();
Thanks, I've removed the extra parentheses.
> One question:
>
> In src/share/classes/sun/security/x509/X509Key.java, two fields are now
> not recommended:
>
> @Deprecated
> protected byte[] key = null;
>
> /*
> * The number of bits unused in the last byte of the key.
> * Added to keep the byte[] key form consistent with the BitArray
> * form. Can de deleted when byte[] key is deleted.
> */
> private int unusedBits = 0;
>
> I understand that key should be marked @Deprecated because it's
> protected and therefore part of (although private) API, but what about
> unusedBits? Is it better to also mark it @Deprecated?
I see what you mean. But is it OK to mark private members @Deprecated? I
don't know if that violates convention or not. Let me know if you'd like
me to add that, and I'll include it in this change.
Thanks,
Jason
> Thanks
> Max
>
> On 8/7/13 7:51 AM, Joe Darcy wrote:
>> Hi Jason,
>>
>> Looks fine to me, but a security reviewer should approve as well.
>>
>> Thanks,
>>
>> -Joe
>>
>> On 08/06/2013 04:46 PM, Jason Uh wrote:
>>> Joe, Sean,
>>>
>>> Could I please get a review of this changeset? This change fixes
>>> deprecation warnings in:
>>> sun.security.provider
>>> sun.security.rsa
>>> sun.security.x509
>>>
>>> In sun.security.provider and sun.security.rsa, I change the use of
>>> sun.security.x509.X509Key's key bytes to the BitArray form of the key.
>>>
>>> Webrev: http://cr.openjdk.java.net/~juh/8022461/webrev.00/
>>>
>>> Thanks,
>>> Jason
>>
From bhavesh.x.patel at oracle.com Wed Aug 7 22:01:33 2013
From: bhavesh.x.patel at oracle.com (bhavesh.x.patel at oracle.com)
Date: Wed, 07 Aug 2013 22:01:33 +0000
Subject: hg: jdk8/tl/langtools: 7198274: RFE : Javadoc Accessibility : Use CSS
styles rather than or tags
Message-ID: <20130807220139.563DB486A5@hg.openjdk.java.net>
Changeset: 8c55df2442c1
Author: bpatel
Date: 2013-08-07 15:00 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/8c55df2442c1
7198274: RFE : Javadoc Accessibility : Use CSS styles rather than or tags
Reviewed-by: jjg
! src/share/classes/com/sun/tools/doclets/formats/html/AbstractExecutableMemberWriter.java
! src/share/classes/com/sun/tools/doclets/formats/html/AnnotationTypeRequiredMemberWriterImpl.java
! src/share/classes/com/sun/tools/doclets/formats/html/AnnotationTypeWriterImpl.java
! src/share/classes/com/sun/tools/doclets/formats/html/ClassWriterImpl.java
! src/share/classes/com/sun/tools/doclets/formats/html/EnumConstantWriterImpl.java
! src/share/classes/com/sun/tools/doclets/formats/html/FieldWriterImpl.java
! src/share/classes/com/sun/tools/doclets/formats/html/HtmlDocletWriter.java
! src/share/classes/com/sun/tools/doclets/formats/html/MethodWriterImpl.java
! src/share/classes/com/sun/tools/doclets/formats/html/NestedClassWriterImpl.java
! src/share/classes/com/sun/tools/doclets/formats/html/PackageFrameWriter.java
! src/share/classes/com/sun/tools/doclets/formats/html/ProfilePackageFrameWriter.java
! src/share/classes/com/sun/tools/doclets/formats/html/PropertyWriterImpl.java
! src/share/classes/com/sun/tools/doclets/formats/html/SubWriterHolderWriter.java
! src/share/classes/com/sun/tools/doclets/formats/html/TagletWriterImpl.java
! src/share/classes/com/sun/tools/doclets/formats/html/markup/HtmlStyle.java
! src/share/classes/com/sun/tools/doclets/formats/html/markup/HtmlTree.java
! src/share/classes/com/sun/tools/doclets/internal/toolkit/resources/stylesheet.css
! test/com/sun/javadoc/testClassCrossReferences/TestClassCrossReferences.java
! test/com/sun/javadoc/testExternalOverridenMethod/TestExternalOverridenMethod.java
! test/com/sun/javadoc/testHtmlDefinitionListTag/TestHtmlDefinitionListTag.java
! test/com/sun/javadoc/testInterface/TestInterface.java
! test/com/sun/javadoc/testJavaFX/TestJavaFX.java
! test/com/sun/javadoc/testMemberInheritence/TestMemberInheritence.java
! test/com/sun/javadoc/testMemberSummary/TestMemberSummary.java
! test/com/sun/javadoc/testNewLanguageFeatures/TestNewLanguageFeatures.java
! test/com/sun/javadoc/testOverridenMethods/TestOverridenMethodDocCopy.java
! test/com/sun/javadoc/testOverridenMethods/TestOverridenPrivateMethods.java
! test/com/sun/javadoc/testOverridenMethods/TestOverridenPrivateMethodsWithPackageFlag.java
! test/com/sun/javadoc/testOverridenMethods/TestOverridenPrivateMethodsWithPrivateFlag.java
! test/com/sun/javadoc/testPackageDeprecation/TestPackageDeprecation.java
! test/com/sun/javadoc/testPrivateClasses/TestPrivateClasses.java
! test/com/sun/javadoc/testSerializedFormDeprecationInfo/TestSerializedFormDeprecationInfo.java
From bhavesh.x.patel at oracle.com Wed Aug 7 23:09:51 2013
From: bhavesh.x.patel at oracle.com (bhavesh.x.patel at oracle.com)
Date: Wed, 07 Aug 2013 23:09:51 +0000
Subject: hg: jdk8/tl/langtools: 4749567: stddoclet: Add CSS style for setting
header/footer to be italic
Message-ID: <20130807230956.4B163486AA@hg.openjdk.java.net>
Changeset: 33294f02c9a5
Author: bpatel
Date: 2013-08-07 16:09 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/33294f02c9a5
4749567: stddoclet: Add CSS style for setting header/footer to be italic
Reviewed-by: jjg
! src/share/classes/com/sun/tools/doclets/formats/html/HelpWriter.java
! src/share/classes/com/sun/tools/doclets/formats/html/HtmlDocletWriter.java
! src/share/classes/com/sun/tools/doclets/formats/html/markup/HtmlTree.java
! src/share/classes/com/sun/tools/doclets/internal/toolkit/resources/stylesheet.css
+ test/com/sun/javadoc/testOptions/TestOptions.java
+ test/com/sun/javadoc/testOptions/pkg/Foo.java
From xuelei.fan at oracle.com Wed Aug 7 23:25:00 2013
From: xuelei.fan at oracle.com (Xuelei Fan)
Date: Thu, 08 Aug 2013 07:25:00 +0800
Subject: [8] Request for review: 8016848: javax_security/auth/login tests
fail in compact 1 and 2 profiles
In-Reply-To: <5202ADC0.5090600@oracle.com>
References: <51FA9166.7010809@oracle.com> <5200BA5D.4010606@oracle.com>
<520270E2.8040106@oracle.com> <5202ADC0.5090600@oracle.com>
Message-ID: <5202D74C.5080900@oracle.com>
On 8/8/2013 4:27 AM, Valerie (Yu-Ching) Peng wrote:
> Sounds like Xuelie is referring to the general model between the XXX and
> XXXSpi classes, i.e. XXX is the public class which encapsulate XXXSpi
> (the underlying engine class that service providers implement). For
> example, javax.crypto.Cipher and javax.crypto.CipherSpi is one example.
Yes. Using SPI model can simplify the implementation.
> But I recall there are some classes which do not completely follow the
> model such as java.security.MessageDigest.
>
Yes again. I also find some others that does defined as SPI, but the
implementation does not follow the model. Maybe just as Sean said, the
SPI mode is introduced later, and we need to consider compatibility
issue. As in this update, we are trying to update the default
implementation, it should be a chance to update the implementation to
follow the model of SPI. It should be safe as the update only impact
implementations.
Xuelei
> Valerie
>
> On 08/07/13 09:08, Sean Mullan wrote:
>> On 08/06/2013 01:57 AM, Xuelei Fan wrote:
>>> The fix looks fine.
>>>
>>> BTW, I think the relationship between
>>> javax.security.auth.login.Configuration and
>>> javax.security.auth.login.ConfigurationSpi is not that instinctive in
>>> the implementation. For example, the impl of
>>> Configuration.getAppConfigurationEntry() should be able to use the impl
>>> of ConfigurationSpi.engineGetAppConfigurationEntry(). And the provider
>>> should only need to extend ConfigurationSpi rather than the
>>> Configuration class. It would be nice to re-factoring the code if no
>>> other concerns.
>>
>> I'm not sure I understand the refactoring that you are suggesting,
>> could you give an example? Also, ConfigurationSpi was added in JDK 1.6
>> after Configuration had already been added since 1.4. So we still need
>> to preserve compatibility with implementations that extend from
>> Configuration.
>>
>> --Sean
>>
>>>
>>> Xuelei
>>>
>>> On 8/2/2013 12:48 AM, Sean Mullan wrote:
>>>> Hello,
>>>>
>>>> Could you please review my fix for 8016848:
>>>>
>>>> webrev: http://cr.openjdk.java.net/~mullan/webrevs/8016848/webrev.00/
>>>>
>>>> bug: http://bugs.sun.com/bugdatabase/view_bug.do?bug_id=8016848
>>>>
>>>> This is a bug because
>>>> javax.security.auth.login.Configuration.getConfiguration() throws a
>>>> ClassCastException when run with the compact1 or compact2 profiles.
>>>>
>>>> This is because the default Configuration object that is returned is
>>>> not
>>>> in the compact1 profile. The default Configuration is specified by the
>>>> "login.configuration.provider" security property (in the Java security
>>>> properties file). This property is currently set to
>>>> com.sun.security.auth.login.ConfigFile which is not in the compact1 or
>>>> compact2 profiles
>>>>
>>>> The fix is to change the default value of the
>>>> "login.configuration.provider" security property to
>>>> sun.security.provider.ConfigFile, which will be a new class that is
>>>> essentially a copy of com.sun.security.auth.login.ConfigFile. However,
>>>> because it is in the sun.security.provider package, it will be in all
>>>> profiles. We will not remove the com.sun.security.auth.login.ConfigFile
>>>> class as there may be some applications directly using it.
>>>>
>>>> noreg-jck as there is an existing JCK test for this.
>>>>
>>>> Thanks,
>>>> Sean
>>>
>>
>
From weijun.wang at oracle.com Wed Aug 7 23:49:14 2013
From: weijun.wang at oracle.com (Weijun Wang)
Date: Thu, 08 Aug 2013 07:49:14 +0800
Subject: [8] Request for Review: 8022461: Fix lint warnings in
sun.security.{provider, rsa, x509}
In-Reply-To: <5202D488.7090800@oracle.com>
References: <52018AEC.9060305@oracle.com> <52018C1E.8060204@oracle.com>
<5201A346.6010507@oracle.com> <5202D488.7090800@oracle.com>
Message-ID: <5202DCFA.1080501@oracle.com>
On 8/8/13 7:13 AM, Jason Uh wrote:
> On 8/6/13 6:30 PM, Weijun Wang wrote:
>> One question:
>>
>> In src/share/classes/sun/security/x509/X509Key.java, two fields are now
>> not recommended:
>>
>> @Deprecated
>> protected byte[] key = null;
>>
>> /*
>> * The number of bits unused in the last byte of the key.
>> * Added to keep the byte[] key form consistent with the BitArray
>> * form. Can de deleted when byte[] key is deleted.
>> */
>> private int unusedBits = 0;
>>
>> I understand that key should be marked @Deprecated because it's
>> protected and therefore part of (although private) API, but what about
>> unusedBits? Is it better to also mark it @Deprecated?
>
> I see what you mean. But is it OK to mark private members @Deprecated? I
> don't know if that violates convention or not. Let me know if you'd like
> me to add that, and I'll include it in this change.
According to JLS [1], there is no restriction on the scope of the method
when applying @Deprecated. I think the reason we seldom see @Deprecated
on a private field/method is that we can just remove it without
affecting other classes, but in this case, the getArray() method shows
it's not very simple.
I suggest you add it.
Thanks
Max
[1] http://docs.oracle.com/javase/specs/jls/se7/html/jls-9.html#jls-9.6.3.6
>
> Thanks,
> Jason
>
>> Thanks
>> Max
>>
>> On 8/7/13 7:51 AM, Joe Darcy wrote:
>>> Hi Jason,
>>>
>>> Looks fine to me, but a security reviewer should approve as well.
>>>
>>> Thanks,
>>>
>>> -Joe
>>>
>>> On 08/06/2013 04:46 PM, Jason Uh wrote:
>>>> Joe, Sean,
>>>>
>>>> Could I please get a review of this changeset? This change fixes
>>>> deprecation warnings in:
>>>> sun.security.provider
>>>> sun.security.rsa
>>>> sun.security.x509
>>>>
>>>> In sun.security.provider and sun.security.rsa, I change the use of
>>>> sun.security.x509.X509Key's key bytes to the BitArray form of the key.
>>>>
>>>> Webrev: http://cr.openjdk.java.net/~juh/8022461/webrev.00/
>>>>
>>>> Thanks,
>>>> Jason
>>>
>
From stuart.marks at oracle.com Wed Aug 7 23:25:51 2013
From: stuart.marks at oracle.com (stuart.marks at oracle.com)
Date: Wed, 07 Aug 2013 23:25:51 +0000
Subject: hg: jdk8/tl/jdk: 8022479: clean up warnings from sun.tools.asm
Message-ID: <20130807232621.8D617486AD@hg.openjdk.java.net>
Changeset: 8c50c27418d3
Author: smarks
Date: 2013-08-07 16:29 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/8c50c27418d3
8022479: clean up warnings from sun.tools.asm
Reviewed-by: lancea, darcy
! src/share/classes/sun/tools/asm/Assembler.java
! src/share/classes/sun/tools/asm/ConstantPool.java
! src/share/classes/sun/tools/asm/Instruction.java
! src/share/classes/sun/tools/asm/SwitchData.java
! src/share/classes/sun/tools/asm/TryData.java
From masayoshi.okutsu at oracle.com Thu Aug 8 04:52:43 2013
From: masayoshi.okutsu at oracle.com (masayoshi.okutsu at oracle.com)
Date: Thu, 08 Aug 2013 04:52:43 +0000
Subject: hg: jdk8/tl/jdk: 8015986: Incorrect Localization of HijrahChronology
Message-ID: <20130808045318.043F3486C2@hg.openjdk.java.net>
Changeset: 0beaa65c90c8
Author: okutsu
Date: 2013-08-08 13:51 +0900
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/0beaa65c90c8
8015986: Incorrect Localization of HijrahChronology
Reviewed-by: naoto
Contributed-by: scolebourne at joda.org, roger.riggs at oracle.com
! make/tools/src/build/tools/cldrconverter/CLDRConverter.java
! make/tools/src/build/tools/cldrconverter/CalendarType.java
! src/share/classes/sun/text/resources/FormatData.java
! src/share/classes/sun/text/resources/ar/FormatData_ar.java
! test/java/time/test/java/time/format/TestNonIsoFormatter.java
From alexey.utkin at oracle.com Thu Aug 8 05:19:00 2013
From: alexey.utkin at oracle.com (alexey.utkin at oracle.com)
Date: Thu, 08 Aug 2013 05:19:00 +0000
Subject: hg: jdk8/tl/jdk: 7147084: (process) appA hangs when read output
stream of appB which starts appC that runs forever
Message-ID: <20130808051923.3FFD6486C5@hg.openjdk.java.net>
Changeset: 2c4f1081a0fa
Author: uta
Date: 2013-08-08 09:16 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/2c4f1081a0fa
7147084: (process) appA hangs when read output stream of appB which starts appC that runs forever
Reviewed-by: alanb, robm, martin
! src/windows/classes/java/lang/ProcessImpl.java
! src/windows/native/java/lang/ProcessImpl_md.c
+ test/java/lang/ProcessBuilder/InheritIOEHandle.java
+ test/java/lang/ProcessBuilder/SiblingIOEHandle.java
From weijun.wang at oracle.com Thu Aug 8 10:09:01 2013
From: weijun.wang at oracle.com (Weijun Wang)
Date: Thu, 08 Aug 2013 18:09:01 +0800
Subject: Code review request: 8016594: Native Windows ccache still reads
DES tickets
In-Reply-To: <52024C88.5080609@oracle.com>
References: <51E3D6B8.5000907@oracle.com> <52021207.80507@oracle.com>
<52022852.7090203@oracle.com> <5202301B.2070603@oracle.com>
<52023542.9090109@oracle.com> <520246F9.3080705@oracle.com>
<52024BFD.1070703@oracle.com> <52024C88.5080609@oracle.com>
Message-ID: <52036E3D.8040605@oracle.com>
Can I consider the fix reviewed and it's fine?
Thanks
Max
On 8/7/13 9:32 PM, Xuelei Fan wrote:
> On 8/7/2013 9:30 PM, Weijun Wang wrote:
>> First, thanks for your feedbacks.
>>
>> I only intended to fix etypes in this bug and since I don't have a lot
>> of experience on native kerberos on Mac (it is the Heimdal impl instead
>> of MIT's) I didn't want to touch a lot.
>>
>> Precisely, comparing only "krbtgt" is not enough. When doing cross-realm
>> auth from R1 to R2, it's likely to have "krbtgt/R2 at R1" in ccache and it
>> should not used as initial TGT.
>>
>> Shall we fix this in another bug when I (or QE) are more familiar with
>> native krb5 on Mac?
>>
> OK to me.
>
> Xuelei
>
>> Thanks
>> Max
>>
>> On 8/7/13 9:09 PM, Xuelei Fan wrote:
>>> On 8/7/2013 7:53 PM, Dmitry Samersoff wrote:
>>>> Xuelei,
>>>>
>>>> 1. strncmp calls strlen at first, so explicit call to strlen is not
>>>> necessary.
>>>>
>>> I was wondering to make the comparing when the length of serverName is
>>> bigger than strlen("krbtgt"). For example, "krbtgt_extra". Mine
>>> suggested code is incorrect, as the output name of krb5_unparse_name may
>>> be "krbtgt_extra/h.o.s.t at realm", but not "krbtgt_extra".
>>>
>>> It's a little problem, but we might want to make the comparing more
>>> precisely.
>>>
>>>> 2. strlen("krbtgt") == sizeof("krbtgt")-1
>>>> as sizeof count terminating 0.
>>>>
>>> You are right.
>>>
>>> Xuelei
>>>
>>>> -Dmitry
>>>>
>>>>
>>>> On 2013-08-07 15:31, Xuelei Fan wrote:
>>>>> On 8/7/2013 6:58 PM, Weijun Wang wrote:
>>>>>>
>>>>>>
>>>>>> On 8/7/13 5:23 PM, Dmitry Samersoff wrote:
>>>>>>> Weijun,
>>>>>>>
>>>>>>> nativeccache.c:
>>>>>>>
>>>>>>> 322: Could you change strlen("krbtgt") to sizeof("krbtgt")-1 to
>>>>>>> save a
>>>>>>> bit of computer power?
>>>>>>
>>>>>> Sure.
>>>>>
>>>>> strncmp() is normally work with strlen() while comparing two
>>>>> strings, in
>>>>> case the length of the two string are not equal.
>>>>>
>>>>> - 322 if (strncmp (serverName, "krbtgt", strlen("krbtgt")) == 0 &&
>>>>> + 322 if (strlen(serverName) == sizeof("krbtgt") &&
>>>>> + strncmp (serverName, "krbtgt", sizeof("krbtgt")) == 0 &&
>>>>>
>>>>> BTW, as it is a local function, would you like to add a "static"
>>>>> keyword
>>>>> to isIn() function?
>>>>>
>>>>> Xuelei
>>>>>
>>>>
>>>>
>>>
>
From Xuelei.Fan at Oracle.Com Thu Aug 8 10:54:04 2013
From: Xuelei.Fan at Oracle.Com (Xuelei Fan)
Date: Thu, 8 Aug 2013 18:54:04 +0800
Subject: Code review request: 8016594: Native Windows ccache still reads
DES tickets
In-Reply-To: <52036E3D.8040605@oracle.com>
References: <51E3D6B8.5000907@oracle.com> <52021207.80507@oracle.com>
<52022852.7090203@oracle.com> <5202301B.2070603@oracle.com>
<52023542.9090109@oracle.com> <520246F9.3080705@oracle.com>
<52024BFD.1070703@oracle.com> <52024C88.5080609@oracle.com>
<52036E3D.8040605@oracle.com>
Message-ID: <0E522DCB-039E-47DF-8C09-07310F12F50C@Oracle.Com>
Fine to go to me if you considered Dimitry's comments.
Xuelei
On Aug 8, 2013, at 18:09, Weijun Wang wrote:
> Can I consider the fix reviewed and it's fine?
>
> Thanks
> Max
>
> On 8/7/13 9:32 PM, Xuelei Fan wrote:
>> On 8/7/2013 9:30 PM, Weijun Wang wrote:
>>> First, thanks for your feedbacks.
>>>
>>> I only intended to fix etypes in this bug and since I don't have a lot
>>> of experience on native kerberos on Mac (it is the Heimdal impl instead
>>> of MIT's) I didn't want to touch a lot.
>>>
>>> Precisely, comparing only "krbtgt" is not enough. When doing cross-realm
>>> auth from R1 to R2, it's likely to have "krbtgt/R2 at R1" in ccache and it
>>> should not used as initial TGT.
>>>
>>> Shall we fix this in another bug when I (or QE) are more familiar with
>>> native krb5 on Mac?
>> OK to me.
>>
>> Xuelei
>>
>>> Thanks
>>> Max
>>>
>>> On 8/7/13 9:09 PM, Xuelei Fan wrote:
>>>> On 8/7/2013 7:53 PM, Dmitry Samersoff wrote:
>>>>> Xuelei,
>>>>>
>>>>> 1. strncmp calls strlen at first, so explicit call to strlen is not
>>>>> necessary.
>>>> I was wondering to make the comparing when the length of serverName is
>>>> bigger than strlen("krbtgt"). For example, "krbtgt_extra". Mine
>>>> suggested code is incorrect, as the output name of krb5_unparse_name may
>>>> be "krbtgt_extra/h.o.s.t at realm", but not "krbtgt_extra".
>>>>
>>>> It's a little problem, but we might want to make the comparing more
>>>> precisely.
>>>>
>>>>> 2. strlen("krbtgt") == sizeof("krbtgt")-1
>>>>> as sizeof count terminating 0.
>>>> You are right.
>>>>
>>>> Xuelei
>>>>
>>>>> -Dmitry
>>>>>
>>>>>
>>>>> On 2013-08-07 15:31, Xuelei Fan wrote:
>>>>>> On 8/7/2013 6:58 PM, Weijun Wang wrote:
>>>>>>>
>>>>>>>
>>>>>>> On 8/7/13 5:23 PM, Dmitry Samersoff wrote:
>>>>>>>> Weijun,
>>>>>>>>
>>>>>>>> nativeccache.c:
>>>>>>>>
>>>>>>>> 322: Could you change strlen("krbtgt") to sizeof("krbtgt")-1 to
>>>>>>>> save a
>>>>>>>> bit of computer power?
>>>>>>>
>>>>>>> Sure.
>>>>>>
>>>>>> strncmp() is normally work with strlen() while comparing two
>>>>>> strings, in
>>>>>> case the length of the two string are not equal.
>>>>>>
>>>>>> - 322 if (strncmp (serverName, "krbtgt", strlen("krbtgt")) == 0 &&
>>>>>> + 322 if (strlen(serverName) == sizeof("krbtgt") &&
>>>>>> + strncmp (serverName, "krbtgt", sizeof("krbtgt")) == 0 &&
>>>>>>
>>>>>> BTW, as it is a local function, would you like to add a "static"
>>>>>> keyword
>>>>>> to isIn() function?
>>>>>>
>>>>>> Xuelei
>>
From vicente.romero at oracle.com Thu Aug 8 10:49:52 2013
From: vicente.romero at oracle.com (vicente.romero at oracle.com)
Date: Thu, 08 Aug 2013 10:49:52 +0000
Subject: hg: jdk8/tl/langtools: 8019486: javac,
generates erroneous LVT for a test case with lambda code
Message-ID: <20130808105013.81177486D1@hg.openjdk.java.net>
Changeset: b8610a65fbf9
Author: vromero
Date: 2013-08-08 11:49 +0100
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/b8610a65fbf9
8019486: javac, generates erroneous LVT for a test case with lambda code
Reviewed-by: mcimadamore
! src/share/classes/com/sun/tools/javac/comp/LambdaToMethod.java
+ test/tools/javac/T8019486/WrongLVTForLambdaTest.java
From weijun.wang at oracle.com Thu Aug 8 13:13:28 2013
From: weijun.wang at oracle.com (weijun.wang at oracle.com)
Date: Thu, 08 Aug 2013 13:13:28 +0000
Subject: hg: jdk8/tl/jdk: 8016594: Native Windows ccache still reads DES
tickets
Message-ID: <20130808131448.9A66E486D9@hg.openjdk.java.net>
Changeset: b7d594716f86
Author: weijun
Date: 2013-08-08 21:13 +0800
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/b7d594716f86
8016594: Native Windows ccache still reads DES tickets
Reviewed-by: dsamersoff, xuelei
! src/share/classes/sun/security/krb5/Credentials.java
! src/share/native/sun/security/krb5/nativeccache.c
! src/windows/native/sun/security/krb5/NativeCreds.c
From sundararajan.athijegannathan at oracle.com Thu Aug 8 14:01:50 2013
From: sundararajan.athijegannathan at oracle.com (sundararajan.athijegannathan at oracle.com)
Date: Thu, 08 Aug 2013 14:01:50 +0000
Subject: hg: jdk8/tl/nashorn: 3 new changesets
Message-ID: <20130808140155.13604486DB@hg.openjdk.java.net>
Changeset: 9a3e3bb30db3
Author: attila
Date: 2013-08-07 16:38 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/9a3e3bb30db3
8022509: Various Dynalink security enhancements
Reviewed-by: jlaskey, hannesw
! src/jdk/internal/dynalink/ChainedCallSite.java
! src/jdk/internal/dynalink/DynamicLinkerFactory.java
! src/jdk/internal/dynalink/beans/ClassString.java
! src/jdk/internal/dynalink/beans/StaticClassLinker.java
- src/jdk/internal/dynalink/support/Backport.java
! src/jdk/internal/dynalink/support/ClassMap.java
! src/jdk/internal/dynalink/support/Guards.java
! src/jdk/internal/dynalink/support/Lookup.java
! src/jdk/internal/dynalink/support/TypeConverterFactory.java
! src/jdk/nashorn/internal/runtime/linker/Bootstrap.java
Changeset: dd79c04ef7df
Author: sundar
Date: 2013-08-08 16:38 +0530
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/dd79c04ef7df
8022524: Memory leaks in nashorn sources and tests found by jhat analysis
Reviewed-by: attila, hannesw
! make/project.properties
! src/jdk/nashorn/internal/codegen/CompileUnit.java
! src/jdk/nashorn/internal/objects/Global.java
! src/jdk/nashorn/internal/objects/NativeArray.java
! src/jdk/nashorn/internal/objects/NativeDate.java
! src/jdk/nashorn/internal/objects/NativeJSON.java
! src/jdk/nashorn/internal/objects/NativeObject.java
! src/jdk/nashorn/internal/runtime/GlobalObject.java
! src/jdk/nashorn/internal/runtime/JSONFunctions.java
! src/jdk/nashorn/internal/runtime/ListAdapter.java
! src/jdk/nashorn/internal/runtime/RecompilableScriptFunctionData.java
! src/jdk/nashorn/internal/runtime/ScriptFunction.java
! src/jdk/nashorn/internal/runtime/UserAccessorProperty.java
! src/jdk/nashorn/internal/runtime/linker/JavaAdapterClassLoader.java
! src/jdk/nashorn/internal/runtime/linker/JavaAdapterFactory.java
! test/script/basic/JDK-8020357.js
! test/src/jdk/nashorn/api/javaaccess/BooleanAccessTest.java
! test/src/jdk/nashorn/api/javaaccess/MethodAccessTest.java
! test/src/jdk/nashorn/api/javaaccess/NumberAccessTest.java
! test/src/jdk/nashorn/api/javaaccess/NumberBoxingTest.java
! test/src/jdk/nashorn/api/javaaccess/ObjectAccessTest.java
! test/src/jdk/nashorn/api/javaaccess/StringAccessTest.java
! test/src/jdk/nashorn/internal/codegen/CompilerTest.java
! test/src/jdk/nashorn/internal/parser/ParserTest.java
Changeset: 0d7484bf8597
Author: sundar
Date: 2013-08-08 18:19 +0530
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/0d7484bf8597
Merge
- src/jdk/internal/dynalink/support/Backport.java
From xueming.shen at oracle.com Thu Aug 8 19:00:49 2013
From: xueming.shen at oracle.com (xueming.shen at oracle.com)
Date: Thu, 08 Aug 2013 19:00:49 +0000
Subject: hg: jdk8/tl/jdk: 8015666: test/tools/pack200/TimeStamp.java failing
Message-ID: <20130808190152.9A34248707@hg.openjdk.java.net>
Changeset: a388263a7287
Author: sherman
Date: 2013-08-08 12:03 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/a388263a7287
8015666: test/tools/pack200/TimeStamp.java failing
Summary: to keep the default behavior of ZOS unchanged, if ze extra time not explicitly set
Reviewed-by: alanb, ksrini
! src/share/classes/java/util/zip/ZipConstants.java
! src/share/classes/java/util/zip/ZipEntry.java
! src/share/classes/java/util/zip/ZipFile.java
! src/share/classes/java/util/zip/ZipInputStream.java
! src/share/classes/java/util/zip/ZipOutputStream.java
! src/share/classes/java/util/zip/ZipUtils.java
! test/ProblemList.txt
! test/java/util/zip/TestExtraTime.java
! test/tools/pack200/TimeStamp.java
From xueming.shen at oracle.com Thu Aug 8 21:53:03 2013
From: xueming.shen at oracle.com (Xueming Shen)
Date: Thu, 08 Aug 2013 14:53:03 -0700
Subject: Code review request: 8021788: JarInputStream doesn't provide
certificates for some file under META-INF
In-Reply-To: <51FEFFB1.2040506@oracle.com>
References: <51FEFFB1.2040506@oracle.com>
Message-ID: <5204133F.3040806@oracle.com>
Looks fine.
-Sherman
On 08/04/2013 06:28 PM, Weijun Wang wrote:
> Please take a look at
>
> http://cr.openjdk.java.net/~weijun/8021788/webrev.00/
>
> The problem is that the method treats no META-INF entry as normal. If we can be sure that MANIFEST.MF and signature-related files are always at the beginning, we can safely treat an entry normal when we have done with those.
>
> Thanks
> Max
From jason.uh at oracle.com Thu Aug 8 23:19:38 2013
From: jason.uh at oracle.com (Jason Uh)
Date: Thu, 08 Aug 2013 16:19:38 -0700
Subject: [8] Request for Review: 8022461: Fix lint warnings in
sun.security.{provider, rsa, x509}
In-Reply-To: <5202DCFA.1080501@oracle.com>
References: <52018AEC.9060305@oracle.com> <52018C1E.8060204@oracle.com>
<5201A346.6010507@oracle.com> <5202D488.7090800@oracle.com>
<5202DCFA.1080501@oracle.com>
Message-ID: <5204278A.5010409@oracle.com>
On 08/07/2013 04:49 PM, Weijun Wang wrote:
>
>
> On 8/8/13 7:13 AM, Jason Uh wrote:
>> On 8/6/13 6:30 PM, Weijun Wang wrote:
>>> One question:
>>>
>>> In src/share/classes/sun/security/x509/X509Key.java, two fields are now
>>> not recommended:
>>>
>>> @Deprecated
>>> protected byte[] key = null;
>>>
>>> /*
>>> * The number of bits unused in the last byte of the key.
>>> * Added to keep the byte[] key form consistent with the BitArray
>>> * form. Can de deleted when byte[] key is deleted.
>>> */
>>> private int unusedBits = 0;
>>>
>>> I understand that key should be marked @Deprecated because it's
>>> protected and therefore part of (although private) API, but what about
>>> unusedBits? Is it better to also mark it @Deprecated?
>>
>> I see what you mean. But is it OK to mark private members @Deprecated? I
>> don't know if that violates convention or not. Let me know if you'd like
>> me to add that, and I'll include it in this change.
>
> According to JLS [1], there is no restriction on the scope of the method
> when applying @Deprecated. I think the reason we seldom see @Deprecated
> on a private field/method is that we can just remove it without
> affecting other classes, but in this case, the getArray() method shows
> it's not very simple.
>
> I suggest you add it.
Thanks, Max. I'll push with the change
* Added to keep the byte[] key form consistent with the BitArray
* form. Can de deleted when byte[] key is deleted.
*/
+ @Deprecated
private int unusedBits = 0;
in sun/security/x509/X509Key.java included in this fix.
Jason
> Thanks
> Max
>
> [1] http://docs.oracle.com/javase/specs/jls/se7/html/jls-9.html#jls-9.6.3.6
>
>>
>> Thanks,
>> Jason
>>
>>> Thanks
>>> Max
>>>
>>> On 8/7/13 7:51 AM, Joe Darcy wrote:
>>>> Hi Jason,
>>>>
>>>> Looks fine to me, but a security reviewer should approve as well.
>>>>
>>>> Thanks,
>>>>
>>>> -Joe
>>>>
>>>> On 08/06/2013 04:46 PM, Jason Uh wrote:
>>>>> Joe, Sean,
>>>>>
>>>>> Could I please get a review of this changeset? This change fixes
>>>>> deprecation warnings in:
>>>>> sun.security.provider
>>>>> sun.security.rsa
>>>>> sun.security.x509
>>>>>
>>>>> In sun.security.provider and sun.security.rsa, I change the use of
>>>>> sun.security.x509.X509Key's key bytes to the BitArray form of the key.
>>>>>
>>>>> Webrev: http://cr.openjdk.java.net/~juh/8022461/webrev.00/
>>>>>
>>>>> Thanks,
>>>>> Jason
>>>>
>>
From jason.uh at oracle.com Fri Aug 9 00:07:19 2013
From: jason.uh at oracle.com (jason.uh at oracle.com)
Date: Fri, 09 Aug 2013 00:07:19 +0000
Subject: hg: jdk8/tl/jdk: 8022461: Fix lint warnings in sun.security.{provider,
rsa, x509}
Message-ID: <20130809000738.593224872F@hg.openjdk.java.net>
Changeset: 67edbf7e6b26
Author: juh
Date: 2013-08-08 17:06 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/67edbf7e6b26
8022461: Fix lint warnings in sun.security.{provider,rsa,x509}
Reviewed-by: darcy, weijun, xuelei, mullan
! src/share/classes/sun/security/provider/DSAPublicKey.java
! src/share/classes/sun/security/rsa/RSAPublicKeyImpl.java
! src/share/classes/sun/security/rsa/RSASignature.java
! src/share/classes/sun/security/x509/AlgIdDSA.java
! src/share/classes/sun/security/x509/X509Key.java
From xuelei.fan at oracle.com Fri Aug 9 00:41:23 2013
From: xuelei.fan at oracle.com (Xuelei Fan)
Date: Fri, 09 Aug 2013 08:41:23 +0800
Subject: Code review request, 8020842 IDN do not throw IAE when hostname
ends with a trailing dot
In-Reply-To: <520264F1.1090802@oracle.com>
References: <5200E1B9.7070002@oracle.com> <520127A3.3060405@oracle.com>
<520133C7.20401@oracle.com> <5202411F.2010706@oracle.com>
<52025434.8070200@oracle.com> <5202561A.5040908@oracle.com>
<52025726.8060203@oracle.com> <520264F1.1090802@oracle.com>
Message-ID: <52043AB3.6060704@oracle.com>
Ping.
Thanks,
Xuelei
On 8/7/2013 11:17 PM, Xuelei Fan wrote:
> Please review the new update:
>
> http://cr.openjdk.java.net./~xuelei/8020842/webrev.01/
>
> With this update, "com." is valid (return "com."); "." and
> "example..com" are invalid. And IAE will be thrown for invalid IDN.
>
> Thanks,
> Xuelei
>
> On 8/7/2013 10:18 PM, Michael McMahon wrote:
>> On 07/08/13 15:13, Xuelei Fan wrote:
>>> On 8/7/2013 10:05 PM, Michael McMahon wrote:
>>>> Resolvers seem to accept queries using trailing dots.
>>>>
>>>> eg nslookup www.oracle.com.
>>>>
>>>> or InetAddress.getByName("www.oracle.com.");
>>>>
>>>> The part of RFC3490 quoted below seems to me to be saying
>>>> that the empty label implied by the trailing dot is not regarded
>>>> as a label so that you don't end up calling toAscii() or toUnicode()
>>>> with an empty string. I don't think it's saying the trailing dot can't
>>>> be there.
>>>>
>>> It makes sense.
>>>
>>> What's your preference to return for IDN.toASCII("www.oracle.com."),
>>> "www.oracle.com." or "www.oracle.com"? The current returned value is
>>> "www.oracle.com". I would like to reserve the behavior in this update.
>>
>> My opinion is to keep it as at present ie. "www.oracle.com."
>>
>> Michael
>>
>>> I think we are on same page soon.
>>>
>>> Thanks,
>>> Xuelei
>>>
>>>> Michael
>>>>
>>>> On 07/08/13 13:44, Xuelei Fan wrote:
>>>>> On 8/7/2013 12:06 AM, Matthew Hall wrote:
>>>>>> Trailing dots are allowed in plain DNS (thus almost surely in IDN),
>>>>>> and the single dot represents the root zone. So you have to be
>>>>>> careful making this sort of change to check the DNS RFCs first.
>>>>> That's the first question we need to answer, whether IDN allow tailling
>>>>> dots ("com."), zero-length root label ("."), and zero-length label ("",
>>>>> for example ""example..com")?
>>>>>
>>>>> Per the specification of IDN.toASCII():
>>>>> =======================================
>>>>> "ToASCII operation can fail. ToASCII fails if any step of it fails. If
>>>>> ToASCII operation fails, an IllegalArgumentException will be thrown. In
>>>>> this case, the input string should not be used in an internationalized
>>>>> domain name.
>>>>>
>>>>> A label is an individual part of a domain name. The original ToASCII
>>>>> operation, as defined in RFC 3490, only operates on a single label.
>>>>> This
>>>>> method can handle both label and entire domain name, by assuming that
>>>>> labels in a domain name are always separated by dots. ...
>>>>>
>>>>> Throws IllegalArgumentException - if the input string doesn't
>>>>> conform to
>>>>> RFC 3490 specification"
>>>>>
>>>>> Per the specification of RFC 3490:
>>>>> ==================================
>>>>> [section 2]
>>>>> "A label is an individual part of a domain name. Labels are usually
>>>>> shown separated by dots; for example, the domain name
>>>>> "www.example.com" is composed of three labels: "www", "example", and
>>>>> "com". (The zero-length root label described in [STD13], which can
>>>>> be explicit as in "www.example.com." or implicit as in
>>>>> "www.example.com", is not considered a label in this
>>>>> specification.)"
>>>>>
>>>>> "An "internationalized label" is a label to which the ToASCII
>>>>> operation (see section 4) can be applied without failing (with the
>>>>> UseSTD3ASCIIRules flag unset). ...
>>>>> Although most Unicode characters can appear in
>>>>> internationalized labels, ToASCII will fail for some input strings,
>>>>> and such strings are not valid internationalized labels."
>>>>>
>>>>> "An "internationalized domain name" (IDN) is a domain name in which
>>>>> every label is an internationalized label."
>>>>>
>>>>> [Section 4.1]
>>>>> "ToASCII consists of the following steps:
>>>>>
>>>>> ...
>>>>>
>>>>> 8. Verify that the number of code points is in the range 1 to 63
>>>>> inclusive."
>>>>>
>>>>>
>>>>> Here are the questions:
>>>>> 1. whether "example..com" is an valid IDN?
>>>>> As dot is used as label separators, there are three labels,
>>>>> "example", "", "com". Per RFC 3490, "" is not a valid label. Hence,
>>>>> "example..com" is not a valid IDN.
>>>>>
>>>>> We need to address the issue in IDN.
>>>>>
>>>>> 2. whether "xyz." is an valid IDN?
>>>>> It's an gray area, I think. We can treat the trailing "." as root
>>>>> label, or a label separator.
>>>>> If the trailing "." is treated as label separator, "xyz." is
>>>>> invalid
>>>>> per RFC 3490.
>>>>> if the trailing "." is treated as root label, what's the expected
>>>>> return value of IDN.toASCII("xyz.")? I think the return value can be
>>>>> either "xyz." or "xyz". The current implementation returns "xyz".
>>>>>
>>>>> We may need not to update the implementation if tailing "." is
>>>>> treated as root label.
>>>>>
>>>>> 3. whether "." is an valid IDN?
>>>>> It's an gray area again, I think.
>>>>> As above, if the trailing "." is treated as root label, I think
>>>>> the
>>>>> return value can be either "." or "". The current implementation
>>>>> throws
>>>>> a StringIndexOutOfBoundsException.
>>>>>
>>>>> However, what empty domain name ("") really means? I would
>>>>> prefer to
>>>>> return "." for "." instead.
>>>>>
>>>>> We need to address the issue in IDN.
>>>>>
>>>>>
>>>>> Here comes the solution, the IDN.toASCII() returns:
>>>>> 1. "." for ".";
>>>>> 2. "xyz" for "xyz.";
>>>>> 3. IAE for "example..com".
>>>>>
>>>>> Does it make sense?
>>>>>
>>>>> Thanks,
>>>>> Xuelei
>>>>>
>>>>>
>>>>> On 8/7/2013 1:35 AM, Michael McMahon wrote:
>>>>>> I don't really understand the reason for the restriction in
>>>>>> SNIHostName
>>>>>> But, I guess that is where it should be enforced if it is required.
>>>>>>
>>>>>> Michael.
>>>>>>
>>>>>> On 06/08/13 17:43, Dmitry Samersoff wrote:
>>>>>>> Xuelei,
>>>>>>>
>>>>>>> . (dot) is perfectly valid domain name and it means root domain so
>>>>>>> com.
>>>>>>> is valid domain name as well.
>>>>>>>
>>>>>>> It thinks to me that in context of methods your change we should
>>>>>>> ignore
>>>>>>> trailing dots, rather than throw exception.
>>>>>>>
>>>>>>> -Dmitry
>>>>>>>
>>>>>>>
>>>>>>>
>>>>>>> On 2013-08-06 15:44, Xuelei Fan wrote:
>>>>>>>> Hi,
>>>>>>>>
>>>>>>>> Please review the bug fix to strict the illegal input checking in
>>>>>>>> IDN.
>>>>>>>>
>>>>>>>> webrev: http://cr.openjdk.java.net./~xuelei/8020842/webrev.00/
>>>>>>>>
>>>>>>>> Here is two test cases, which are expected to get IAE.
>>>>>>>>
>>>>>>>> Case 1:
>>>>>>>> String host = IDN.toASCII(".", IDN.USE_STD3_ASCII_RULES);
>>>>>>>> Exception in thread "main"
>>>>>>>> java.lang.StringIndexOutOfBoundsException:
>>>>>>>> String index out of range: 0
>>>>>>>> at java.lang.StringBuffer.charAt(StringBuffer.java:204)
>>>>>>>> at java.net.IDN.toASCIIInternal(IDN.java:279)
>>>>>>>> at java.net.IDN.toASCII(IDN.java:118)
>>>>>>>>
>>>>>>>> Case 2:
>>>>>>>> String host = IDN.toASCII("com.", IDN.USE_STD3_ASCII_RULES);
>>>>>>>>
>>>>>>>> Thanks,
>>>>>>>> Xuelei
>>>>>>>>
>>
>
From weijun.wang at oracle.com Fri Aug 9 01:22:53 2013
From: weijun.wang at oracle.com (Weijun Wang)
Date: Fri, 09 Aug 2013 09:22:53 +0800
Subject: Code review request, 8020842 IDN do not throw IAE when hostname
ends with a trailing dot
In-Reply-To: <52043AB3.6060704@oracle.com>
References: <5200E1B9.7070002@oracle.com> <520127A3.3060405@oracle.com>
<520133C7.20401@oracle.com> <5202411F.2010706@oracle.com>
<52025434.8070200@oracle.com> <5202561A.5040908@oracle.com>
<52025726.8060203@oracle.com> <520264F1.1090802@oracle.com>
<52043AB3.6060704@oracle.com>
Message-ID: <5204446D.7030603@oracle.com>
I tried nslookup. Those with ".." inside are illegal,
$ nslookup com..
nslookup: 'com..' is not a legal name (empty label)
but
$ nslookup .
Server: 192.168.10.1
Address: 192.168.10.1#53
Non-authoritative answer:
*** Can't find .: No answer
Also, since this bug was originally about SNIHostName, do you need to
add some extra restriction there to reject "oracle.com." things?
Thanks
Max
On 8/9/13 8:41 AM, Xuelei Fan wrote:
> Ping.
>
> Thanks,
> Xuelei
>
> On 8/7/2013 11:17 PM, Xuelei Fan wrote:
>> Please review the new update:
>>
>> http://cr.openjdk.java.net./~xuelei/8020842/webrev.01/
>>
>> With this update, "com." is valid (return "com."); "." and
>> "example..com" are invalid. And IAE will be thrown for invalid IDN.
>>
>> Thanks,
>> Xuelei
>>
From xuelei.fan at oracle.com Fri Aug 9 01:37:01 2013
From: xuelei.fan at oracle.com (Xuelei Fan)
Date: Fri, 09 Aug 2013 09:37:01 +0800
Subject: Code review request, 8020842 IDN do not throw IAE when hostname
ends with a trailing dot
In-Reply-To: <5204446D.7030603@oracle.com>
References: <5200E1B9.7070002@oracle.com> <520127A3.3060405@oracle.com>
<520133C7.20401@oracle.com> <5202411F.2010706@oracle.com>
<52025434.8070200@oracle.com> <5202561A.5040908@oracle.com>
<52025726.8060203@oracle.com> <520264F1.1090802@oracle.com>
<52043AB3.6060704@oracle.com> <5204446D.7030603@oracle.com>
Message-ID: <520447BD.30206@oracle.com>
On 8/9/2013 9:22 AM, Weijun Wang wrote:
> I tried nslookup. Those with ".." inside are illegal,
>
> $ nslookup com..
> nslookup: 'com..' is not a legal name (empty label)
>
> but
>
> $ nslookup .
> Server: 192.168.10.1
> Address: 192.168.10.1#53
>
> Non-authoritative answer:
> *** Can't find .: No answer
>
Thanks for the testing. The behaviors are the same as this fix now.
Learn something new today to use nslookup.
> Also, since this bug was originally about SNIHostName, do you need to
> add some extra restriction there to reject "oracle.com." things?
>
No, we cannot restrict the format of IDN in SNIHostName more than in
IDN. However, we may need to rethink about the comparing of two IDN, for
example, "example.com." should equal to "example.com". I want to
consider it in another bug.
Can I push the changeset?
Thanks,
Xuelei
> Thanks
> Max
>
> On 8/9/13 8:41 AM, Xuelei Fan wrote:
>> Ping.
>>
>> Thanks,
>> Xuelei
>>
>> On 8/7/2013 11:17 PM, Xuelei Fan wrote:
>>> Please review the new update:
>>>
>>> http://cr.openjdk.java.net./~xuelei/8020842/webrev.01/
>>>
>>> With this update, "com." is valid (return "com."); "." and
>>> "example..com" are invalid. And IAE will be thrown for invalid IDN.
>>>
>>> Thanks,
>>> Xuelei
>>>
From weijun.wang at oracle.com Fri Aug 9 02:14:08 2013
From: weijun.wang at oracle.com (Weijun Wang)
Date: Fri, 09 Aug 2013 10:14:08 +0800
Subject: Code review request, 8020842 IDN do not throw IAE when hostname
ends with a trailing dot
In-Reply-To: <520447BD.30206@oracle.com>
References: <5200E1B9.7070002@oracle.com> <520127A3.3060405@oracle.com>
<520133C7.20401@oracle.com> <5202411F.2010706@oracle.com>
<52025434.8070200@oracle.com> <5202561A.5040908@oracle.com>
<52025726.8060203@oracle.com> <520264F1.1090802@oracle.com>
<52043AB3.6060704@oracle.com> <5204446D.7030603@oracle.com>
<520447BD.30206@oracle.com>
Message-ID: <52045070.1000506@oracle.com>
On 8/9/13 9:37 AM, Xuelei Fan wrote:
> On 8/9/2013 9:22 AM, Weijun Wang wrote:
>> I tried nslookup. Those with ".." inside are illegal,
>>
>> $ nslookup com..
>> nslookup: 'com..' is not a legal name (empty label)
>>
>> but
>>
>> $ nslookup .
>> Server: 192.168.10.1
>> Address: 192.168.10.1#53
>>
>> Non-authoritative answer:
>> *** Can't find .: No answer
>>
> Thanks for the testing. The behaviors are the same as this fix now.
No exactly. It seems nslookup still regards "." legal but just cannot
find an IP for it.
>
> Learn something new today to use nslookup.
>
>> Also, since this bug was originally about SNIHostName, do you need to
>> add some extra restriction there to reject "oracle.com." things?
>>
> No, we cannot restrict the format of IDN in SNIHostName more than in
> IDN. However, we may need to rethink about the comparing of two IDN, for
> example, "example.com." should equal to "example.com". I want to
> consider it in another bug.
Not sure. Does the spec say IDN and SNIHostName are equivalent sets? And
it's not one is another's subset?
>
> Can I push the changeset?
I think it's better to ask someone in the networking team to make the
suggestion. From what I read Michael in this thread, he does not seem
totally agreed with your code changes (at least not the 00 version).
Thanks
Max
>
> Thanks,
> Xuelei
>
>> Thanks
>> Max
>>
>> On 8/9/13 8:41 AM, Xuelei Fan wrote:
>>> Ping.
>>>
>>> Thanks,
>>> Xuelei
>>>
>>> On 8/7/2013 11:17 PM, Xuelei Fan wrote:
>>>> Please review the new update:
>>>>
>>>> http://cr.openjdk.java.net./~xuelei/8020842/webrev.01/
>>>>
>>>> With this update, "com." is valid (return "com."); "." and
>>>> "example..com" are invalid. And IAE will be thrown for invalid IDN.
>>>>
>>>> Thanks,
>>>> Xuelei
>>>>
>
From xuelei.fan at oracle.com Fri Aug 9 02:50:07 2013
From: xuelei.fan at oracle.com (Xuelei Fan)
Date: Fri, 09 Aug 2013 10:50:07 +0800
Subject: Code review request, 8020842 IDN do not throw IAE when hostname
ends with a trailing dot
In-Reply-To: <52045070.1000506@oracle.com>
References: <5200E1B9.7070002@oracle.com> <520127A3.3060405@oracle.com>
<520133C7.20401@oracle.com> <5202411F.2010706@oracle.com>
<52025434.8070200@oracle.com> <5202561A.5040908@oracle.com>
<52025726.8060203@oracle.com> <520264F1.1090802@oracle.com>
<52043AB3.6060704@oracle.com> <5204446D.7030603@oracle.com>
<520447BD.30206@oracle.com> <52045070.1000506@oracle.com>
Message-ID: <520458DF.1030502@oracle.com>
On 8/9/2013 10:14 AM, Weijun Wang wrote:
>
>
> On 8/9/13 9:37 AM, Xuelei Fan wrote:
>> On 8/9/2013 9:22 AM, Weijun Wang wrote:
>>> I tried nslookup. Those with ".." inside are illegal,
>>>
>>> $ nslookup com..
>>> nslookup: 'com..' is not a legal name (empty label)
>>>
>>> but
>>>
>>> $ nslookup .
>>> Server: 192.168.10.1
>>> Address: 192.168.10.1#53
>>>
>>> Non-authoritative answer:
>>> *** Can't find .: No answer
>>>
>> Thanks for the testing. The behaviors are the same as this fix now.
>
> No exactly. It seems nslookup still regards "." legal but just cannot
> find an IP for it.
>
I'm not sure whether a root domain name can be stand alone. Root label
is not considered as a label in IDN. I think it is safe to regard that
"." is not a valid IDN as it contains no label. Anyway, it is a corner
case.
There are many online IDN conversion web services, some of them can
convert ".", some of the cannot. In the present implementation, we
cannot recognize ".", and IDN.toASCII(".") throws
StringIndexOutOfBoundsException. With this fix, I was wondering IAE is
a better exception for IDN.toASCII(".").
>>
>> Learn something new today to use nslookup.
>>
>>> Also, since this bug was originally about SNIHostName, do you need to
>>> add some extra restriction there to reject "oracle.com." things?
>>>
>> No, we cannot restrict the format of IDN in SNIHostName more than in
>> IDN. However, we may need to rethink about the comparing of two IDN, for
>> example, "example.com." should equal to "example.com". I want to
>> consider it in another bug.
>
> Not sure. Does the spec say IDN and SNIHostName are equivalent sets? And
> it's not one is another's subset?
>
Per TLS specification, host name in SNI is an IDN. The spec of
SNIHostname says, "hostname is not a valid Internationalized Domain Name
(IDN) compliant with the RFC 3490 specification". The spec in
SNIHostName has the same means as IDN. I won't want to add additional
restrict beyond the specification of an IDN.
Xuelei
>>
>> Can I push the changeset?
>
> I think it's better to ask someone in the networking team to make the
> suggestion. From what I read Michael in this thread, he does not seem
> totally agreed with your code changes (at least not the 00 version).
>
> Thanks
> Max
>
>>
>> Thanks,
>> Xuelei
>>
>>> Thanks
>>> Max
>>>
>>> On 8/9/13 8:41 AM, Xuelei Fan wrote:
>>>> Ping.
>>>>
>>>> Thanks,
>>>> Xuelei
>>>>
>>>> On 8/7/2013 11:17 PM, Xuelei Fan wrote:
>>>>> Please review the new update:
>>>>>
>>>>> http://cr.openjdk.java.net./~xuelei/8020842/webrev.01/
>>>>>
>>>>> With this update, "com." is valid (return "com."); "." and
>>>>> "example..com" are invalid. And IAE will be thrown for invalid IDN.
>>>>>
>>>>> Thanks,
>>>>> Xuelei
>>>>>
>>
From mhall at mhcomputing.net Fri Aug 9 03:24:41 2013
From: mhall at mhcomputing.net (Matthew Hall)
Date: Thu, 08 Aug 2013 20:24:41 -0700
Subject: Code review request,
8020842 IDN do not throw IAE when hostname ends with a trailing dot
In-Reply-To: <520458DF.1030502@oracle.com>
References: <5200E1B9.7070002@oracle.com> <520127A3.3060405@oracle.com>
<520133C7.20401@oracle.com> <5202411F.2010706@oracle.com>
<52025434.8070200@oracle.com> <5202561A.5040908@oracle.com>
<52025726.8060203@oracle.com> <520264F1.1090802@oracle.com>
<52043AB3.6060704@oracle.com> <5204446D.7030603@oracle.com>
<520447BD.30206@oracle.com> <52045070.1000506@oracle.com>
<520458DF.1030502@oracle.com>
Message-ID:
But, DNS considers "." as the valid root zone...
--
Sent from my mobile device.
Xuelei Fan wrote:
>On 8/9/2013 10:14 AM, Weijun Wang wrote:
>>
>>
>> On 8/9/13 9:37 AM, Xuelei Fan wrote:
>>> On 8/9/2013 9:22 AM, Weijun Wang wrote:
>>>> I tried nslookup. Those with ".." inside are illegal,
>>>>
>>>> $ nslookup com..
>>>> nslookup: 'com..' is not a legal name (empty label)
>>>>
>>>> but
>>>>
>>>> $ nslookup .
>>>> Server: 192.168.10.1
>>>> Address: 192.168.10.1#53
>>>>
>>>> Non-authoritative answer:
>>>> *** Can't find .: No answer
>>>>
>>> Thanks for the testing. The behaviors are the same as this fix now.
>>
>> No exactly. It seems nslookup still regards "." legal but just cannot
>> find an IP for it.
>>
>I'm not sure whether a root domain name can be stand alone. Root label
>is not considered as a label in IDN. I think it is safe to regard that
>"." is not a valid IDN as it contains no label. Anyway, it is a corner
>case.
>
>There are many online IDN conversion web services, some of them can
>convert ".", some of the cannot. In the present implementation, we
>cannot recognize ".", and IDN.toASCII(".") throws
>StringIndexOutOfBoundsException. With this fix, I was wondering IAE is
>a better exception for IDN.toASCII(".").
>
>>>
>>> Learn something new today to use nslookup.
>>>
>>>> Also, since this bug was originally about SNIHostName, do you need
>to
>>>> add some extra restriction there to reject "oracle.com." things?
>>>>
>>> No, we cannot restrict the format of IDN in SNIHostName more than in
>>> IDN. However, we may need to rethink about the comparing of two IDN,
>for
>>> example, "example.com." should equal to "example.com". I want to
>>> consider it in another bug.
>>
>> Not sure. Does the spec say IDN and SNIHostName are equivalent sets?
>And
>> it's not one is another's subset?
>>
>Per TLS specification, host name in SNI is an IDN. The spec of
>SNIHostname says, "hostname is not a valid Internationalized Domain
>Name
>(IDN) compliant with the RFC 3490 specification". The spec in
>SNIHostName has the same means as IDN. I won't want to add additional
>restrict beyond the specification of an IDN.
>
>Xuelei
>
>>>
>>> Can I push the changeset?
>>
>> I think it's better to ask someone in the networking team to make the
>> suggestion. From what I read Michael in this thread, he does not seem
>> totally agreed with your code changes (at least not the 00 version).
>>
>> Thanks
>> Max
>>
>>>
>>> Thanks,
>>> Xuelei
>>>
>>>> Thanks
>>>> Max
>>>>
>>>> On 8/9/13 8:41 AM, Xuelei Fan wrote:
>>>>> Ping.
>>>>>
>>>>> Thanks,
>>>>> Xuelei
>>>>>
>>>>> On 8/7/2013 11:17 PM, Xuelei Fan wrote:
>>>>>> Please review the new update:
>>>>>>
>>>>>> http://cr.openjdk.java.net./~xuelei/8020842/webrev.01/
>>>>>>
>>>>>> With this update, "com." is valid (return "com."); "." and
>>>>>> "example..com" are invalid. And IAE will be thrown for invalid
>IDN.
>>>>>>
>>>>>> Thanks,
>>>>>> Xuelei
>>>>>>
>>>
From weijun.wang at oracle.com Fri Aug 9 03:42:53 2013
From: weijun.wang at oracle.com (weijun.wang at oracle.com)
Date: Fri, 09 Aug 2013 03:42:53 +0000
Subject: hg: jdk8/tl/jdk: 8021788: JarInputStream doesn't provide certificates
for some file under META-INF
Message-ID: <20130809034314.C36B848735@hg.openjdk.java.net>
Changeset: 758e3117899c
Author: weijun
Date: 2013-08-09 11:41 +0800
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/758e3117899c
8021788: JarInputStream doesn't provide certificates for some file under META-INF
Reviewed-by: chegar, sherman
! src/share/classes/java/util/jar/JarVerifier.java
+ test/java/util/jar/JarInputStream/ExtraFileInMetaInf.java
From xuelei.fan at oracle.com Fri Aug 9 03:45:18 2013
From: xuelei.fan at oracle.com (Xuelei Fan)
Date: Fri, 09 Aug 2013 11:45:18 +0800
Subject: Code review request, 8020842 IDN do not throw IAE when hostname
ends with a trailing dot
In-Reply-To:
References: <5200E1B9.7070002@oracle.com> <520127A3.3060405@oracle.com>
<520133C7.20401@oracle.com> <5202411F.2010706@oracle.com>
<52025434.8070200@oracle.com> <5202561A.5040908@oracle.com>
<52025726.8060203@oracle.com> <520264F1.1090802@oracle.com>
<52043AB3.6060704@oracle.com> <5204446D.7030603@oracle.com>
<520447BD.30206@oracle.com> <52045070.1000506@oracle.com>
<520458DF.1030502@oracle.com>
Message-ID: <520465CE.5020000@oracle.com>
On 8/9/2013 11:24 AM, Matthew Hall wrote:
> But, DNS considers "." as the valid root zone...
>
Good! Looks like that IDN.toASCII(".") should returns ".", so that a
general domain name can always use IDN.toASCII() conversion instead of
throwing runtime exception.
Xuelei
From anthony.scarpino at oracle.com Fri Aug 9 04:04:26 2013
From: anthony.scarpino at oracle.com (Anthony Scarpino)
Date: Thu, 08 Aug 2013 21:04:26 -0700
Subject: Code review request: 8020081 Cipher with OAEPPadding and
OAEPParameterSpec can't be created
Message-ID: <52046A4A.70400@oracle.com>
Hi,
I need a review of this small fix that registers OAEPPadding in SunJCE.
http://cr.openjdk.java.net/~ascarpino/8020081/webrev.00/
thanks
Tony
From xuelei.fan at oracle.com Fri Aug 9 04:28:35 2013
From: xuelei.fan at oracle.com (Xuelei Fan)
Date: Fri, 09 Aug 2013 12:28:35 +0800
Subject: Code review request, 8020842 IDN do not throw IAE when hostname
ends with a trailing dot
In-Reply-To: <520458DF.1030502@oracle.com>
References: <5200E1B9.7070002@oracle.com> <520127A3.3060405@oracle.com>
<520133C7.20401@oracle.com> <5202411F.2010706@oracle.com>
<52025434.8070200@oracle.com> <5202561A.5040908@oracle.com>
<52025726.8060203@oracle.com> <520264F1.1090802@oracle.com>
<52043AB3.6060704@oracle.com> <5204446D.7030603@oracle.com>
<520447BD.30206@oracle.com> <52045070.1000506@oracle.com>
<520458DF.1030502@oracle.com>
Message-ID: <52046FF3.1040903@oracle.com>
Thanks for your feedback and suggestions.
Here is the new webrev:
http://cr.openjdk.java.net/~xuelei/8020842/webrev.02/
"." is regarded as valid IDN in this update.
Thanks,
Xuelei
On 8/9/2013 10:50 AM, Xuelei Fan wrote:
> On 8/9/2013 10:14 AM, Weijun Wang wrote:
>>
>>
>> On 8/9/13 9:37 AM, Xuelei Fan wrote:
>>> On 8/9/2013 9:22 AM, Weijun Wang wrote:
>>>> I tried nslookup. Those with ".." inside are illegal,
>>>>
>>>> $ nslookup com..
>>>> nslookup: 'com..' is not a legal name (empty label)
>>>>
>>>> but
>>>>
>>>> $ nslookup .
>>>> Server: 192.168.10.1
>>>> Address: 192.168.10.1#53
>>>>
>>>> Non-authoritative answer:
>>>> *** Can't find .: No answer
>>>>
>>> Thanks for the testing. The behaviors are the same as this fix now.
>>
>> No exactly. It seems nslookup still regards "." legal but just cannot
>> find an IP for it.
>>
> I'm not sure whether a root domain name can be stand alone. Root label
> is not considered as a label in IDN. I think it is safe to regard that
> "." is not a valid IDN as it contains no label. Anyway, it is a corner
> case.
>
> There are many online IDN conversion web services, some of them can
> convert ".", some of the cannot. In the present implementation, we
> cannot recognize ".", and IDN.toASCII(".") throws
> StringIndexOutOfBoundsException. With this fix, I was wondering IAE is
> a better exception for IDN.toASCII(".").
>
>>>
>>> Learn something new today to use nslookup.
>>>
>>>> Also, since this bug was originally about SNIHostName, do you need to
>>>> add some extra restriction there to reject "oracle.com." things?
>>>>
>>> No, we cannot restrict the format of IDN in SNIHostName more than in
>>> IDN. However, we may need to rethink about the comparing of two IDN, for
>>> example, "example.com." should equal to "example.com". I want to
>>> consider it in another bug.
>>
>> Not sure. Does the spec say IDN and SNIHostName are equivalent sets? And
>> it's not one is another's subset?
>>
> Per TLS specification, host name in SNI is an IDN. The spec of
> SNIHostname says, "hostname is not a valid Internationalized Domain Name
> (IDN) compliant with the RFC 3490 specification". The spec in
> SNIHostName has the same means as IDN. I won't want to add additional
> restrict beyond the specification of an IDN.
>
> Xuelei
>
>>>
>>> Can I push the changeset?
>>
>> I think it's better to ask someone in the networking team to make the
>> suggestion. From what I read Michael in this thread, he does not seem
>> totally agreed with your code changes (at least not the 00 version).
>>
>> Thanks
>> Max
>>
>>>
>>> Thanks,
>>> Xuelei
>>>
>>>> Thanks
>>>> Max
>>>>
>>>> On 8/9/13 8:41 AM, Xuelei Fan wrote:
>>>>> Ping.
>>>>>
>>>>> Thanks,
>>>>> Xuelei
>>>>>
>>>>> On 8/7/2013 11:17 PM, Xuelei Fan wrote:
>>>>>> Please review the new update:
>>>>>>
>>>>>> http://cr.openjdk.java.net./~xuelei/8020842/webrev.01/
>>>>>>
>>>>>> With this update, "com." is valid (return "com."); "." and
>>>>>> "example..com" are invalid. And IAE will be thrown for invalid IDN.
>>>>>>
>>>>>> Thanks,
>>>>>> Xuelei
>>>>>>
>>>
>
From xuelei.fan at oracle.com Fri Aug 9 04:38:55 2013
From: xuelei.fan at oracle.com (Xuelei Fan)
Date: Fri, 09 Aug 2013 12:38:55 +0800
Subject: Code review request, 8022487 DEREncodedKeyValue.supportedKeyTypes
should be private
Message-ID: <5204725F.9040009@oracle.com>
Hi,
Please review this simple fix in xml security implementation.
webrev: http://cr.openjdk.java.net/~xuelei/8022487/webrev.00/
In
com/sun/org/apache/xml/internal/security/keys/content/DEREncodedKeyValue.java,
the attribute is declared as public:
public static final String supportedKeyTypes[] = { "RSA", "DSA", "EC"};
But it is never used in other places. It's better to declare it as
private to minimize the scope of this variable.
The fix is pretty simple:
- public static final String supportedKeyTypes[] = { "RSA", "DSA", "EC"};
+ private static final String supportedKeyTypes[] = { "RSA", "DSA",
"EC"};
Thanks,
Xuelei
From dmitry.samersoff at oracle.com Fri Aug 9 06:08:19 2013
From: dmitry.samersoff at oracle.com (Dmitry Samersoff)
Date: Fri, 09 Aug 2013 10:08:19 +0400
Subject: Code review request, 8020842 IDN do not throw IAE when hostname
ends with a trailing dot
In-Reply-To: <52043AB3.6060704@oracle.com>
References: <5200E1B9.7070002@oracle.com> <520127A3.3060405@oracle.com>
<520133C7.20401@oracle.com> <5202411F.2010706@oracle.com>
<52025434.8070200@oracle.com> <5202561A.5040908@oracle.com>
<52025726.8060203@oracle.com> <520264F1.1090802@oracle.com>
<52043AB3.6060704@oracle.com>
Message-ID: <52048753.4040208@oracle.com>
Xuelei,
119 p = q + 1;
120 if (p < input.length() || q == (input.length() - 1)) {
Could be simplified to:
q <= input.length()-1
-Dmitry
On 2013-08-09 04:41, Xuelei Fan wrote:
> Ping.
>
> Thanks,
> Xuelei
>
> On 8/7/2013 11:17 PM, Xuelei Fan wrote:
>> Please review the new update:
>>
>> http://cr.openjdk.java.net./~xuelei/8020842/webrev.01/
>>
>> With this update, "com." is valid (return "com."); "." and
>> "example..com" are invalid. And IAE will be thrown for invalid IDN.
>>
>> Thanks,
>> Xuelei
>>
>> On 8/7/2013 10:18 PM, Michael McMahon wrote:
>>> On 07/08/13 15:13, Xuelei Fan wrote:
>>>> On 8/7/2013 10:05 PM, Michael McMahon wrote:
>>>>> Resolvers seem to accept queries using trailing dots.
>>>>>
>>>>> eg nslookup www.oracle.com.
>>>>>
>>>>> or InetAddress.getByName("www.oracle.com.");
>>>>>
>>>>> The part of RFC3490 quoted below seems to me to be saying
>>>>> that the empty label implied by the trailing dot is not regarded
>>>>> as a label so that you don't end up calling toAscii() or toUnicode()
>>>>> with an empty string. I don't think it's saying the trailing dot can't
>>>>> be there.
>>>>>
>>>> It makes sense.
>>>>
>>>> What's your preference to return for IDN.toASCII("www.oracle.com."),
>>>> "www.oracle.com." or "www.oracle.com"? The current returned value is
>>>> "www.oracle.com". I would like to reserve the behavior in this update.
>>>
>>> My opinion is to keep it as at present ie. "www.oracle.com."
>>>
>>> Michael
>>>
>>>> I think we are on same page soon.
>>>>
>>>> Thanks,
>>>> Xuelei
>>>>
>>>>> Michael
>>>>>
>>>>> On 07/08/13 13:44, Xuelei Fan wrote:
>>>>>> On 8/7/2013 12:06 AM, Matthew Hall wrote:
>>>>>>> Trailing dots are allowed in plain DNS (thus almost surely in IDN),
>>>>>>> and the single dot represents the root zone. So you have to be
>>>>>>> careful making this sort of change to check the DNS RFCs first.
>>>>>> That's the first question we need to answer, whether IDN allow tailling
>>>>>> dots ("com."), zero-length root label ("."), and zero-length label ("",
>>>>>> for example ""example..com")?
>>>>>>
>>>>>> Per the specification of IDN.toASCII():
>>>>>> =======================================
>>>>>> "ToASCII operation can fail. ToASCII fails if any step of it fails. If
>>>>>> ToASCII operation fails, an IllegalArgumentException will be thrown. In
>>>>>> this case, the input string should not be used in an internationalized
>>>>>> domain name.
>>>>>>
>>>>>> A label is an individual part of a domain name. The original ToASCII
>>>>>> operation, as defined in RFC 3490, only operates on a single label.
>>>>>> This
>>>>>> method can handle both label and entire domain name, by assuming that
>>>>>> labels in a domain name are always separated by dots. ...
>>>>>>
>>>>>> Throws IllegalArgumentException - if the input string doesn't
>>>>>> conform to
>>>>>> RFC 3490 specification"
>>>>>>
>>>>>> Per the specification of RFC 3490:
>>>>>> ==================================
>>>>>> [section 2]
>>>>>> "A label is an individual part of a domain name. Labels are usually
>>>>>> shown separated by dots; for example, the domain name
>>>>>> "www.example.com" is composed of three labels: "www", "example", and
>>>>>> "com". (The zero-length root label described in [STD13], which can
>>>>>> be explicit as in "www.example.com." or implicit as in
>>>>>> "www.example.com", is not considered a label in this
>>>>>> specification.)"
>>>>>>
>>>>>> "An "internationalized label" is a label to which the ToASCII
>>>>>> operation (see section 4) can be applied without failing (with the
>>>>>> UseSTD3ASCIIRules flag unset). ...
>>>>>> Although most Unicode characters can appear in
>>>>>> internationalized labels, ToASCII will fail for some input strings,
>>>>>> and such strings are not valid internationalized labels."
>>>>>>
>>>>>> "An "internationalized domain name" (IDN) is a domain name in which
>>>>>> every label is an internationalized label."
>>>>>>
>>>>>> [Section 4.1]
>>>>>> "ToASCII consists of the following steps:
>>>>>>
>>>>>> ...
>>>>>>
>>>>>> 8. Verify that the number of code points is in the range 1 to 63
>>>>>> inclusive."
>>>>>>
>>>>>>
>>>>>> Here are the questions:
>>>>>> 1. whether "example..com" is an valid IDN?
>>>>>> As dot is used as label separators, there are three labels,
>>>>>> "example", "", "com". Per RFC 3490, "" is not a valid label. Hence,
>>>>>> "example..com" is not a valid IDN.
>>>>>>
>>>>>> We need to address the issue in IDN.
>>>>>>
>>>>>> 2. whether "xyz." is an valid IDN?
>>>>>> It's an gray area, I think. We can treat the trailing "." as root
>>>>>> label, or a label separator.
>>>>>> If the trailing "." is treated as label separator, "xyz." is
>>>>>> invalid
>>>>>> per RFC 3490.
>>>>>> if the trailing "." is treated as root label, what's the expected
>>>>>> return value of IDN.toASCII("xyz.")? I think the return value can be
>>>>>> either "xyz." or "xyz". The current implementation returns "xyz".
>>>>>>
>>>>>> We may need not to update the implementation if tailing "." is
>>>>>> treated as root label.
>>>>>>
>>>>>> 3. whether "." is an valid IDN?
>>>>>> It's an gray area again, I think.
>>>>>> As above, if the trailing "." is treated as root label, I think
>>>>>> the
>>>>>> return value can be either "." or "". The current implementation
>>>>>> throws
>>>>>> a StringIndexOutOfBoundsException.
>>>>>>
>>>>>> However, what empty domain name ("") really means? I would
>>>>>> prefer to
>>>>>> return "." for "." instead.
>>>>>>
>>>>>> We need to address the issue in IDN.
>>>>>>
>>>>>>
>>>>>> Here comes the solution, the IDN.toASCII() returns:
>>>>>> 1. "." for ".";
>>>>>> 2. "xyz" for "xyz.";
>>>>>> 3. IAE for "example..com".
>>>>>>
>>>>>> Does it make sense?
>>>>>>
>>>>>> Thanks,
>>>>>> Xuelei
>>>>>>
>>>>>>
>>>>>> On 8/7/2013 1:35 AM, Michael McMahon wrote:
>>>>>>> I don't really understand the reason for the restriction in
>>>>>>> SNIHostName
>>>>>>> But, I guess that is where it should be enforced if it is required.
>>>>>>>
>>>>>>> Michael.
>>>>>>>
>>>>>>> On 06/08/13 17:43, Dmitry Samersoff wrote:
>>>>>>>> Xuelei,
>>>>>>>>
>>>>>>>> . (dot) is perfectly valid domain name and it means root domain so
>>>>>>>> com.
>>>>>>>> is valid domain name as well.
>>>>>>>>
>>>>>>>> It thinks to me that in context of methods your change we should
>>>>>>>> ignore
>>>>>>>> trailing dots, rather than throw exception.
>>>>>>>>
>>>>>>>> -Dmitry
>>>>>>>>
>>>>>>>>
>>>>>>>>
>>>>>>>> On 2013-08-06 15:44, Xuelei Fan wrote:
>>>>>>>>> Hi,
>>>>>>>>>
>>>>>>>>> Please review the bug fix to strict the illegal input checking in
>>>>>>>>> IDN.
>>>>>>>>>
>>>>>>>>> webrev: http://cr.openjdk.java.net./~xuelei/8020842/webrev.00/
>>>>>>>>>
>>>>>>>>> Here is two test cases, which are expected to get IAE.
>>>>>>>>>
>>>>>>>>> Case 1:
>>>>>>>>> String host = IDN.toASCII(".", IDN.USE_STD3_ASCII_RULES);
>>>>>>>>> Exception in thread "main"
>>>>>>>>> java.lang.StringIndexOutOfBoundsException:
>>>>>>>>> String index out of range: 0
>>>>>>>>> at java.lang.StringBuffer.charAt(StringBuffer.java:204)
>>>>>>>>> at java.net.IDN.toASCIIInternal(IDN.java:279)
>>>>>>>>> at java.net.IDN.toASCII(IDN.java:118)
>>>>>>>>>
>>>>>>>>> Case 2:
>>>>>>>>> String host = IDN.toASCII("com.", IDN.USE_STD3_ASCII_RULES);
>>>>>>>>>
>>>>>>>>> Thanks,
>>>>>>>>> Xuelei
>>>>>>>>>
>>>
>>
>
--
Dmitry Samersoff
Oracle Java development team, Saint Petersburg, Russia
* I would love to change the world, but they won't give me the source code.
From Xuelei.Fan at Oracle.Com Fri Aug 9 07:09:33 2013
From: Xuelei.Fan at Oracle.Com (Xuelei Fan)
Date: Fri, 9 Aug 2013 15:09:33 +0800
Subject: Code review request,
8020842 IDN do not throw IAE when hostname ends with a trailing dot
In-Reply-To: <52048753.4040208@oracle.com>
References: <5200E1B9.7070002@oracle.com> <520127A3.3060405@oracle.com>
<520133C7.20401@oracle.com> <5202411F.2010706@oracle.com>
<52025434.8070200@oracle.com> <5202561A.5040908@oracle.com>
<52025726.8060203@oracle.com> <520264F1.1090802@oracle.com>
<52043AB3.6060704@oracle.com> <52048753.4040208@oracle.com>
Message-ID:
On Aug 9, 2013, at 14:08, Dmitry Samersoff wrote:
> Xuelei,
>
> 119 p = q + 1;
> 120 if (p < input.length() || q == (input.length() - 1)) {
>
> Could be simplified to:
>
> q <= input.length()-1
>
It's cool!
Xuelei
> -Dmitry
>
> On 2013-08-09 04:41, Xuelei Fan wrote:
>> Ping.
>>
>> Thanks,
>> Xuelei
>>
>> On 8/7/2013 11:17 PM, Xuelei Fan wrote:
>>> Please review the new update:
>>>
>>> http://cr.openjdk.java.net./~xuelei/8020842/webrev.01/
>>>
>>> With this update, "com." is valid (return "com."); "." and
>>> "example..com" are invalid. And IAE will be thrown for invalid IDN.
>>>
>>> Thanks,
>>> Xuelei
>>>
>>> On 8/7/2013 10:18 PM, Michael McMahon wrote:
>>>> On 07/08/13 15:13, Xuelei Fan wrote:
>>>>> On 8/7/2013 10:05 PM, Michael McMahon wrote:
>>>>>> Resolvers seem to accept queries using trailing dots.
>>>>>>
>>>>>> eg nslookup www.oracle.com.
>>>>>>
>>>>>> or InetAddress.getByName("www.oracle.com.");
>>>>>>
>>>>>> The part of RFC3490 quoted below seems to me to be saying
>>>>>> that the empty label implied by the trailing dot is not regarded
>>>>>> as a label so that you don't end up calling toAscii() or toUnicode()
>>>>>> with an empty string. I don't think it's saying the trailing dot can't
>>>>>> be there.
>>>>> It makes sense.
>>>>>
>>>>> What's your preference to return for IDN.toASCII("www.oracle.com."),
>>>>> "www.oracle.com." or "www.oracle.com"? The current returned value is
>>>>> "www.oracle.com". I would like to reserve the behavior in this update.
>>>>
>>>> My opinion is to keep it as at present ie. "www.oracle.com."
>>>>
>>>> Michael
>>>>
>>>>> I think we are on same page soon.
>>>>>
>>>>> Thanks,
>>>>> Xuelei
>>>>>
>>>>>> Michael
>>>>>>
>>>>>> On 07/08/13 13:44, Xuelei Fan wrote:
>>>>>>> On 8/7/2013 12:06 AM, Matthew Hall wrote:
>>>>>>>> Trailing dots are allowed in plain DNS (thus almost surely in IDN),
>>>>>>>> and the single dot represents the root zone. So you have to be
>>>>>>>> careful making this sort of change to check the DNS RFCs first.
>>>>>>> That's the first question we need to answer, whether IDN allow tailling
>>>>>>> dots ("com."), zero-length root label ("."), and zero-length label ("",
>>>>>>> for example ""example..com")?
>>>>>>>
>>>>>>> Per the specification of IDN.toASCII():
>>>>>>> =======================================
>>>>>>> "ToASCII operation can fail. ToASCII fails if any step of it fails. If
>>>>>>> ToASCII operation fails, an IllegalArgumentException will be thrown. In
>>>>>>> this case, the input string should not be used in an internationalized
>>>>>>> domain name.
>>>>>>>
>>>>>>> A label is an individual part of a domain name. The original ToASCII
>>>>>>> operation, as defined in RFC 3490, only operates on a single label.
>>>>>>> This
>>>>>>> method can handle both label and entire domain name, by assuming that
>>>>>>> labels in a domain name are always separated by dots. ...
>>>>>>>
>>>>>>> Throws IllegalArgumentException - if the input string doesn't
>>>>>>> conform to
>>>>>>> RFC 3490 specification"
>>>>>>>
>>>>>>> Per the specification of RFC 3490:
>>>>>>> ==================================
>>>>>>> [section 2]
>>>>>>> "A label is an individual part of a domain name. Labels are usually
>>>>>>> shown separated by dots; for example, the domain name
>>>>>>> "www.example.com" is composed of three labels: "www", "example", and
>>>>>>> "com". (The zero-length root label described in [STD13], which can
>>>>>>> be explicit as in "www.example.com." or implicit as in
>>>>>>> "www.example.com", is not considered a label in this
>>>>>>> specification.)"
>>>>>>>
>>>>>>> "An "internationalized label" is a label to which the ToASCII
>>>>>>> operation (see section 4) can be applied without failing (with the
>>>>>>> UseSTD3ASCIIRules flag unset). ...
>>>>>>> Although most Unicode characters can appear in
>>>>>>> internationalized labels, ToASCII will fail for some input strings,
>>>>>>> and such strings are not valid internationalized labels."
>>>>>>>
>>>>>>> "An "internationalized domain name" (IDN) is a domain name in which
>>>>>>> every label is an internationalized label."
>>>>>>>
>>>>>>> [Section 4.1]
>>>>>>> "ToASCII consists of the following steps:
>>>>>>>
>>>>>>> ...
>>>>>>>
>>>>>>> 8. Verify that the number of code points is in the range 1 to 63
>>>>>>> inclusive."
>>>>>>>
>>>>>>>
>>>>>>> Here are the questions:
>>>>>>> 1. whether "example..com" is an valid IDN?
>>>>>>> As dot is used as label separators, there are three labels,
>>>>>>> "example", "", "com". Per RFC 3490, "" is not a valid label. Hence,
>>>>>>> "example..com" is not a valid IDN.
>>>>>>>
>>>>>>> We need to address the issue in IDN.
>>>>>>>
>>>>>>> 2. whether "xyz." is an valid IDN?
>>>>>>> It's an gray area, I think. We can treat the trailing "." as root
>>>>>>> label, or a label separator.
>>>>>>> If the trailing "." is treated as label separator, "xyz." is
>>>>>>> invalid
>>>>>>> per RFC 3490.
>>>>>>> if the trailing "." is treated as root label, what's the expected
>>>>>>> return value of IDN.toASCII("xyz.")? I think the return value can be
>>>>>>> either "xyz." or "xyz". The current implementation returns "xyz".
>>>>>>>
>>>>>>> We may need not to update the implementation if tailing "." is
>>>>>>> treated as root label.
>>>>>>>
>>>>>>> 3. whether "." is an valid IDN?
>>>>>>> It's an gray area again, I think.
>>>>>>> As above, if the trailing "." is treated as root label, I think
>>>>>>> the
>>>>>>> return value can be either "." or "". The current implementation
>>>>>>> throws
>>>>>>> a StringIndexOutOfBoundsException.
>>>>>>>
>>>>>>> However, what empty domain name ("") really means? I would
>>>>>>> prefer to
>>>>>>> return "." for "." instead.
>>>>>>>
>>>>>>> We need to address the issue in IDN.
>>>>>>>
>>>>>>>
>>>>>>> Here comes the solution, the IDN.toASCII() returns:
>>>>>>> 1. "." for ".";
>>>>>>> 2. "xyz" for "xyz.";
>>>>>>> 3. IAE for "example..com".
>>>>>>>
>>>>>>> Does it make sense?
>>>>>>>
>>>>>>> Thanks,
>>>>>>> Xuelei
>>>>>>>
>>>>>>>
>>>>>>> On 8/7/2013 1:35 AM, Michael McMahon wrote:
>>>>>>>> I don't really understand the reason for the restriction in
>>>>>>>> SNIHostName
>>>>>>>> But, I guess that is where it should be enforced if it is required.
>>>>>>>>
>>>>>>>> Michael.
>>>>>>>>
>>>>>>>> On 06/08/13 17:43, Dmitry Samersoff wrote:
>>>>>>>>> Xuelei,
>>>>>>>>>
>>>>>>>>> . (dot) is perfectly valid domain name and it means root domain so
>>>>>>>>> com.
>>>>>>>>> is valid domain name as well.
>>>>>>>>>
>>>>>>>>> It thinks to me that in context of methods your change we should
>>>>>>>>> ignore
>>>>>>>>> trailing dots, rather than throw exception.
>>>>>>>>>
>>>>>>>>> -Dmitry
>>>>>>>>>
>>>>>>>>>
>>>>>>>>>
>>>>>>>>> On 2013-08-06 15:44, Xuelei Fan wrote:
>>>>>>>>>> Hi,
>>>>>>>>>>
>>>>>>>>>> Please review the bug fix to strict the illegal input checking in
>>>>>>>>>> IDN.
>>>>>>>>>>
>>>>>>>>>> webrev: http://cr.openjdk.java.net./~xuelei/8020842/webrev.00/
>>>>>>>>>>
>>>>>>>>>> Here is two test cases, which are expected to get IAE.
>>>>>>>>>>
>>>>>>>>>> Case 1:
>>>>>>>>>> String host = IDN.toASCII(".", IDN.USE_STD3_ASCII_RULES);
>>>>>>>>>> Exception in thread "main"
>>>>>>>>>> java.lang.StringIndexOutOfBoundsException:
>>>>>>>>>> String index out of range: 0
>>>>>>>>>> at java.lang.StringBuffer.charAt(StringBuffer.java:204)
>>>>>>>>>> at java.net.IDN.toASCIIInternal(IDN.java:279)
>>>>>>>>>> at java.net.IDN.toASCII(IDN.java:118)
>>>>>>>>>>
>>>>>>>>>> Case 2:
>>>>>>>>>> String host = IDN.toASCII("com.", IDN.USE_STD3_ASCII_RULES);
>>>>>>>>>>
>>>>>>>>>> Thanks,
>>>>>>>>>> Xuelei
>
>
> --
> Dmitry Samersoff
> Oracle Java development team, Saint Petersburg, Russia
> * I would love to change the world, but they won't give me the source code.
From xueming.shen at oracle.com Fri Aug 9 06:39:17 2013
From: xueming.shen at oracle.com (xueming.shen at oracle.com)
Date: Fri, 09 Aug 2013 06:39:17 +0000
Subject: hg: jdk8/tl/jdk: 6614237: missing codepage Cp290 at java runtime
Message-ID: <20130809063942.0D9734873B@hg.openjdk.java.net>
Changeset: 54f0ccdd9ad7
Author: sherman
Date: 2013-08-08 23:40 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/54f0ccdd9ad7
6614237: missing codepage Cp290 at java runtime
Summary: to add charset Cp290 and Cp300
Reviewed-by: okutsu
+ make/tools/CharsetMapping/IBM290.c2b
+ make/tools/CharsetMapping/IBM290.map
+ make/tools/CharsetMapping/IBM300.c2b
+ make/tools/CharsetMapping/IBM300.map
! make/tools/CharsetMapping/dbcs
! make/tools/CharsetMapping/extsbcs
! make/tools/src/build/tools/charsetmapping/DBCS.java
! src/share/classes/sun/nio/cs/ext/ExtendedCharsets.java
From paul.sandoz at oracle.com Fri Aug 9 09:55:25 2013
From: paul.sandoz at oracle.com (paul.sandoz at oracle.com)
Date: Fri, 09 Aug 2013 09:55:25 +0000
Subject: hg: jdk8/tl/jdk: 8022326: Spliterator for values of
j.u.c.ConcurrentSkipListMap does not report ORDERED
Message-ID: <20130809095620.E542848740@hg.openjdk.java.net>
Changeset: c29ca19cb816
Author: psandoz
Date: 2013-08-09 11:44 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/c29ca19cb816
8022326: Spliterator for values of j.u.c.ConcurrentSkipListMap does not report ORDERED
Reviewed-by: martin, chegar
! src/share/classes/java/util/TreeMap.java
! src/share/classes/java/util/concurrent/ConcurrentSkipListMap.java
! test/java/util/Spliterator/SpliteratorCharacteristics.java
From michael.x.mcmahon at oracle.com Fri Aug 9 11:31:30 2013
From: michael.x.mcmahon at oracle.com (Michael McMahon)
Date: Fri, 09 Aug 2013 12:31:30 +0100
Subject: Code review request, 8020842 IDN do not throw IAE when hostname
ends with a trailing dot
In-Reply-To: <52046FF3.1040903@oracle.com>
References: <5200E1B9.7070002@oracle.com> <520127A3.3060405@oracle.com>
<520133C7.20401@oracle.com> <5202411F.2010706@oracle.com>
<52025434.8070200@oracle.com> <5202561A.5040908@oracle.com>
<52025726.8060203@oracle.com> <520264F1.1090802@oracle.com>
<52043AB3.6060704@oracle.com> <5204446D.7030603@oracle.com>
<520447BD.30206@oracle.com> <52045070.1000506@oracle.com>
<520458DF.1030502@oracle.com> <52046FF3.1040903@oracle.com>
Message-ID: <5204D312.4030209@oracle.com>
I don't see how this fixes the original problem as the SNIHostName spec
still doesn't like hostnames with a trailing '.'
I'd prefer to check first where that requirement is coming from, if it is
actually necessary, and if not consider removing it from SNIHostName.
If it is necessary, then the check should be implemented in SNIHostName.
Michael
On 09/08/13 05:28, Xuelei Fan wrote:
> Thanks for your feedback and suggestions.
>
> Here is the new webrev:
> http://cr.openjdk.java.net/~xuelei/8020842/webrev.02/
>
> "." is regarded as valid IDN in this update.
>
> Thanks,
> Xuelei
>
> On 8/9/2013 10:50 AM, Xuelei Fan wrote:
>> On 8/9/2013 10:14 AM, Weijun Wang wrote:
>>>
>>> On 8/9/13 9:37 AM, Xuelei Fan wrote:
>>>> On 8/9/2013 9:22 AM, Weijun Wang wrote:
>>>>> I tried nslookup. Those with ".." inside are illegal,
>>>>>
>>>>> $ nslookup com..
>>>>> nslookup: 'com..' is not a legal name (empty label)
>>>>>
>>>>> but
>>>>>
>>>>> $ nslookup .
>>>>> Server: 192.168.10.1
>>>>> Address: 192.168.10.1#53
>>>>>
>>>>> Non-authoritative answer:
>>>>> *** Can't find .: No answer
>>>>>
>>>> Thanks for the testing. The behaviors are the same as this fix now.
>>> No exactly. It seems nslookup still regards "." legal but just cannot
>>> find an IP for it.
>>>
>> I'm not sure whether a root domain name can be stand alone. Root label
>> is not considered as a label in IDN. I think it is safe to regard that
>> "." is not a valid IDN as it contains no label. Anyway, it is a corner
>> case.
>>
>> There are many online IDN conversion web services, some of them can
>> convert ".", some of the cannot. In the present implementation, we
>> cannot recognize ".", and IDN.toASCII(".") throws
>> StringIndexOutOfBoundsException. With this fix, I was wondering IAE is
>> a better exception for IDN.toASCII(".").
>>
>>>> Learn something new today to use nslookup.
>>>>
>>>>> Also, since this bug was originally about SNIHostName, do you need to
>>>>> add some extra restriction there to reject "oracle.com." things?
>>>>>
>>>> No, we cannot restrict the format of IDN in SNIHostName more than in
>>>> IDN. However, we may need to rethink about the comparing of two IDN, for
>>>> example, "example.com." should equal to "example.com". I want to
>>>> consider it in another bug.
>>> Not sure. Does the spec say IDN and SNIHostName are equivalent sets? And
>>> it's not one is another's subset?
>>>
>> Per TLS specification, host name in SNI is an IDN. The spec of
>> SNIHostname says, "hostname is not a valid Internationalized Domain Name
>> (IDN) compliant with the RFC 3490 specification". The spec in
>> SNIHostName has the same means as IDN. I won't want to add additional
>> restrict beyond the specification of an IDN.
>>
>> Xuelei
>>
>>>> Can I push the changeset?
>>> I think it's better to ask someone in the networking team to make the
>>> suggestion. From what I read Michael in this thread, he does not seem
>>> totally agreed with your code changes (at least not the 00 version).
>>>
>>> Thanks
>>> Max
>>>
>>>> Thanks,
>>>> Xuelei
>>>>
>>>>> Thanks
>>>>> Max
>>>>>
>>>>> On 8/9/13 8:41 AM, Xuelei Fan wrote:
>>>>>> Ping.
>>>>>>
>>>>>> Thanks,
>>>>>> Xuelei
>>>>>>
>>>>>> On 8/7/2013 11:17 PM, Xuelei Fan wrote:
>>>>>>> Please review the new update:
>>>>>>>
>>>>>>> http://cr.openjdk.java.net./~xuelei/8020842/webrev.01/
>>>>>>>
>>>>>>> With this update, "com." is valid (return "com."); "." and
>>>>>>> "example..com" are invalid. And IAE will be thrown for invalid IDN.
>>>>>>>
>>>>>>> Thanks,
>>>>>>> Xuelei
>>>>>>>
From chris.hegarty at oracle.com Fri Aug 9 12:50:52 2013
From: chris.hegarty at oracle.com (chris.hegarty at oracle.com)
Date: Fri, 09 Aug 2013 12:50:52 +0000
Subject: hg: jdk8/tl/jdk: 8022661: InetAddress.writeObject() performs flush()
on object output stream
Message-ID: <20130809125140.B289D48748@hg.openjdk.java.net>
Changeset: 84004d0e3fdd
Author: chegar
Date: 2013-08-09 13:50 +0100
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/84004d0e3fdd
8022661: InetAddress.writeObject() performs flush() on object output stream
Reviewed-by: michaelm, alanb
! src/share/classes/java/net/InetAddress.java
From sean.mullan at oracle.com Fri Aug 9 14:52:30 2013
From: sean.mullan at oracle.com (Sean Mullan)
Date: Fri, 09 Aug 2013 07:52:30 -0700
Subject: Code review request, 8022487 DEREncodedKeyValue.supportedKeyTypes
should be private
In-Reply-To: <5204725F.9040009@oracle.com>
References: <5204725F.9040009@oracle.com>
Message-ID: <5205022E.5040209@oracle.com>
Looks fine to me.
--Sean
On 08/08/2013 09:38 PM, Xuelei Fan wrote:
> Hi,
>
> Please review this simple fix in xml security implementation.
>
> webrev: http://cr.openjdk.java.net/~xuelei/8022487/webrev.00/
>
> In
> com/sun/org/apache/xml/internal/security/keys/content/DEREncodedKeyValue.java,
> the attribute is declared as public:
>
> public static final String supportedKeyTypes[] = { "RSA", "DSA", "EC"};
>
> But it is never used in other places. It's better to declare it as
> private to minimize the scope of this variable.
>
> The fix is pretty simple:
>
> - public static final String supportedKeyTypes[] = { "RSA", "DSA", "EC"};
> + private static final String supportedKeyTypes[] = { "RSA", "DSA",
> "EC"};
>
> Thanks,
> Xuelei
>
From xuelei.fan at oracle.com Fri Aug 9 15:25:53 2013
From: xuelei.fan at oracle.com (Xuelei Fan)
Date: Fri, 09 Aug 2013 23:25:53 +0800
Subject: Code review request, 8020842 IDN do not throw IAE when hostname
ends with a trailing dot
In-Reply-To: <5204D312.4030209@oracle.com>
References: <5200E1B9.7070002@oracle.com> <520127A3.3060405@oracle.com>
<520133C7.20401@oracle.com> <5202411F.2010706@oracle.com>
<52025434.8070200@oracle.com> <5202561A.5040908@oracle.com>
<52025726.8060203@oracle.com> <520264F1.1090802@oracle.com>
<52043AB3.6060704@oracle.com> <5204446D.7030603@oracle.com>
<520447BD.30206@oracle.com> <52045070.1000506@oracle.com>
<520458DF.1030502@oracle.com> <52046FF3.1040903@oracle.com>
<5204D312.4030209@oracle.com>
Message-ID: <52050A01.3030503@oracle.com>
On 8/9/2013 7:31 PM, Michael McMahon wrote:
> I don't see how this fixes the original problem as the SNIHostName spec
> still doesn't like hostnames with a trailing '.'
>
The bug description did not reflect the IDN specification correctly. If
"com." is a valid IDN, SNIHostName should accept it an an valid
hostname. The host name in SNIHostName is nothing more or less than an
standard IDN.
I added a comment in the bug: "com." and "." are valid IDN according the
IDN and domain name specifications. I will contact the bug reporter
about this point.
Xuelei
> I'd prefer to check first where that requirement is coming from, if it is
> actually necessary, and if not consider removing it from SNIHostName.
> If it is necessary, then the check should be implemented in SNIHostName.
>
> Michael
>
> On 09/08/13 05:28, Xuelei Fan wrote:
>> Thanks for your feedback and suggestions.
>>
>> Here is the new webrev:
>> http://cr.openjdk.java.net/~xuelei/8020842/webrev.02/
>>
>> "." is regarded as valid IDN in this update.
>>
>> Thanks,
>> Xuelei
>>
>> On 8/9/2013 10:50 AM, Xuelei Fan wrote:
>>> On 8/9/2013 10:14 AM, Weijun Wang wrote:
>>>>
>>>> On 8/9/13 9:37 AM, Xuelei Fan wrote:
>>>>> On 8/9/2013 9:22 AM, Weijun Wang wrote:
>>>>>> I tried nslookup. Those with ".." inside are illegal,
>>>>>>
>>>>>> $ nslookup com..
>>>>>> nslookup: 'com..' is not a legal name (empty label)
>>>>>>
>>>>>> but
>>>>>>
>>>>>> $ nslookup .
>>>>>> Server: 192.168.10.1
>>>>>> Address: 192.168.10.1#53
>>>>>>
>>>>>> Non-authoritative answer:
>>>>>> *** Can't find .: No answer
>>>>>>
>>>>> Thanks for the testing. The behaviors are the same as this fix now.
>>>> No exactly. It seems nslookup still regards "." legal but just cannot
>>>> find an IP for it.
>>>>
>>> I'm not sure whether a root domain name can be stand alone. Root label
>>> is not considered as a label in IDN. I think it is safe to regard that
>>> "." is not a valid IDN as it contains no label. Anyway, it is a corner
>>> case.
>>>
>>> There are many online IDN conversion web services, some of them can
>>> convert ".", some of the cannot. In the present implementation, we
>>> cannot recognize ".", and IDN.toASCII(".") throws
>>> StringIndexOutOfBoundsException. With this fix, I was wondering IAE is
>>> a better exception for IDN.toASCII(".").
>>>
>>>>> Learn something new today to use nslookup.
>>>>>
>>>>>> Also, since this bug was originally about SNIHostName, do you need to
>>>>>> add some extra restriction there to reject "oracle.com." things?
>>>>>>
>>>>> No, we cannot restrict the format of IDN in SNIHostName more than in
>>>>> IDN. However, we may need to rethink about the comparing of two
>>>>> IDN, for
>>>>> example, "example.com." should equal to "example.com". I want to
>>>>> consider it in another bug.
>>>> Not sure. Does the spec say IDN and SNIHostName are equivalent sets?
>>>> And
>>>> it's not one is another's subset?
>>>>
>>> Per TLS specification, host name in SNI is an IDN. The spec of
>>> SNIHostname says, "hostname is not a valid Internationalized Domain Name
>>> (IDN) compliant with the RFC 3490 specification". The spec in
>>> SNIHostName has the same means as IDN. I won't want to add additional
>>> restrict beyond the specification of an IDN.
>>>
>>> Xuelei
>>>
>>>>> Can I push the changeset?
>>>> I think it's better to ask someone in the networking team to make the
>>>> suggestion. From what I read Michael in this thread, he does not seem
>>>> totally agreed with your code changes (at least not the 00 version).
>>>>
>>>> Thanks
>>>> Max
>>>>
>>>>> Thanks,
>>>>> Xuelei
>>>>>
>>>>>> Thanks
>>>>>> Max
>>>>>>
>>>>>> On 8/9/13 8:41 AM, Xuelei Fan wrote:
>>>>>>> Ping.
>>>>>>>
>>>>>>> Thanks,
>>>>>>> Xuelei
>>>>>>>
>>>>>>> On 8/7/2013 11:17 PM, Xuelei Fan wrote:
>>>>>>>> Please review the new update:
>>>>>>>>
>>>>>>>> http://cr.openjdk.java.net./~xuelei/8020842/webrev.01/
>>>>>>>>
>>>>>>>> With this update, "com." is valid (return "com."); "." and
>>>>>>>> "example..com" are invalid. And IAE will be thrown for invalid
>>>>>>>> IDN.
>>>>>>>>
>>>>>>>> Thanks,
>>>>>>>> Xuelei
>>>>>>>>
>
From chris.hegarty at oracle.com Fri Aug 9 16:57:08 2013
From: chris.hegarty at oracle.com (chris.hegarty at oracle.com)
Date: Fri, 09 Aug 2013 16:57:08 +0000
Subject: hg: jdk8/tl/jdk: 8022724: lint warnings in j.u.concurrent packages
Message-ID: <20130809165838.A48BB48759@hg.openjdk.java.net>
Changeset: ce1c874903cb
Author: dl
Date: 2013-08-09 17:56 +0100
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/ce1c874903cb
8022724: lint warnings in j.u.concurrent packages
Reviewed-by: chegar, lancea, darcy
! src/share/classes/java/util/concurrent/CompletableFuture.java
! src/share/classes/java/util/concurrent/ConcurrentHashMap.java
! src/share/classes/java/util/concurrent/atomic/Striped64.java
From dan.xu at oracle.com Fri Aug 9 17:55:59 2013
From: dan.xu at oracle.com (dan.xu at oracle.com)
Date: Fri, 09 Aug 2013 17:55:59 +0000
Subject: hg: jdk8/tl/jdk: 8021977: Opening a file using java.io can throw
IOException on Windows
Message-ID: <20130809175620.B80534875C@hg.openjdk.java.net>
Changeset: 03822f2389bf
Author: dxu
Date: 2013-08-09 10:55 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/03822f2389bf
8021977: Opening a file using java.io can throw IOException on Windows
Summary: Remove IOException related error-handling code for backward compatibility
Reviewed-by: alanb, lancea, mr
! src/windows/native/java/io/io_util_md.c
From xueming.shen at oracle.com Fri Aug 9 19:38:03 2013
From: xueming.shen at oracle.com (xueming.shen at oracle.com)
Date: Fri, 09 Aug 2013 19:38:03 +0000
Subject: hg: jdk8/tl/jdk: 8020054: (tz) Support tzdata2013d
Message-ID: <20130809193841.0F87148762@hg.openjdk.java.net>
Changeset: a7c341f30747
Author: sherman
Date: 2013-08-09 12:40 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/a7c341f30747
8020054: (tz) Support tzdata2013d
Summary: update the jdk8 tz data to version 2013d
Reviewed-by: coffeys, peytoia
! make/sun/javazic/tzdata/VERSION
! make/sun/javazic/tzdata/africa
! make/sun/javazic/tzdata/antarctica
! make/sun/javazic/tzdata/asia
! make/sun/javazic/tzdata/australasia
! make/sun/javazic/tzdata/backward
! make/sun/javazic/tzdata/etcetera
! make/sun/javazic/tzdata/europe
! make/sun/javazic/tzdata/factory
! make/sun/javazic/tzdata/iso3166.tab
! make/sun/javazic/tzdata/leapseconds
! make/sun/javazic/tzdata/northamerica
! make/sun/javazic/tzdata/pacificnew
! make/sun/javazic/tzdata/solar87
! make/sun/javazic/tzdata/solar88
! make/sun/javazic/tzdata/solar89
! make/sun/javazic/tzdata/southamerica
! make/sun/javazic/tzdata/systemv
! make/sun/javazic/tzdata/zone.tab
! test/sun/util/calendar/zi/tzdata/VERSION
! test/sun/util/calendar/zi/tzdata/africa
! test/sun/util/calendar/zi/tzdata/antarctica
! test/sun/util/calendar/zi/tzdata/asia
! test/sun/util/calendar/zi/tzdata/australasia
! test/sun/util/calendar/zi/tzdata/backward
! test/sun/util/calendar/zi/tzdata/etcetera
! test/sun/util/calendar/zi/tzdata/europe
! test/sun/util/calendar/zi/tzdata/factory
! test/sun/util/calendar/zi/tzdata/iso3166.tab
! test/sun/util/calendar/zi/tzdata/leapseconds
! test/sun/util/calendar/zi/tzdata/northamerica
! test/sun/util/calendar/zi/tzdata/pacificnew
! test/sun/util/calendar/zi/tzdata/solar87
! test/sun/util/calendar/zi/tzdata/solar88
! test/sun/util/calendar/zi/tzdata/solar89
! test/sun/util/calendar/zi/tzdata/southamerica
! test/sun/util/calendar/zi/tzdata/systemv
! test/sun/util/calendar/zi/tzdata/zone.tab
From huizhe.wang at oracle.com Fri Aug 9 19:42:39 2013
From: huizhe.wang at oracle.com (huizhe.wang at oracle.com)
Date: Fri, 09 Aug 2013 19:42:39 +0000
Subject: hg: jdk8/tl/jaxp: 8022548: SPECJVM2008 has errors introduced in
7u40-b34
Message-ID: <20130809194247.32C3B48763@hg.openjdk.java.net>
Changeset: 4e23bc205d9d
Author: joehw
Date: 2013-08-09 12:10 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jaxp/rev/4e23bc205d9d
8022548: SPECJVM2008 has errors introduced in 7u40-b34
Reviewed-by: chegar, lancea
! src/com/sun/org/apache/xerces/internal/parsers/DTDConfiguration.java
! src/com/sun/org/apache/xerces/internal/parsers/NonValidatingConfiguration.java
! src/com/sun/org/apache/xerces/internal/parsers/SAXParser.java
From huizhe.wang at oracle.com Fri Aug 9 19:54:51 2013
From: huizhe.wang at oracle.com (huizhe.wang at oracle.com)
Date: Fri, 09 Aug 2013 19:54:51 +0000
Subject: hg: jdk8/tl/jdk: 8022548: SPECJVM2008 has errors introduced in
7u40-b34
Message-ID: <20130809195532.B759848766@hg.openjdk.java.net>
Changeset: 8f01ccb0c981
Author: joehw
Date: 2013-08-09 12:53 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/8f01ccb0c981
8022548: SPECJVM2008 has errors introduced in 7u40-b34
Reviewed-by: chegar, lancea
+ test/javax/xml/jaxp/parsers/8022548/JDK8022548.xml
+ test/javax/xml/jaxp/parsers/8022548/JDK8022548.xsl
+ test/javax/xml/jaxp/parsers/8022548/TestBase.java
+ test/javax/xml/jaxp/parsers/8022548/XOMParserTest.java
From kumar.x.srinivasan at oracle.com Fri Aug 9 22:36:04 2013
From: kumar.x.srinivasan at oracle.com (kumar.x.srinivasan at oracle.com)
Date: Fri, 09 Aug 2013 22:36:04 +0000
Subject: hg: jdk8/tl/langtools: 8022161: javac Null Pointer Exception in
Enter.visitTopLevel
Message-ID: <20130809223615.468C748776@hg.openjdk.java.net>
Changeset: d601238641e6
Author: ksrini
Date: 2013-08-09 15:01 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/d601238641e6
8022161: javac Null Pointer Exception in Enter.visitTopLevel
Reviewed-by: jjg, vromero, jlahoda
! src/share/classes/com/sun/tools/javac/comp/Enter.java
! test/tools/javac/TestPkgInfo.java
From xuelei.fan at oracle.com Sat Aug 10 01:13:48 2013
From: xuelei.fan at oracle.com (Xuelei Fan)
Date: Sat, 10 Aug 2013 09:13:48 +0800
Subject: Code review request, 8020842 IDN do not throw IAE when hostname
ends with a trailing dot
In-Reply-To: <52050A01.3030503@oracle.com>
References: <5200E1B9.7070002@oracle.com> <520127A3.3060405@oracle.com>
<520133C7.20401@oracle.com> <5202411F.2010706@oracle.com>
<52025434.8070200@oracle.com> <5202561A.5040908@oracle.com>
<52025726.8060203@oracle.com> <520264F1.1090802@oracle.com>
<52043AB3.6060704@oracle.com> <5204446D.7030603@oracle.com>
<520447BD.30206@oracle.com> <52045070.1000506@oracle.com>
<520458DF.1030502@oracle.com> <52046FF3.1040903@oracle.com>
<5204D312.4030209@oracle.com> <52050A01.3030503@oracle.com>
Message-ID: <520593CC.4010608@oracle.com>
Hi Michael,
I plan to address this issue in SNIHostName. I have filled another two
the potential bugs in IDN.
Thank you, and other people, for the feedback.
Thanks,
Xuelei
On 8/9/2013 11:25 PM, Xuelei Fan wrote:
> On 8/9/2013 7:31 PM, Michael McMahon wrote:
>> I don't see how this fixes the original problem as the SNIHostName spec
>> still doesn't like hostnames with a trailing '.'
>>
> The bug description did not reflect the IDN specification correctly. If
> "com." is a valid IDN, SNIHostName should accept it an an valid
> hostname. The host name in SNIHostName is nothing more or less than an
> standard IDN.
>
> I added a comment in the bug: "com." and "." are valid IDN according the
> IDN and domain name specifications. I will contact the bug reporter
> about this point.
>
> Xuelei
>
>> I'd prefer to check first where that requirement is coming from, if it is
>> actually necessary, and if not consider removing it from SNIHostName.
>> If it is necessary, then the check should be implemented in SNIHostName.
>>
>> Michael
>>
>> On 09/08/13 05:28, Xuelei Fan wrote:
>>> Thanks for your feedback and suggestions.
>>>
>>> Here is the new webrev:
>>> http://cr.openjdk.java.net/~xuelei/8020842/webrev.02/
>>>
>>> "." is regarded as valid IDN in this update.
>>>
>>> Thanks,
>>> Xuelei
>>>
>>> On 8/9/2013 10:50 AM, Xuelei Fan wrote:
>>>> On 8/9/2013 10:14 AM, Weijun Wang wrote:
>>>>>
>>>>> On 8/9/13 9:37 AM, Xuelei Fan wrote:
>>>>>> On 8/9/2013 9:22 AM, Weijun Wang wrote:
>>>>>>> I tried nslookup. Those with ".." inside are illegal,
>>>>>>>
>>>>>>> $ nslookup com..
>>>>>>> nslookup: 'com..' is not a legal name (empty label)
>>>>>>>
>>>>>>> but
>>>>>>>
>>>>>>> $ nslookup .
>>>>>>> Server: 192.168.10.1
>>>>>>> Address: 192.168.10.1#53
>>>>>>>
>>>>>>> Non-authoritative answer:
>>>>>>> *** Can't find .: No answer
>>>>>>>
>>>>>> Thanks for the testing. The behaviors are the same as this fix now.
>>>>> No exactly. It seems nslookup still regards "." legal but just cannot
>>>>> find an IP for it.
>>>>>
>>>> I'm not sure whether a root domain name can be stand alone. Root label
>>>> is not considered as a label in IDN. I think it is safe to regard that
>>>> "." is not a valid IDN as it contains no label. Anyway, it is a corner
>>>> case.
>>>>
>>>> There are many online IDN conversion web services, some of them can
>>>> convert ".", some of the cannot. In the present implementation, we
>>>> cannot recognize ".", and IDN.toASCII(".") throws
>>>> StringIndexOutOfBoundsException. With this fix, I was wondering IAE is
>>>> a better exception for IDN.toASCII(".").
>>>>
>>>>>> Learn something new today to use nslookup.
>>>>>>
>>>>>>> Also, since this bug was originally about SNIHostName, do you need to
>>>>>>> add some extra restriction there to reject "oracle.com." things?
>>>>>>>
>>>>>> No, we cannot restrict the format of IDN in SNIHostName more than in
>>>>>> IDN. However, we may need to rethink about the comparing of two
>>>>>> IDN, for
>>>>>> example, "example.com." should equal to "example.com". I want to
>>>>>> consider it in another bug.
>>>>> Not sure. Does the spec say IDN and SNIHostName are equivalent sets?
>>>>> And
>>>>> it's not one is another's subset?
>>>>>
>>>> Per TLS specification, host name in SNI is an IDN. The spec of
>>>> SNIHostname says, "hostname is not a valid Internationalized Domain Name
>>>> (IDN) compliant with the RFC 3490 specification". The spec in
>>>> SNIHostName has the same means as IDN. I won't want to add additional
>>>> restrict beyond the specification of an IDN.
>>>>
>>>> Xuelei
>>>>
>>>>>> Can I push the changeset?
>>>>> I think it's better to ask someone in the networking team to make the
>>>>> suggestion. From what I read Michael in this thread, he does not seem
>>>>> totally agreed with your code changes (at least not the 00 version).
>>>>>
>>>>> Thanks
>>>>> Max
>>>>>
>>>>>> Thanks,
>>>>>> Xuelei
>>>>>>
>>>>>>> Thanks
>>>>>>> Max
>>>>>>>
>>>>>>> On 8/9/13 8:41 AM, Xuelei Fan wrote:
>>>>>>>> Ping.
>>>>>>>>
>>>>>>>> Thanks,
>>>>>>>> Xuelei
>>>>>>>>
>>>>>>>> On 8/7/2013 11:17 PM, Xuelei Fan wrote:
>>>>>>>>> Please review the new update:
>>>>>>>>>
>>>>>>>>> http://cr.openjdk.java.net./~xuelei/8020842/webrev.01/
>>>>>>>>>
>>>>>>>>> With this update, "com." is valid (return "com."); "." and
>>>>>>>>> "example..com" are invalid. And IAE will be thrown for invalid
>>>>>>>>> IDN.
>>>>>>>>>
>>>>>>>>> Thanks,
>>>>>>>>> Xuelei
>>>>>>>>>
>>
>
From xuelei.fan at oracle.com Sat Aug 10 02:49:59 2013
From: xuelei.fan at oracle.com (Xuelei Fan)
Date: Sat, 10 Aug 2013 10:49:59 +0800
Subject: Code review request, 8020842 IDN do not throw IAE when hostname
ends with a trailing dot
In-Reply-To: <520593CC.4010608@oracle.com>
References: <5200E1B9.7070002@oracle.com> <520127A3.3060405@oracle.com>
<520133C7.20401@oracle.com> <5202411F.2010706@oracle.com>
<52025434.8070200@oracle.com> <5202561A.5040908@oracle.com>
<52025726.8060203@oracle.com> <520264F1.1090802@oracle.com>
<52043AB3.6060704@oracle.com> <5204446D.7030603@oracle.com>
<520447BD.30206@oracle.com> <52045070.1000506@oracle.com>
<520458DF.1030502@oracle.com> <52046FF3.1040903@oracle.com>
<5204D312.4030209@oracle.com> <52050A01.3030503@oracle.com>
<520593CC.4010608@oracle.com>
Message-ID: <5205AA57.6050704@oracle.com>
Hi Michael,
It is pretty hard to get the issue solved in SNIHostName in a good
sharp. Here is my try to state why we should fix the issue in IDN.
In SNIHostName, the following hostname are not accepted as valid hostname:
1. empty hostname
2. hostname ends with a trailing dot
3. hostname does not comply to RFC 3490.
The process in SNIHostName looks like:
1. call IDN.toASCII() to convert a string hostname
2. check that the return value of #1 is an valid hostname (non-empty,
non-end-with-tailing-dot).
At present, the IDN cannot handle the following IDN properly.
1. returns "com" for "com."
the trailing dot is swallowed.
2. throws StringIndexOutOfBoundsException for "."
If "." is an valid IDN that comply to RFC 3490, IDN.toASCII() should
be able to handle it; otherwise, IDN.toASCII() should throw IAE as the
specification suggested. However, IDN.toASCII(".") throws
StringIndexOutOfBoundsException, this behavior does not comply the the
specification:
3. throws StringIndexOutOfBoundsException for "example...net"
As #2.
We can address #1 and #2 in SNIHostName, but the checking is overloaded
as IDN also need to address the issue. And SNIHostName has to know
what's the separators (".", "\u3002, etc) of IDN in order to check the
dot character. It is not a good encapsulation, and involved in too much
about the details of domain name, I think.
It is a little big hard to address #3 in SNIHostName.
Both all of above issue can be easily addressed in IDN. And once IDN
addressed these issues, the current SNIHostName is able to handle
invalid hostname (empty, trailing dot, etc) correctly. We won't need to
touch SNIHostName any more.
Please consider it.
The latest webrev is at:
http://cr.openjdk.java.net/~xuelei/8020842/webrev.02/
Thanks,
Xuelei
On 8/10/2013 9:13 AM, Xuelei Fan wrote:
> Hi Michael,
>
> I plan to address this issue in SNIHostName. I have filled another two
> the potential bugs in IDN.
>
> Thank you, and other people, for the feedback.
>
> Thanks,
> Xuelei
>
> On 8/9/2013 11:25 PM, Xuelei Fan wrote:
>> On 8/9/2013 7:31 PM, Michael McMahon wrote:
>>> I don't see how this fixes the original problem as the SNIHostName spec
>>> still doesn't like hostnames with a trailing '.'
>>>
>> The bug description did not reflect the IDN specification correctly. If
>> "com." is a valid IDN, SNIHostName should accept it an an valid
>> hostname. The host name in SNIHostName is nothing more or less than an
>> standard IDN.
>>
>> I added a comment in the bug: "com." and "." are valid IDN according the
>> IDN and domain name specifications. I will contact the bug reporter
>> about this point.
>>
>> Xuelei
>>
>>> I'd prefer to check first where that requirement is coming from, if it is
>>> actually necessary, and if not consider removing it from SNIHostName.
>>> If it is necessary, then the check should be implemented in SNIHostName.
>>>
>>> Michael
>>>
>>> On 09/08/13 05:28, Xuelei Fan wrote:
>>>> Thanks for your feedback and suggestions.
>>>>
>>>> Here is the new webrev:
>>>> http://cr.openjdk.java.net/~xuelei/8020842/webrev.02/
>>>>
>>>> "." is regarded as valid IDN in this update.
>>>>
>>>> Thanks,
>>>> Xuelei
>>>>
>>>> On 8/9/2013 10:50 AM, Xuelei Fan wrote:
>>>>> On 8/9/2013 10:14 AM, Weijun Wang wrote:
>>>>>>
>>>>>> On 8/9/13 9:37 AM, Xuelei Fan wrote:
>>>>>>> On 8/9/2013 9:22 AM, Weijun Wang wrote:
>>>>>>>> I tried nslookup. Those with ".." inside are illegal,
>>>>>>>>
>>>>>>>> $ nslookup com..
>>>>>>>> nslookup: 'com..' is not a legal name (empty label)
>>>>>>>>
>>>>>>>> but
>>>>>>>>
>>>>>>>> $ nslookup .
>>>>>>>> Server: 192.168.10.1
>>>>>>>> Address: 192.168.10.1#53
>>>>>>>>
>>>>>>>> Non-authoritative answer:
>>>>>>>> *** Can't find .: No answer
>>>>>>>>
>>>>>>> Thanks for the testing. The behaviors are the same as this fix now.
>>>>>> No exactly. It seems nslookup still regards "." legal but just cannot
>>>>>> find an IP for it.
>>>>>>
>>>>> I'm not sure whether a root domain name can be stand alone. Root label
>>>>> is not considered as a label in IDN. I think it is safe to regard that
>>>>> "." is not a valid IDN as it contains no label. Anyway, it is a corner
>>>>> case.
>>>>>
>>>>> There are many online IDN conversion web services, some of them can
>>>>> convert ".", some of the cannot. In the present implementation, we
>>>>> cannot recognize ".", and IDN.toASCII(".") throws
>>>>> StringIndexOutOfBoundsException. With this fix, I was wondering IAE is
>>>>> a better exception for IDN.toASCII(".").
>>>>>
>>>>>>> Learn something new today to use nslookup.
>>>>>>>
>>>>>>>> Also, since this bug was originally about SNIHostName, do you need to
>>>>>>>> add some extra restriction there to reject "oracle.com." things?
>>>>>>>>
>>>>>>> No, we cannot restrict the format of IDN in SNIHostName more than in
>>>>>>> IDN. However, we may need to rethink about the comparing of two
>>>>>>> IDN, for
>>>>>>> example, "example.com." should equal to "example.com". I want to
>>>>>>> consider it in another bug.
>>>>>> Not sure. Does the spec say IDN and SNIHostName are equivalent sets?
>>>>>> And
>>>>>> it's not one is another's subset?
>>>>>>
>>>>> Per TLS specification, host name in SNI is an IDN. The spec of
>>>>> SNIHostname says, "hostname is not a valid Internationalized Domain Name
>>>>> (IDN) compliant with the RFC 3490 specification". The spec in
>>>>> SNIHostName has the same means as IDN. I won't want to add additional
>>>>> restrict beyond the specification of an IDN.
>>>>>
>>>>> Xuelei
>>>>>
>>>>>>> Can I push the changeset?
>>>>>> I think it's better to ask someone in the networking team to make the
>>>>>> suggestion. From what I read Michael in this thread, he does not seem
>>>>>> totally agreed with your code changes (at least not the 00 version).
>>>>>>
>>>>>> Thanks
>>>>>> Max
>>>>>>
>>>>>>> Thanks,
>>>>>>> Xuelei
>>>>>>>
>>>>>>>> Thanks
>>>>>>>> Max
>>>>>>>>
>>>>>>>> On 8/9/13 8:41 AM, Xuelei Fan wrote:
>>>>>>>>> Ping.
>>>>>>>>>
>>>>>>>>> Thanks,
>>>>>>>>> Xuelei
>>>>>>>>>
>>>>>>>>> On 8/7/2013 11:17 PM, Xuelei Fan wrote:
>>>>>>>>>> Please review the new update:
>>>>>>>>>>
>>>>>>>>>> http://cr.openjdk.java.net./~xuelei/8020842/webrev.01/
>>>>>>>>>>
>>>>>>>>>> With this update, "com." is valid (return "com."); "." and
>>>>>>>>>> "example..com" are invalid. And IAE will be thrown for invalid
>>>>>>>>>> IDN.
>>>>>>>>>>
>>>>>>>>>> Thanks,
>>>>>>>>>> Xuelei
>>>>>>>>>>
>>>
>>
>
From vicente.romero at oracle.com Sat Aug 10 12:28:55 2013
From: vicente.romero at oracle.com (vicente.romero at oracle.com)
Date: Sat, 10 Aug 2013 12:28:55 +0000
Subject: hg: jdk8/tl/langtools: 8009640: -profile does not work when
-bootclasspath specified
Message-ID: <20130810122858.15F1748789@hg.openjdk.java.net>
Changeset: 0d9bc764cac7
Author: vromero
Date: 2013-08-10 13:27 +0100
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/0d9bc764cac7
8009640: -profile does not work when -bootclasspath specified
Reviewed-by: jjg
! src/share/classes/com/sun/tools/javac/main/Main.java
! src/share/classes/com/sun/tools/javac/resources/javac.properties
+ test/tools/javac/T8009640/CheckRejectProfileBCPOptionsIfUsedTogetherTest.java
From vicente.romero at oracle.com Sat Aug 10 15:27:28 2013
From: vicente.romero at oracle.com (vicente.romero at oracle.com)
Date: Sat, 10 Aug 2013 15:27:28 +0000
Subject: hg: jdk8/tl/langtools: 8022622: javac,
two tests are failing with compile time error after class Collector
was modified
Message-ID: <20130810152735.353B74878B@hg.openjdk.java.net>
Changeset: 8f282dc58dfc
Author: vromero
Date: 2013-08-10 16:26 +0100
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/8f282dc58dfc
8022622: javac, two tests are failing with compile time error after class Collector was modified
Reviewed-by: mcimadamore
! test/tools/javac/lambda/TargetType59.java
! test/tools/javac/lambda/TargetType62.java
From vicente.romero at oracle.com Sat Aug 10 15:30:27 2013
From: vicente.romero at oracle.com (vicente.romero at oracle.com)
Date: Sat, 10 Aug 2013 15:30:27 +0000
Subject: hg: jdk8/tl/langtools: 6983297: methods missing from NewArrayTree
Message-ID: <20130810153030.01FCA4878C@hg.openjdk.java.net>
Changeset: aa6c6f8b5622
Author: vromero
Date: 2013-08-10 16:29 +0100
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/aa6c6f8b5622
6983297: methods missing from NewArrayTree
Reviewed-by: jjg
! src/share/classes/com/sun/source/tree/NewArrayTree.java
! src/share/classes/com/sun/source/util/TreeScanner.java
! src/share/classes/com/sun/tools/javac/tree/JCTree.java
! test/tools/javac/tree/SourceTreeScannerTest.java
From xuelei.fan at oracle.com Mon Aug 12 01:09:33 2013
From: xuelei.fan at oracle.com (Xuelei Fan)
Date: Mon, 12 Aug 2013 09:09:33 +0800
Subject: Code review request, 8020842 IDN do not throw IAE when hostname
ends with a trailing dot
In-Reply-To: <5205AA57.6050704@oracle.com>
References: <5200E1B9.7070002@oracle.com> <520127A3.3060405@oracle.com>
<520133C7.20401@oracle.com> <5202411F.2010706@oracle.com>
<52025434.8070200@oracle.com> <5202561A.5040908@oracle.com>
<52025726.8060203@oracle.com> <520264F1.1090802@oracle.com>
<52043AB3.6060704@oracle.com> <5204446D.7030603@oracle.com>
<520447BD.30206@oracle.com> <52045070.1000506@oracle.com>
<520458DF.1030502@oracle.com> <52046FF3.1040903@oracle.com>
<5204D312.4030209@oracle.com> <52050A01.3030503@oracle.com>
<520593CC.4010608@oracle.com> <5205AA57.6050704@oracle.com>
Message-ID: <520835CD.5090402@oracle.com>
new webrev: http://cr.openjdk.java.net/~xuelei/8020842/webrev.05/
Added a new test to test illegal hostname in SNIHostName.
Xuelei
On 8/10/2013 10:49 AM, Xuelei Fan wrote:
> Hi Michael,
>
> It is pretty hard to get the issue solved in SNIHostName in a good
> sharp. Here is my try to state why we should fix the issue in IDN.
>
> In SNIHostName, the following hostname are not accepted as valid hostname:
> 1. empty hostname
> 2. hostname ends with a trailing dot
> 3. hostname does not comply to RFC 3490.
>
> The process in SNIHostName looks like:
> 1. call IDN.toASCII() to convert a string hostname
> 2. check that the return value of #1 is an valid hostname (non-empty,
> non-end-with-tailing-dot).
>
> At present, the IDN cannot handle the following IDN properly.
> 1. returns "com" for "com."
> the trailing dot is swallowed.
>
> 2. throws StringIndexOutOfBoundsException for "."
> If "." is an valid IDN that comply to RFC 3490, IDN.toASCII() should
> be able to handle it; otherwise, IDN.toASCII() should throw IAE as the
> specification suggested. However, IDN.toASCII(".") throws
> StringIndexOutOfBoundsException, this behavior does not comply the the
> specification:
>
> 3. throws StringIndexOutOfBoundsException for "example...net"
> As #2.
>
> We can address #1 and #2 in SNIHostName, but the checking is overloaded
> as IDN also need to address the issue. And SNIHostName has to know
> what's the separators (".", "\u3002, etc) of IDN in order to check the
> dot character. It is not a good encapsulation, and involved in too much
> about the details of domain name, I think.
>
> It is a little big hard to address #3 in SNIHostName.
>
> Both all of above issue can be easily addressed in IDN. And once IDN
> addressed these issues, the current SNIHostName is able to handle
> invalid hostname (empty, trailing dot, etc) correctly. We won't need to
> touch SNIHostName any more.
>
> Please consider it.
>
> The latest webrev is at:
> http://cr.openjdk.java.net/~xuelei/8020842/webrev.02/
>
> Thanks,
> Xuelei
>
> On 8/10/2013 9:13 AM, Xuelei Fan wrote:
>> Hi Michael,
>>
>> I plan to address this issue in SNIHostName. I have filled another two
>> the potential bugs in IDN.
>>
>> Thank you, and other people, for the feedback.
>>
>> Thanks,
>> Xuelei
>>
>> On 8/9/2013 11:25 PM, Xuelei Fan wrote:
>>> On 8/9/2013 7:31 PM, Michael McMahon wrote:
>>>> I don't see how this fixes the original problem as the SNIHostName spec
>>>> still doesn't like hostnames with a trailing '.'
>>>>
>>> The bug description did not reflect the IDN specification correctly. If
>>> "com." is a valid IDN, SNIHostName should accept it an an valid
>>> hostname. The host name in SNIHostName is nothing more or less than an
>>> standard IDN.
>>>
>>> I added a comment in the bug: "com." and "." are valid IDN according the
>>> IDN and domain name specifications. I will contact the bug reporter
>>> about this point.
>>>
>>> Xuelei
>>>
>>>> I'd prefer to check first where that requirement is coming from, if it is
>>>> actually necessary, and if not consider removing it from SNIHostName.
>>>> If it is necessary, then the check should be implemented in SNIHostName.
>>>>
>>>> Michael
>>>>
>>>> On 09/08/13 05:28, Xuelei Fan wrote:
>>>>> Thanks for your feedback and suggestions.
>>>>>
>>>>> Here is the new webrev:
>>>>> http://cr.openjdk.java.net/~xuelei/8020842/webrev.02/
>>>>>
>>>>> "." is regarded as valid IDN in this update.
>>>>>
>>>>> Thanks,
>>>>> Xuelei
>>>>>
>>>>> On 8/9/2013 10:50 AM, Xuelei Fan wrote:
>>>>>> On 8/9/2013 10:14 AM, Weijun Wang wrote:
>>>>>>>
>>>>>>> On 8/9/13 9:37 AM, Xuelei Fan wrote:
>>>>>>>> On 8/9/2013 9:22 AM, Weijun Wang wrote:
>>>>>>>>> I tried nslookup. Those with ".." inside are illegal,
>>>>>>>>>
>>>>>>>>> $ nslookup com..
>>>>>>>>> nslookup: 'com..' is not a legal name (empty label)
>>>>>>>>>
>>>>>>>>> but
>>>>>>>>>
>>>>>>>>> $ nslookup .
>>>>>>>>> Server: 192.168.10.1
>>>>>>>>> Address: 192.168.10.1#53
>>>>>>>>>
>>>>>>>>> Non-authoritative answer:
>>>>>>>>> *** Can't find .: No answer
>>>>>>>>>
>>>>>>>> Thanks for the testing. The behaviors are the same as this fix now.
>>>>>>> No exactly. It seems nslookup still regards "." legal but just cannot
>>>>>>> find an IP for it.
>>>>>>>
>>>>>> I'm not sure whether a root domain name can be stand alone. Root label
>>>>>> is not considered as a label in IDN. I think it is safe to regard that
>>>>>> "." is not a valid IDN as it contains no label. Anyway, it is a corner
>>>>>> case.
>>>>>>
>>>>>> There are many online IDN conversion web services, some of them can
>>>>>> convert ".", some of the cannot. In the present implementation, we
>>>>>> cannot recognize ".", and IDN.toASCII(".") throws
>>>>>> StringIndexOutOfBoundsException. With this fix, I was wondering IAE is
>>>>>> a better exception for IDN.toASCII(".").
>>>>>>
>>>>>>>> Learn something new today to use nslookup.
>>>>>>>>
>>>>>>>>> Also, since this bug was originally about SNIHostName, do you need to
>>>>>>>>> add some extra restriction there to reject "oracle.com." things?
>>>>>>>>>
>>>>>>>> No, we cannot restrict the format of IDN in SNIHostName more than in
>>>>>>>> IDN. However, we may need to rethink about the comparing of two
>>>>>>>> IDN, for
>>>>>>>> example, "example.com." should equal to "example.com". I want to
>>>>>>>> consider it in another bug.
>>>>>>> Not sure. Does the spec say IDN and SNIHostName are equivalent sets?
>>>>>>> And
>>>>>>> it's not one is another's subset?
>>>>>>>
>>>>>> Per TLS specification, host name in SNI is an IDN. The spec of
>>>>>> SNIHostname says, "hostname is not a valid Internationalized Domain Name
>>>>>> (IDN) compliant with the RFC 3490 specification". The spec in
>>>>>> SNIHostName has the same means as IDN. I won't want to add additional
>>>>>> restrict beyond the specification of an IDN.
>>>>>>
>>>>>> Xuelei
>>>>>>
>>>>>>>> Can I push the changeset?
>>>>>>> I think it's better to ask someone in the networking team to make the
>>>>>>> suggestion. From what I read Michael in this thread, he does not seem
>>>>>>> totally agreed with your code changes (at least not the 00 version).
>>>>>>>
>>>>>>> Thanks
>>>>>>> Max
>>>>>>>
>>>>>>>> Thanks,
>>>>>>>> Xuelei
>>>>>>>>
>>>>>>>>> Thanks
>>>>>>>>> Max
>>>>>>>>>
>>>>>>>>> On 8/9/13 8:41 AM, Xuelei Fan wrote:
>>>>>>>>>> Ping.
>>>>>>>>>>
>>>>>>>>>> Thanks,
>>>>>>>>>> Xuelei
>>>>>>>>>>
>>>>>>>>>> On 8/7/2013 11:17 PM, Xuelei Fan wrote:
>>>>>>>>>>> Please review the new update:
>>>>>>>>>>>
>>>>>>>>>>> http://cr.openjdk.java.net./~xuelei/8020842/webrev.01/
>>>>>>>>>>>
>>>>>>>>>>> With this update, "com." is valid (return "com."); "." and
>>>>>>>>>>> "example..com" are invalid. And IAE will be thrown for invalid
>>>>>>>>>>> IDN.
>>>>>>>>>>>
>>>>>>>>>>> Thanks,
>>>>>>>>>>> Xuelei
>>>>>>>>>>>
>>>>
>>>
>>
>
From xuelei.fan at oracle.com Mon Aug 12 01:22:09 2013
From: xuelei.fan at oracle.com (xuelei.fan at oracle.com)
Date: Mon, 12 Aug 2013 01:22:09 +0000
Subject: hg: jdk8/tl/jdk: 8022487: DEREncodedKeyValue.supportedKeyTypes should
be private
Message-ID: <20130812012258.BACF2487A1@hg.openjdk.java.net>
Changeset: ea4f4164422e
Author: xuelei
Date: 2013-08-11 18:21 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/ea4f4164422e
8022487: DEREncodedKeyValue.supportedKeyTypes should be private
Reviewed-by: mullan
! src/share/classes/com/sun/org/apache/xml/internal/security/keys/content/DEREncodedKeyValue.java
From xuelei.fan at oracle.com Mon Aug 12 02:04:12 2013
From: xuelei.fan at oracle.com (Xuelei Fan)
Date: Mon, 12 Aug 2013 10:04:12 +0800
Subject: There should be a way to reorder the JSSE ciphers
In-Reply-To: <520130A1.8020605@oracle.com>
References: <5200572D.7050602@oracle.com> <520130A1.8020605@oracle.com>
Message-ID: <5208429C.20301@oracle.com>
On 8/7/2013 1:21 AM, Sean Mullan wrote:
> It might be useful to add a more general method to set boolean options
> like this. For example:
>
> public final void setOptions(Set options)
> public final Set getOptions()
>
> SSLParameters.Option is an enum:
>
> public enum SSLParameters.Option {
> ENFORCE_CIPHER_SUITE_ORDER,
> // alternate ways to specify client auth
> NEED_CLIENT_AUTH,
> WANT_CLIENT_AUTH
> }
>
The difficult part of SSLParameters is that every attribute has default
value, which can be got from SSLSocket/SSLEngine.getSSLParameters().
That's to say, every option would have three kinds of value: true,
false, and the default one. As make it hard to use enum parameter.
Consider the example, if the set has one option, WANT_CLIENT_AUTH, it is
the same as:
SSLParameters.setWantClientAuth(true);
What's the expected value of the ENFORCE_CIPHER_SUITE_ORDER and
NEED_CLIENT_AUTH? It can be specified to use "false". Then, there is
no way to use the default value any more. If it is specified to use
default value, no way to use "false" value any more. It's ambiguous.
In the long run, I was wondering to replace SSLParameters with a set of
pair (option, value). For example,
{
{ENFORCE_CIPHER_SUITE_ORDER, "true"},
{WANT_CLIENT_AUTH, "false"},
{CIPHER_SUITES, {CS1, CS2, ...}}
}
However, the refactoring needs significant efforts. I won't want
consider it in this improvement.
Thanks,
Xuelei
> The nice part about this is that you can easily add new options in the
> future and providers can cycle through the set of options and throw an
> exception for any that they don't yet support.
>
> --Sean
>
> On 08/05/2013 06:53 PM, Xuelei Fan wrote:
>> Hi,
>>
>> We are thinking about to support cipher suites preference in JSSE by
>> defining new methods in javax.net.ssl.SSLParameters.
>>
>> ----------------------------------------------------
>> + /**
>> + * Sets whether the cipher suites preference should be honored.
>> + *
>> + * @param on whether local cipher suites order in
>> + * {@code #getCipherSuites}
>> + * should be honored during SSL/TLS handshaking.
>> + */
>> + public final void setUseCipherSuitesOrder(boolean on);
>>
>>
>> + /**
>> + * Returns whether the cipher suites preference should be honored.
>> + *
>> + * @return whether local cipher suites order in
>> + {@code #getCipherSuites}
>> + * should be honored during SSL/TLS handshaking.
>> + */
>> + public final boolean getUseCipherSuitesOrder();
>> ----------------------------------------------------
>>
>>
>> By default, Oracle JSSE provider still honors the client's preference.
>> The behavior can be changed by calling
>> SSLParameters.setUseCipherSuitesOrder(true) in server side.
>>
>> We have had the cipher suites preference ordering in client side for
>> many years, but we never said how to actually do it in specification and
>> JSSE Reference Guide. With this update, the client side can enforce to
>> honor cipher suite preference with the new method,
>> SSLParameters.setUseCipherSuitesOrder(true). Other providers should
>> also comply with this specification.
>>
>> Any feedback are welcome.
>>
>> Thanks,
>> Xuelei
>>
>
From weijun.wang at oracle.com Mon Aug 12 03:11:42 2013
From: weijun.wang at oracle.com (Weijun Wang)
Date: Mon, 12 Aug 2013 11:11:42 +0800
Subject: Code review request, 8020842 IDN do not throw IAE when hostname
ends with a trailing dot
In-Reply-To: <520835CD.5090402@oracle.com>
References: <5200E1B9.7070002@oracle.com> <520127A3.3060405@oracle.com>
<520133C7.20401@oracle.com> <5202411F.2010706@oracle.com>
<52025434.8070200@oracle.com> <5202561A.5040908@oracle.com>
<52025726.8060203@oracle.com> <520264F1.1090802@oracle.com>
<52043AB3.6060704@oracle.com> <5204446D.7030603@oracle.com>
<520447BD.30206@oracle.com> <52045070.1000506@oracle.com>
<520458DF.1030502@oracle.com> <52046FF3.1040903@oracle.com>
<5204D312.4030209@oracle.com> <52050A01.3030503@oracle.com>
<520593CC.4010608@oracle.com> <5205AA57.6050704@oracle.com>
<520835CD.5090402@oracle.com>
Message-ID: <5208526E.5020808@oracle.com>
I think the fix is adequate and necessary.
One problem: lines 367-373 adds a new IAE to ToUnicode but the method
should not fail forever.
And some small comments on styles etc.
On 8/12/13 9:09 AM, Xuelei Fan wrote:
> new webrev: http://cr.openjdk.java.net/~xuelei/8020842/webrev.05/
Lines 123 and 185:
184 p = q + 1;
185 if (p < input.length() || q == (input.length() - 1)) {
186 // has more labels, or keep the trailing dot as at
present
187 out.append('.');
188 }
I prefer
if (q < input.length()) { // Ah, a dot!
out.append('.');
}
p = q + 1;
Lines 282, 335, 270: Insert a blank after "if".
Lines 284 and 372: nslookup uses "empty label", which I like better.
Lines 453 and 460: Personally I don't like the parenthesis for the whole
return value, but you have your choice.
Lines 280 and 333: How about we call them steps 8a and 8b?
>
> Added a new test to test illegal hostname in SNIHostName.
Excellent. Otherwise I will be wondering why the fix in IDN could solve
the problem as described in the bug description.
Thanks
Max
>
> Xuelei
>
> On 8/10/2013 10:49 AM, Xuelei Fan wrote:
>> Hi Michael,
>>
>> It is pretty hard to get the issue solved in SNIHostName in a good
>> sharp. Here is my try to state why we should fix the issue in IDN.
>>
>> In SNIHostName, the following hostname are not accepted as valid hostname:
>> 1. empty hostname
>> 2. hostname ends with a trailing dot
>> 3. hostname does not comply to RFC 3490.
>>
>> The process in SNIHostName looks like:
>> 1. call IDN.toASCII() to convert a string hostname
>> 2. check that the return value of #1 is an valid hostname (non-empty,
>> non-end-with-tailing-dot).
>>
>> At present, the IDN cannot handle the following IDN properly.
>> 1. returns "com" for "com."
>> the trailing dot is swallowed.
>>
>> 2. throws StringIndexOutOfBoundsException for "."
>> If "." is an valid IDN that comply to RFC 3490, IDN.toASCII() should
>> be able to handle it; otherwise, IDN.toASCII() should throw IAE as the
>> specification suggested. However, IDN.toASCII(".") throws
>> StringIndexOutOfBoundsException, this behavior does not comply the the
>> specification:
>>
>> 3. throws StringIndexOutOfBoundsException for "example...net"
>> As #2.
>>
>> We can address #1 and #2 in SNIHostName, but the checking is overloaded
>> as IDN also need to address the issue. And SNIHostName has to know
>> what's the separators (".", "\u3002, etc) of IDN in order to check the
>> dot character. It is not a good encapsulation, and involved in too much
>> about the details of domain name, I think.
>>
>> It is a little big hard to address #3 in SNIHostName.
>>
>> Both all of above issue can be easily addressed in IDN. And once IDN
>> addressed these issues, the current SNIHostName is able to handle
>> invalid hostname (empty, trailing dot, etc) correctly. We won't need to
>> touch SNIHostName any more.
>>
>> Please consider it.
>>
>> The latest webrev is at:
>> http://cr.openjdk.java.net/~xuelei/8020842/webrev.02/
>>
>> Thanks,
>> Xuelei
>>
>> On 8/10/2013 9:13 AM, Xuelei Fan wrote:
>>> Hi Michael,
>>>
>>> I plan to address this issue in SNIHostName. I have filled another two
>>> the potential bugs in IDN.
>>>
>>> Thank you, and other people, for the feedback.
>>>
>>> Thanks,
>>> Xuelei
>>>
>>> On 8/9/2013 11:25 PM, Xuelei Fan wrote:
>>>> On 8/9/2013 7:31 PM, Michael McMahon wrote:
>>>>> I don't see how this fixes the original problem as the SNIHostName spec
>>>>> still doesn't like hostnames with a trailing '.'
>>>>>
>>>> The bug description did not reflect the IDN specification correctly. If
>>>> "com." is a valid IDN, SNIHostName should accept it an an valid
>>>> hostname. The host name in SNIHostName is nothing more or less than an
>>>> standard IDN.
>>>>
>>>> I added a comment in the bug: "com." and "." are valid IDN according the
>>>> IDN and domain name specifications. I will contact the bug reporter
>>>> about this point.
>>>>
>>>> Xuelei
>>>>
>>>>> I'd prefer to check first where that requirement is coming from, if it is
>>>>> actually necessary, and if not consider removing it from SNIHostName.
>>>>> If it is necessary, then the check should be implemented in SNIHostName.
>>>>>
>>>>> Michael
>>>>>
>>>>> On 09/08/13 05:28, Xuelei Fan wrote:
>>>>>> Thanks for your feedback and suggestions.
>>>>>>
>>>>>> Here is the new webrev:
>>>>>> http://cr.openjdk.java.net/~xuelei/8020842/webrev.02/
>>>>>>
>>>>>> "." is regarded as valid IDN in this update.
>>>>>>
>>>>>> Thanks,
>>>>>> Xuelei
>>>>>>
>>>>>> On 8/9/2013 10:50 AM, Xuelei Fan wrote:
>>>>>>> On 8/9/2013 10:14 AM, Weijun Wang wrote:
>>>>>>>>
>>>>>>>> On 8/9/13 9:37 AM, Xuelei Fan wrote:
>>>>>>>>> On 8/9/2013 9:22 AM, Weijun Wang wrote:
>>>>>>>>>> I tried nslookup. Those with ".." inside are illegal,
>>>>>>>>>>
>>>>>>>>>> $ nslookup com..
>>>>>>>>>> nslookup: 'com..' is not a legal name (empty label)
>>>>>>>>>>
>>>>>>>>>> but
>>>>>>>>>>
>>>>>>>>>> $ nslookup .
>>>>>>>>>> Server: 192.168.10.1
>>>>>>>>>> Address: 192.168.10.1#53
>>>>>>>>>>
>>>>>>>>>> Non-authoritative answer:
>>>>>>>>>> *** Can't find .: No answer
>>>>>>>>>>
>>>>>>>>> Thanks for the testing. The behaviors are the same as this fix now.
>>>>>>>> No exactly. It seems nslookup still regards "." legal but just cannot
>>>>>>>> find an IP for it.
>>>>>>>>
>>>>>>> I'm not sure whether a root domain name can be stand alone. Root label
>>>>>>> is not considered as a label in IDN. I think it is safe to regard that
>>>>>>> "." is not a valid IDN as it contains no label. Anyway, it is a corner
>>>>>>> case.
>>>>>>>
>>>>>>> There are many online IDN conversion web services, some of them can
>>>>>>> convert ".", some of the cannot. In the present implementation, we
>>>>>>> cannot recognize ".", and IDN.toASCII(".") throws
>>>>>>> StringIndexOutOfBoundsException. With this fix, I was wondering IAE is
>>>>>>> a better exception for IDN.toASCII(".").
>>>>>>>
>>>>>>>>> Learn something new today to use nslookup.
>>>>>>>>>
>>>>>>>>>> Also, since this bug was originally about SNIHostName, do you need to
>>>>>>>>>> add some extra restriction there to reject "oracle.com." things?
>>>>>>>>>>
>>>>>>>>> No, we cannot restrict the format of IDN in SNIHostName more than in
>>>>>>>>> IDN. However, we may need to rethink about the comparing of two
>>>>>>>>> IDN, for
>>>>>>>>> example, "example.com." should equal to "example.com". I want to
>>>>>>>>> consider it in another bug.
>>>>>>>> Not sure. Does the spec say IDN and SNIHostName are equivalent sets?
>>>>>>>> And
>>>>>>>> it's not one is another's subset?
>>>>>>>>
>>>>>>> Per TLS specification, host name in SNI is an IDN. The spec of
>>>>>>> SNIHostname says, "hostname is not a valid Internationalized Domain Name
>>>>>>> (IDN) compliant with the RFC 3490 specification". The spec in
>>>>>>> SNIHostName has the same means as IDN. I won't want to add additional
>>>>>>> restrict beyond the specification of an IDN.
>>>>>>>
>>>>>>> Xuelei
>>>>>>>
>>>>>>>>> Can I push the changeset?
>>>>>>>> I think it's better to ask someone in the networking team to make the
>>>>>>>> suggestion. From what I read Michael in this thread, he does not seem
>>>>>>>> totally agreed with your code changes (at least not the 00 version).
>>>>>>>>
>>>>>>>> Thanks
>>>>>>>> Max
>>>>>>>>
>>>>>>>>> Thanks,
>>>>>>>>> Xuelei
>>>>>>>>>
>>>>>>>>>> Thanks
>>>>>>>>>> Max
>>>>>>>>>>
>>>>>>>>>> On 8/9/13 8:41 AM, Xuelei Fan wrote:
>>>>>>>>>>> Ping.
>>>>>>>>>>>
>>>>>>>>>>> Thanks,
>>>>>>>>>>> Xuelei
>>>>>>>>>>>
>>>>>>>>>>> On 8/7/2013 11:17 PM, Xuelei Fan wrote:
>>>>>>>>>>>> Please review the new update:
>>>>>>>>>>>>
>>>>>>>>>>>> http://cr.openjdk.java.net./~xuelei/8020842/webrev.01/
>>>>>>>>>>>>
>>>>>>>>>>>> With this update, "com." is valid (return "com."); "." and
>>>>>>>>>>>> "example..com" are invalid. And IAE will be thrown for invalid
>>>>>>>>>>>> IDN.
>>>>>>>>>>>>
>>>>>>>>>>>> Thanks,
>>>>>>>>>>>> Xuelei
>>>>>>>>>>>>
>>>>>
>>>>
>>>
>>
>
From weijun.wang at oracle.com Mon Aug 12 03:15:13 2013
From: weijun.wang at oracle.com (Weijun Wang)
Date: Mon, 12 Aug 2013 11:15:13 +0800
Subject: Code review request, 8020842 IDN do not throw IAE when hostname
ends with a trailing dot
In-Reply-To: <5208526E.5020808@oracle.com>
References: <5200E1B9.7070002@oracle.com> <520127A3.3060405@oracle.com>
<520133C7.20401@oracle.com> <5202411F.2010706@oracle.com>
<52025434.8070200@oracle.com> <5202561A.5040908@oracle.com>
<52025726.8060203@oracle.com> <520264F1.1090802@oracle.com>
<52043AB3.6060704@oracle.com> <5204446D.7030603@oracle.com>
<520447BD.30206@oracle.com> <52045070.1000506@oracle.com>
<520458DF.1030502@oracle.com> <52046FF3.1040903@oracle.com>
<5204D312.4030209@oracle.com> <52050A01.3030503@oracle.com>
<520593CC.4010608@oracle.com> <5205AA57.6050704@oracle.com>
<520835CD.5090402@oracle.com> <5208526E.5020808@oracle.com>
Message-ID: <52085341.5070603@oracle.com>
> if (q < input.length()) { // Ah, a dot!
> out.append('.');
> }
> p = q + 1;
Using
if (q != input.length())
should be even better. The searchDots method clearly specifies that "or
if there is no dots, return the length of input string".
--Max
From weijun.wang at oracle.com Mon Aug 12 04:18:02 2013
From: weijun.wang at oracle.com (Weijun Wang)
Date: Mon, 12 Aug 2013 12:18:02 +0800
Subject: A 8021788 regression? 8022761: SQE test regression on wrongly signed
indexed jar file
Message-ID: <520861FA.4090605@oracle.com>
Hi Sherman
SQE observes a regression in their test suite and
the reason is my recent fix for 8021788 at
http://hg.openjdk.java.net/jdk8/tl/jdk/rev/758e3117899c
The jar file mentioned contains
66 Mon Jun 04 15:42:18 CST 2007 META-INF/INDEX.LIST
323 Sat Apr 01 15:47:28 CST 2000 META-INF/MANIFEST.MF
376 Mon Jun 04 15:41:00 CST 2007 META-INF/MYKEY.SF
972 Sat Apr 01 15:47:38 CST 2000 META-INF/MYKEY.DSA
0 Sat Apr 01 15:46:58 CST 2000 META-INF/
0 Sat Apr 01 15:45:16 CST 2000 test/
21 Sat Apr 01 15:46:24 CST 2000 test/test0
21 Sat Apr 01 15:46:18 CST 2000 test/test1
21 Sat Apr 01 15:46:04 CST 2000 test/test2
21 Sat Apr 01 15:46:10 CST 2000 test/test3
After JDK-8021788, the file is regarded as an unsigned jar because the
updated JarVerifier goes thru all signature-related files and treats all
others not. Here the first one is not signature-related so none is.
Is fix for JDK-8021788 wrong? Inside JarVerifier.java, we have
* Assumptions:
* 1. The manifest should be the first entry in the META-INF directory.
* 2. The .SF/.DSA/.EC files follow the manifest, before any normal
entries
Is this INDEX.LIST an exception?
Thanks
Max
From xuelei.fan at oracle.com Mon Aug 12 05:45:12 2013
From: xuelei.fan at oracle.com (Xuelei Fan)
Date: Mon, 12 Aug 2013 13:45:12 +0800
Subject: Code review request, 8020842 IDN do not throw IAE when hostname
ends with a trailing dot
In-Reply-To: <5208526E.5020808@oracle.com>
References: <5200E1B9.7070002@oracle.com> <520127A3.3060405@oracle.com>
<520133C7.20401@oracle.com> <5202411F.2010706@oracle.com>
<52025434.8070200@oracle.com> <5202561A.5040908@oracle.com>
<52025726.8060203@oracle.com> <520264F1.1090802@oracle.com>
<52043AB3.6060704@oracle.com> <5204446D.7030603@oracle.com>
<520447BD.30206@oracle.com> <52045070.1000506@oracle.com>
<520458DF.1030502@oracle.com> <52046FF3.1040903@oracle.com>
<5204D312.4030209@oracle.com> <52050A01.3030503@oracle.com>
<520593CC.4010608@oracle.com> <5205AA57.6050704@oracle.com>
<520835CD.5090402@oracle.com> <5208526E.5020808@oracle.com>
Message-ID: <52087668.9080500@oracle.com>
new webrev: http://cr.openjdk.java.net/~xuelei/8020842/webrev.06/
> Lines 280 and 333: How about we call them steps 8a and 8b?
Step 8 is referring to the steps in RFC 3490. Let's use "step 8".
Thanks,
Xuelei
On 8/12/2013 11:11 AM, Weijun Wang wrote:
> I think the fix is adequate and necessary.
>
> One problem: lines 367-373 adds a new IAE to ToUnicode but the method
> should not fail forever.
>
> And some small comments on styles etc.
>
> On 8/12/13 9:09 AM, Xuelei Fan wrote:
>> new webrev: http://cr.openjdk.java.net/~xuelei/8020842/webrev.05/
>
> Lines 123 and 185:
>
> 184 p = q + 1;
> 185 if (p < input.length() || q == (input.length() - 1)) {
> 186 // has more labels, or keep the trailing dot as at
> present
> 187 out.append('.');
> 188 }
>
> I prefer
>
> if (q < input.length()) { // Ah, a dot!
> out.append('.');
> }
> p = q + 1;
>
> Lines 282, 335, 270: Insert a blank after "if".
>
> Lines 284 and 372: nslookup uses "empty label", which I like better.
>
> Lines 453 and 460: Personally I don't like the parenthesis for the whole
> return value, but you have your choice.
>
> Lines 280 and 333: How about we call them steps 8a and 8b?
>
>>
>> Added a new test to test illegal hostname in SNIHostName.
>
> Excellent. Otherwise I will be wondering why the fix in IDN could solve
> the problem as described in the bug description.
>
> Thanks
> Max
>
>>
>> Xuelei
>>
>> On 8/10/2013 10:49 AM, Xuelei Fan wrote:
>>> Hi Michael,
>>>
>>> It is pretty hard to get the issue solved in SNIHostName in a good
>>> sharp. Here is my try to state why we should fix the issue in IDN.
>>>
>>> In SNIHostName, the following hostname are not accepted as valid
>>> hostname:
>>> 1. empty hostname
>>> 2. hostname ends with a trailing dot
>>> 3. hostname does not comply to RFC 3490.
>>>
>>> The process in SNIHostName looks like:
>>> 1. call IDN.toASCII() to convert a string hostname
>>> 2. check that the return value of #1 is an valid hostname (non-empty,
>>> non-end-with-tailing-dot).
>>>
>>> At present, the IDN cannot handle the following IDN properly.
>>> 1. returns "com" for "com."
>>> the trailing dot is swallowed.
>>>
>>> 2. throws StringIndexOutOfBoundsException for "."
>>> If "." is an valid IDN that comply to RFC 3490, IDN.toASCII()
>>> should
>>> be able to handle it; otherwise, IDN.toASCII() should throw IAE as the
>>> specification suggested. However, IDN.toASCII(".") throws
>>> StringIndexOutOfBoundsException, this behavior does not comply the the
>>> specification:
>>>
>>> 3. throws StringIndexOutOfBoundsException for "example...net"
>>> As #2.
>>>
>>> We can address #1 and #2 in SNIHostName, but the checking is overloaded
>>> as IDN also need to address the issue. And SNIHostName has to know
>>> what's the separators (".", "\u3002, etc) of IDN in order to check the
>>> dot character. It is not a good encapsulation, and involved in too much
>>> about the details of domain name, I think.
>>>
>>> It is a little big hard to address #3 in SNIHostName.
>>>
>>> Both all of above issue can be easily addressed in IDN. And once IDN
>>> addressed these issues, the current SNIHostName is able to handle
>>> invalid hostname (empty, trailing dot, etc) correctly. We won't need to
>>> touch SNIHostName any more.
>>>
>>> Please consider it.
>>>
>>> The latest webrev is at:
>>> http://cr.openjdk.java.net/~xuelei/8020842/webrev.02/
>>>
>>> Thanks,
>>> Xuelei
>>>
>>> On 8/10/2013 9:13 AM, Xuelei Fan wrote:
>>>> Hi Michael,
>>>>
>>>> I plan to address this issue in SNIHostName. I have filled another two
>>>> the potential bugs in IDN.
>>>>
>>>> Thank you, and other people, for the feedback.
>>>>
>>>> Thanks,
>>>> Xuelei
>>>>
>>>> On 8/9/2013 11:25 PM, Xuelei Fan wrote:
>>>>> On 8/9/2013 7:31 PM, Michael McMahon wrote:
>>>>>> I don't see how this fixes the original problem as the SNIHostName
>>>>>> spec
>>>>>> still doesn't like hostnames with a trailing '.'
>>>>>>
>>>>> The bug description did not reflect the IDN specification
>>>>> correctly. If
>>>>> "com." is a valid IDN, SNIHostName should accept it an an valid
>>>>> hostname. The host name in SNIHostName is nothing more or less
>>>>> than an
>>>>> standard IDN.
>>>>>
>>>>> I added a comment in the bug: "com." and "." are valid IDN
>>>>> according the
>>>>> IDN and domain name specifications. I will contact the bug reporter
>>>>> about this point.
>>>>>
>>>>> Xuelei
>>>>>
>>>>>> I'd prefer to check first where that requirement is coming from,
>>>>>> if it is
>>>>>> actually necessary, and if not consider removing it from SNIHostName.
>>>>>> If it is necessary, then the check should be implemented in
>>>>>> SNIHostName.
>>>>>>
>>>>>> Michael
>>>>>>
>>>>>> On 09/08/13 05:28, Xuelei Fan wrote:
>>>>>>> Thanks for your feedback and suggestions.
>>>>>>>
>>>>>>> Here is the new webrev:
>>>>>>> http://cr.openjdk.java.net/~xuelei/8020842/webrev.02/
>>>>>>>
>>>>>>> "." is regarded as valid IDN in this update.
>>>>>>>
>>>>>>> Thanks,
>>>>>>> Xuelei
>>>>>>>
>>>>>>> On 8/9/2013 10:50 AM, Xuelei Fan wrote:
>>>>>>>> On 8/9/2013 10:14 AM, Weijun Wang wrote:
>>>>>>>>>
>>>>>>>>> On 8/9/13 9:37 AM, Xuelei Fan wrote:
>>>>>>>>>> On 8/9/2013 9:22 AM, Weijun Wang wrote:
>>>>>>>>>>> I tried nslookup. Those with ".." inside are illegal,
>>>>>>>>>>>
>>>>>>>>>>> $ nslookup com..
>>>>>>>>>>> nslookup: 'com..' is not a legal name (empty label)
>>>>>>>>>>>
>>>>>>>>>>> but
>>>>>>>>>>>
>>>>>>>>>>> $ nslookup .
>>>>>>>>>>> Server: 192.168.10.1
>>>>>>>>>>> Address: 192.168.10.1#53
>>>>>>>>>>>
>>>>>>>>>>> Non-authoritative answer:
>>>>>>>>>>> *** Can't find .: No answer
>>>>>>>>>>>
>>>>>>>>>> Thanks for the testing. The behaviors are the same as this
>>>>>>>>>> fix now.
>>>>>>>>> No exactly. It seems nslookup still regards "." legal but just
>>>>>>>>> cannot
>>>>>>>>> find an IP for it.
>>>>>>>>>
>>>>>>>> I'm not sure whether a root domain name can be stand alone.
>>>>>>>> Root label
>>>>>>>> is not considered as a label in IDN. I think it is safe to
>>>>>>>> regard that
>>>>>>>> "." is not a valid IDN as it contains no label. Anyway, it is a
>>>>>>>> corner
>>>>>>>> case.
>>>>>>>>
>>>>>>>> There are many online IDN conversion web services, some of them can
>>>>>>>> convert ".", some of the cannot. In the present implementation, we
>>>>>>>> cannot recognize ".", and IDN.toASCII(".") throws
>>>>>>>> StringIndexOutOfBoundsException. With this fix, I was wondering
>>>>>>>> IAE is
>>>>>>>> a better exception for IDN.toASCII(".").
>>>>>>>>
>>>>>>>>>> Learn something new today to use nslookup.
>>>>>>>>>>
>>>>>>>>>>> Also, since this bug was originally about SNIHostName, do you
>>>>>>>>>>> need to
>>>>>>>>>>> add some extra restriction there to reject "oracle.com." things?
>>>>>>>>>>>
>>>>>>>>>> No, we cannot restrict the format of IDN in SNIHostName more
>>>>>>>>>> than in
>>>>>>>>>> IDN. However, we may need to rethink about the comparing of two
>>>>>>>>>> IDN, for
>>>>>>>>>> example, "example.com." should equal to "example.com". I want to
>>>>>>>>>> consider it in another bug.
>>>>>>>>> Not sure. Does the spec say IDN and SNIHostName are equivalent
>>>>>>>>> sets?
>>>>>>>>> And
>>>>>>>>> it's not one is another's subset?
>>>>>>>>>
>>>>>>>> Per TLS specification, host name in SNI is an IDN. The spec of
>>>>>>>> SNIHostname says, "hostname is not a valid Internationalized
>>>>>>>> Domain Name
>>>>>>>> (IDN) compliant with the RFC 3490 specification". The spec in
>>>>>>>> SNIHostName has the same means as IDN. I won't want to add
>>>>>>>> additional
>>>>>>>> restrict beyond the specification of an IDN.
>>>>>>>>
>>>>>>>> Xuelei
>>>>>>>>
>>>>>>>>>> Can I push the changeset?
>>>>>>>>> I think it's better to ask someone in the networking team to
>>>>>>>>> make the
>>>>>>>>> suggestion. From what I read Michael in this thread, he does
>>>>>>>>> not seem
>>>>>>>>> totally agreed with your code changes (at least not the 00
>>>>>>>>> version).
>>>>>>>>>
>>>>>>>>> Thanks
>>>>>>>>> Max
>>>>>>>>>
>>>>>>>>>> Thanks,
>>>>>>>>>> Xuelei
>>>>>>>>>>
>>>>>>>>>>> Thanks
>>>>>>>>>>> Max
>>>>>>>>>>>
>>>>>>>>>>> On 8/9/13 8:41 AM, Xuelei Fan wrote:
>>>>>>>>>>>> Ping.
>>>>>>>>>>>>
>>>>>>>>>>>> Thanks,
>>>>>>>>>>>> Xuelei
>>>>>>>>>>>>
>>>>>>>>>>>> On 8/7/2013 11:17 PM, Xuelei Fan wrote:
>>>>>>>>>>>>> Please review the new update:
>>>>>>>>>>>>>
>>>>>>>>>>>>> http://cr.openjdk.java.net./~xuelei/8020842/webrev.01/
>>>>>>>>>>>>>
>>>>>>>>>>>>> With this update, "com." is valid (return "com."); "." and
>>>>>>>>>>>>> "example..com" are invalid. And IAE will be thrown for
>>>>>>>>>>>>> invalid
>>>>>>>>>>>>> IDN.
>>>>>>>>>>>>>
>>>>>>>>>>>>> Thanks,
>>>>>>>>>>>>> Xuelei
>>>>>>>>>>>>>
>>>>>>
>>>>>
>>>>
>>>
>>
From weijun.wang at oracle.com Mon Aug 12 06:07:08 2013
From: weijun.wang at oracle.com (Weijun Wang)
Date: Mon, 12 Aug 2013 14:07:08 +0800
Subject: Code review request, 8020842 IDN do not throw IAE when hostname
ends with a trailing dot
In-Reply-To: <52087668.9080500@oracle.com>
References: <5200E1B9.7070002@oracle.com> <520127A3.3060405@oracle.com>
<520133C7.20401@oracle.com> <5202411F.2010706@oracle.com>
<52025434.8070200@oracle.com> <5202561A.5040908@oracle.com>
<52025726.8060203@oracle.com> <520264F1.1090802@oracle.com>
<52043AB3.6060704@oracle.com> <5204446D.7030603@oracle.com>
<520447BD.30206@oracle.com> <52045070.1000506@oracle.com>
<520458DF.1030502@oracle.com> <52046FF3.1040903@oracle.com>
<5204D312.4030209@oracle.com> <52050A01.3030503@oracle.com>
<520593CC.4010608@oracle.com> <5205AA57.6050704@oracle.com>
<520835CD.5090402@oracle.com> <5208526E.5020808@oracle.com>
<52087668.9080500@oracle.com>
Message-ID: <52087B8C.5080105@oracle.com>
On 8/12/13 1:45 PM, Xuelei Fan wrote:
> new webrev: http://cr.openjdk.java.net/~xuelei/8020842/webrev.06/
>
>> Lines 280 and 333: How about we call them steps 8a and 8b?
>
> Step 8 is referring to the steps in RFC 3490. Let's use "step 8".
You break the 1 <= len <= 63 check into two parts, that's why I say 8a
and 8b.
--Max
>
> Thanks,
> Xuelei
>
> On 8/12/2013 11:11 AM, Weijun Wang wrote:
>> I think the fix is adequate and necessary.
>>
>> One problem: lines 367-373 adds a new IAE to ToUnicode but the method
>> should not fail forever.
>>
>> And some small comments on styles etc.
>>
>> On 8/12/13 9:09 AM, Xuelei Fan wrote:
>>> new webrev: http://cr.openjdk.java.net/~xuelei/8020842/webrev.05/
>>
>> Lines 123 and 185:
>>
>> 184 p = q + 1;
>> 185 if (p < input.length() || q == (input.length() - 1)) {
>> 186 // has more labels, or keep the trailing dot as at
>> present
>> 187 out.append('.');
>> 188 }
>>
>> I prefer
>>
>> if (q < input.length()) { // Ah, a dot!
>> out.append('.');
>> }
>> p = q + 1;
>>
>> Lines 282, 335, 270: Insert a blank after "if".
>>
>> Lines 284 and 372: nslookup uses "empty label", which I like better.
>>
>> Lines 453 and 460: Personally I don't like the parenthesis for the whole
>> return value, but you have your choice.
>>
>> Lines 280 and 333: How about we call them steps 8a and 8b?
>>
>>>
>>> Added a new test to test illegal hostname in SNIHostName.
>>
>> Excellent. Otherwise I will be wondering why the fix in IDN could solve
>> the problem as described in the bug description.
>>
>> Thanks
>> Max
>>
>>>
>>> Xuelei
>>>
>>> On 8/10/2013 10:49 AM, Xuelei Fan wrote:
>>>> Hi Michael,
>>>>
>>>> It is pretty hard to get the issue solved in SNIHostName in a good
>>>> sharp. Here is my try to state why we should fix the issue in IDN.
>>>>
>>>> In SNIHostName, the following hostname are not accepted as valid
>>>> hostname:
>>>> 1. empty hostname
>>>> 2. hostname ends with a trailing dot
>>>> 3. hostname does not comply to RFC 3490.
>>>>
>>>> The process in SNIHostName looks like:
>>>> 1. call IDN.toASCII() to convert a string hostname
>>>> 2. check that the return value of #1 is an valid hostname (non-empty,
>>>> non-end-with-tailing-dot).
>>>>
>>>> At present, the IDN cannot handle the following IDN properly.
>>>> 1. returns "com" for "com."
>>>> the trailing dot is swallowed.
>>>>
>>>> 2. throws StringIndexOutOfBoundsException for "."
>>>> If "." is an valid IDN that comply to RFC 3490, IDN.toASCII()
>>>> should
>>>> be able to handle it; otherwise, IDN.toASCII() should throw IAE as the
>>>> specification suggested. However, IDN.toASCII(".") throws
>>>> StringIndexOutOfBoundsException, this behavior does not comply the the
>>>> specification:
>>>>
>>>> 3. throws StringIndexOutOfBoundsException for "example...net"
>>>> As #2.
>>>>
>>>> We can address #1 and #2 in SNIHostName, but the checking is overloaded
>>>> as IDN also need to address the issue. And SNIHostName has to know
>>>> what's the separators (".", "\u3002, etc) of IDN in order to check the
>>>> dot character. It is not a good encapsulation, and involved in too much
>>>> about the details of domain name, I think.
>>>>
>>>> It is a little big hard to address #3 in SNIHostName.
>>>>
>>>> Both all of above issue can be easily addressed in IDN. And once IDN
>>>> addressed these issues, the current SNIHostName is able to handle
>>>> invalid hostname (empty, trailing dot, etc) correctly. We won't need to
>>>> touch SNIHostName any more.
>>>>
>>>> Please consider it.
>>>>
>>>> The latest webrev is at:
>>>> http://cr.openjdk.java.net/~xuelei/8020842/webrev.02/
>>>>
>>>> Thanks,
>>>> Xuelei
>>>>
>>>> On 8/10/2013 9:13 AM, Xuelei Fan wrote:
>>>>> Hi Michael,
>>>>>
>>>>> I plan to address this issue in SNIHostName. I have filled another two
>>>>> the potential bugs in IDN.
>>>>>
>>>>> Thank you, and other people, for the feedback.
>>>>>
>>>>> Thanks,
>>>>> Xuelei
>>>>>
>>>>> On 8/9/2013 11:25 PM, Xuelei Fan wrote:
>>>>>> On 8/9/2013 7:31 PM, Michael McMahon wrote:
>>>>>>> I don't see how this fixes the original problem as the SNIHostName
>>>>>>> spec
>>>>>>> still doesn't like hostnames with a trailing '.'
>>>>>>>
>>>>>> The bug description did not reflect the IDN specification
>>>>>> correctly. If
>>>>>> "com." is a valid IDN, SNIHostName should accept it an an valid
>>>>>> hostname. The host name in SNIHostName is nothing more or less
>>>>>> than an
>>>>>> standard IDN.
>>>>>>
>>>>>> I added a comment in the bug: "com." and "." are valid IDN
>>>>>> according the
>>>>>> IDN and domain name specifications. I will contact the bug reporter
>>>>>> about this point.
>>>>>>
>>>>>> Xuelei
>>>>>>
>>>>>>> I'd prefer to check first where that requirement is coming from,
>>>>>>> if it is
>>>>>>> actually necessary, and if not consider removing it from SNIHostName.
>>>>>>> If it is necessary, then the check should be implemented in
>>>>>>> SNIHostName.
>>>>>>>
>>>>>>> Michael
>>>>>>>
>>>>>>> On 09/08/13 05:28, Xuelei Fan wrote:
>>>>>>>> Thanks for your feedback and suggestions.
>>>>>>>>
>>>>>>>> Here is the new webrev:
>>>>>>>> http://cr.openjdk.java.net/~xuelei/8020842/webrev.02/
>>>>>>>>
>>>>>>>> "." is regarded as valid IDN in this update.
>>>>>>>>
>>>>>>>> Thanks,
>>>>>>>> Xuelei
>>>>>>>>
>>>>>>>> On 8/9/2013 10:50 AM, Xuelei Fan wrote:
>>>>>>>>> On 8/9/2013 10:14 AM, Weijun Wang wrote:
>>>>>>>>>>
>>>>>>>>>> On 8/9/13 9:37 AM, Xuelei Fan wrote:
>>>>>>>>>>> On 8/9/2013 9:22 AM, Weijun Wang wrote:
>>>>>>>>>>>> I tried nslookup. Those with ".." inside are illegal,
>>>>>>>>>>>>
>>>>>>>>>>>> $ nslookup com..
>>>>>>>>>>>> nslookup: 'com..' is not a legal name (empty label)
>>>>>>>>>>>>
>>>>>>>>>>>> but
>>>>>>>>>>>>
>>>>>>>>>>>> $ nslookup .
>>>>>>>>>>>> Server: 192.168.10.1
>>>>>>>>>>>> Address: 192.168.10.1#53
>>>>>>>>>>>>
>>>>>>>>>>>> Non-authoritative answer:
>>>>>>>>>>>> *** Can't find .: No answer
>>>>>>>>>>>>
>>>>>>>>>>> Thanks for the testing. The behaviors are the same as this
>>>>>>>>>>> fix now.
>>>>>>>>>> No exactly. It seems nslookup still regards "." legal but just
>>>>>>>>>> cannot
>>>>>>>>>> find an IP for it.
>>>>>>>>>>
>>>>>>>>> I'm not sure whether a root domain name can be stand alone.
>>>>>>>>> Root label
>>>>>>>>> is not considered as a label in IDN. I think it is safe to
>>>>>>>>> regard that
>>>>>>>>> "." is not a valid IDN as it contains no label. Anyway, it is a
>>>>>>>>> corner
>>>>>>>>> case.
>>>>>>>>>
>>>>>>>>> There are many online IDN conversion web services, some of them can
>>>>>>>>> convert ".", some of the cannot. In the present implementation, we
>>>>>>>>> cannot recognize ".", and IDN.toASCII(".") throws
>>>>>>>>> StringIndexOutOfBoundsException. With this fix, I was wondering
>>>>>>>>> IAE is
>>>>>>>>> a better exception for IDN.toASCII(".").
>>>>>>>>>
>>>>>>>>>>> Learn something new today to use nslookup.
>>>>>>>>>>>
>>>>>>>>>>>> Also, since this bug was originally about SNIHostName, do you
>>>>>>>>>>>> need to
>>>>>>>>>>>> add some extra restriction there to reject "oracle.com." things?
>>>>>>>>>>>>
>>>>>>>>>>> No, we cannot restrict the format of IDN in SNIHostName more
>>>>>>>>>>> than in
>>>>>>>>>>> IDN. However, we may need to rethink about the comparing of two
>>>>>>>>>>> IDN, for
>>>>>>>>>>> example, "example.com." should equal to "example.com". I want to
>>>>>>>>>>> consider it in another bug.
>>>>>>>>>> Not sure. Does the spec say IDN and SNIHostName are equivalent
>>>>>>>>>> sets?
>>>>>>>>>> And
>>>>>>>>>> it's not one is another's subset?
>>>>>>>>>>
>>>>>>>>> Per TLS specification, host name in SNI is an IDN. The spec of
>>>>>>>>> SNIHostname says, "hostname is not a valid Internationalized
>>>>>>>>> Domain Name
>>>>>>>>> (IDN) compliant with the RFC 3490 specification". The spec in
>>>>>>>>> SNIHostName has the same means as IDN. I won't want to add
>>>>>>>>> additional
>>>>>>>>> restrict beyond the specification of an IDN.
>>>>>>>>>
>>>>>>>>> Xuelei
>>>>>>>>>
>>>>>>>>>>> Can I push the changeset?
>>>>>>>>>> I think it's better to ask someone in the networking team to
>>>>>>>>>> make the
>>>>>>>>>> suggestion. From what I read Michael in this thread, he does
>>>>>>>>>> not seem
>>>>>>>>>> totally agreed with your code changes (at least not the 00
>>>>>>>>>> version).
>>>>>>>>>>
>>>>>>>>>> Thanks
>>>>>>>>>> Max
>>>>>>>>>>
>>>>>>>>>>> Thanks,
>>>>>>>>>>> Xuelei
>>>>>>>>>>>
>>>>>>>>>>>> Thanks
>>>>>>>>>>>> Max
>>>>>>>>>>>>
>>>>>>>>>>>> On 8/9/13 8:41 AM, Xuelei Fan wrote:
>>>>>>>>>>>>> Ping.
>>>>>>>>>>>>>
>>>>>>>>>>>>> Thanks,
>>>>>>>>>>>>> Xuelei
>>>>>>>>>>>>>
>>>>>>>>>>>>> On 8/7/2013 11:17 PM, Xuelei Fan wrote:
>>>>>>>>>>>>>> Please review the new update:
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> http://cr.openjdk.java.net./~xuelei/8020842/webrev.01/
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> With this update, "com." is valid (return "com."); "." and
>>>>>>>>>>>>>> "example..com" are invalid. And IAE will be thrown for
>>>>>>>>>>>>>> invalid
>>>>>>>>>>>>>> IDN.
>>>>>>>>>>>>>>
>>>>>>>>>>>>>> Thanks,
>>>>>>>>>>>>>> Xuelei
>>>>>>>>>>>>>>
>>>>>>>
>>>>>>
>>>>>
>>>>
>>>
>
From sean.mullan at oracle.com Mon Aug 12 12:47:00 2013
From: sean.mullan at oracle.com (Sean Mullan)
Date: Mon, 12 Aug 2013 08:47:00 -0400
Subject: [8] Request for review: 8016848: javax_security/auth/login tests
fail in compact 1 and 2 profiles
In-Reply-To: <5202D74C.5080900@oracle.com>
References: <51FA9166.7010809@oracle.com> <5200BA5D.4010606@oracle.com>
<520270E2.8040106@oracle.com> <5202ADC0.5090600@oracle.com>
<5202D74C.5080900@oracle.com>
Message-ID: <5208D944.7050408@oracle.com>
On 08/07/2013 07:25 PM, Xuelei Fan wrote:
> Maybe just as Sean said, the
> SPI mode is introduced later, and we need to consider compatibility
> issue. As in this update, we are trying to update the default
> implementation, it should be a chance to update the implementation to
> follow the model of SPI. It should be safe as the update only impact
> implementations.
Yes, I believe it is because of compatibility issues since
ConfigurationSpi was added in a later release. Also see the
Configuration.ConfigDelegate class.
Anyway, I'm going to push this since it isn't specifically relevant to
this bug. If you think there's some additional improvement that can be
done, please file a separate RFE.
Thanks,
Sean
From sean.mullan at oracle.com Mon Aug 12 13:54:59 2013
From: sean.mullan at oracle.com (sean.mullan at oracle.com)
Date: Mon, 12 Aug 2013 13:54:59 +0000
Subject: hg: jdk8/tl/jdk: 2 new changesets
Message-ID: <20130812135553.CEA46487BD@hg.openjdk.java.net>
Changeset: ffacf3e7a130
Author: mullan
Date: 2013-08-12 09:03 -0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/ffacf3e7a130
8016848: javax_security/auth/login tests fail in compact 1 and 2 profiles
Summary: Change the default value of the "login.configuration.provider" security property to sun.security.provider.ConfigFile
Reviewed-by: xuelei
! src/share/classes/com/sun/security/auth/login/ConfigFile.java
! src/share/classes/javax/security/auth/login/Configuration.java
+ src/share/classes/sun/security/provider/ConfigFile.java
- src/share/classes/sun/security/provider/ConfigSpiFile.java
! src/share/classes/sun/security/provider/SunEntries.java
! src/share/lib/security/java.security-linux
! src/share/lib/security/java.security-macosx
! src/share/lib/security/java.security-solaris
! src/share/lib/security/java.security-windows
Changeset: d73fbf005f5f
Author: mullan
Date: 2013-08-12 09:29 -0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/d73fbf005f5f
Merge
- src/share/classes/java/net/package.html
- test/java/lang/System/MacJNUEncoding/ExpectedEncoding.java
- test/java/lang/System/MacJNUEncoding/MacJNUEncoding.sh
From sundararajan.athijegannathan at oracle.com Mon Aug 12 15:14:44 2013
From: sundararajan.athijegannathan at oracle.com (sundararajan.athijegannathan at oracle.com)
Date: Mon, 12 Aug 2013 15:14:44 +0000
Subject: hg: jdk8/tl/nashorn: 9 new changesets
Message-ID: <20130812151453.0397A487BF@hg.openjdk.java.net>
Changeset: 14ea21d58f83
Author: jlaskey
Date: 2013-08-08 11:20 -0300
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/14ea21d58f83
Merge
- src/jdk/internal/dynalink/support/Backport.java
Changeset: 47e2b609fe31
Author: sundar
Date: 2013-08-09 20:48 +0530
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/47e2b609fe31
8022707: Revisit all doPrivileged blocks
Reviewed-by: jlaskey, hannesw
! make/project.properties
! src/jdk/nashorn/api/scripting/NashornScriptEngine.java
! src/jdk/nashorn/api/scripting/NashornScriptEngineFactory.java
! src/jdk/nashorn/api/scripting/ScriptObjectMirror.java
! src/jdk/nashorn/internal/objects/Global.java
! src/jdk/nashorn/internal/objects/NativeDebug.java
! src/jdk/nashorn/internal/runtime/Context.java
! src/jdk/nashorn/internal/runtime/ECMAErrors.java
! src/jdk/nashorn/internal/runtime/Logging.java
! src/jdk/nashorn/internal/runtime/linker/ClassAndLoader.java
! src/jdk/nashorn/internal/runtime/linker/JavaAdapterBytecodeGenerator.java
! src/jdk/nashorn/internal/runtime/linker/JavaAdapterClassLoader.java
! src/jdk/nashorn/internal/runtime/linker/JavaAdapterFactory.java
! src/jdk/nashorn/internal/runtime/linker/ReflectionCheckLinker.java
! src/jdk/nashorn/internal/runtime/options/Options.java
! src/jdk/nashorn/tools/Shell.java
Changeset: 01304b0550fb
Author: sundar
Date: 2013-08-12 14:43 +0530
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/01304b0550fb
8022782: publicLookup access failures in ScriptObject, ScriptFunction and ScriptFunction
Reviewed-by: lagergren, attila, hannesw
! src/jdk/nashorn/internal/codegen/CompilerConstants.java
! src/jdk/nashorn/internal/runtime/JSType.java
! src/jdk/nashorn/internal/runtime/ScriptObject.java
! src/jdk/nashorn/internal/runtime/ScriptRuntime.java
Changeset: 3c13fba4d727
Author: attila
Date: 2013-08-12 12:46 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/3c13fba4d727
8022789: Revisit doPrivileged blocks in Dynalink
Reviewed-by: lagergren, sundar
! src/jdk/internal/dynalink/DynamicLinkerFactory.java
+ src/jdk/internal/dynalink/support/ClassLoaderGetterContextProvider.java
! src/jdk/internal/dynalink/support/ClassMap.java
! src/jdk/internal/dynalink/support/TypeConverterFactory.java
Changeset: 0bbaa0ac36ab
Author: sundar
Date: 2013-08-12 16:52 +0530
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/0bbaa0ac36ab
8022614: Please exclude test test/script/trusted/JDK-8020809.js from Nashorn code coverage run
Reviewed-by: jlaskey, lagergren
! exclude/exclude_list_cc.txt
Changeset: 03ba1cd734c0
Author: hannesw
Date: 2013-08-12 13:31 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/03ba1cd734c0
8022731: NativeArguments has wrong implementation of isMapped()
Reviewed-by: lagergren, jlaskey
! src/jdk/nashorn/internal/objects/NativeArguments.java
+ test/script/basic/JDK-8022731.js
+ test/script/basic/JDK-8022731.js.EXPECTED
Changeset: 821b605c7046
Author: sundar
Date: 2013-08-12 17:08 +0530
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/821b605c7046
8022615: [nightly] Two nashorn print tests fail in nightly builds on Windows
Reviewed-by: lagergren, jlaskey
! test/src/jdk/nashorn/api/scripting/ScriptEngineTest.java
Changeset: f2e1673db03b
Author: sundar
Date: 2013-08-12 18:16 +0530
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/f2e1673db03b
8022598: Object.getPrototypeOf should return null for host objects rather than throwing TypeError
Reviewed-by: lagergren, jlaskey, attila, hannesw
! src/jdk/nashorn/internal/objects/NativeObject.java
+ test/script/basic/JDK-8022598.js
Changeset: a0807e889be3
Author: sundar
Date: 2013-08-12 20:37 +0530
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/a0807e889be3
Merge
From maurizio.cimadamore at oracle.com Mon Aug 12 16:29:08 2013
From: maurizio.cimadamore at oracle.com (maurizio.cimadamore at oracle.com)
Date: Mon, 12 Aug 2013 16:29:08 +0000
Subject: hg: jdk8/tl/langtools: 2 new changesets
Message-ID: <20130812162917.4FA16487C5@hg.openjdk.java.net>
Changeset: f7f271bd74a2
Author: mcimadamore
Date: 2013-08-12 17:25 +0100
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/f7f271bd74a2
6537020: JCK tests: a compile-time error should be given in case of ambiguously imported fields (types, methods)
Summary: Hiding check does not support interface multiple inheritance
Reviewed-by: jjg
! src/share/classes/com/sun/tools/javac/code/Scope.java
! src/share/classes/com/sun/tools/javac/code/Symbol.java
! src/share/classes/com/sun/tools/javac/comp/Check.java
! src/share/classes/com/sun/tools/javac/comp/MemberEnter.java
! src/share/classes/com/sun/tools/javac/comp/Resolve.java
! test/tools/javac/4980495/static/Test.out
! test/tools/javac/diags/examples/AlreadyDefinedStaticImport/AlreadDefinedStaticImport.java
! test/tools/javac/diags/examples/AlreadyDefinedStaticImport/p/E1.java
! test/tools/javac/diags/examples/AlreadyDefinedStaticImport/p/E2.java
+ test/tools/javac/staticImport/6537020/T6537020.java
+ test/tools/javac/staticImport/6537020/T6537020.out
Changeset: af80273f630a
Author: mcimadamore
Date: 2013-08-12 17:28 +0100
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/af80273f630a
8021567: Javac doesn't report \"java: reference to method is ambiguous\" any more
Summary: Javac incorrectly forgets about constant folding results within lambdas
Reviewed-by: jjg, vromero
! src/share/classes/com/sun/tools/javac/code/Type.java
! src/share/classes/com/sun/tools/javac/comp/Attr.java
+ test/tools/javac/lambda/8021567/T8021567.java
+ test/tools/javac/lambda/8021567/T8021567.out
+ test/tools/javac/lambda/8021567/T8021567b.java
From vicente.romero at oracle.com Mon Aug 12 16:41:24 2013
From: vicente.romero at oracle.com (vicente.romero at oracle.com)
Date: Mon, 12 Aug 2013 16:41:24 +0000
Subject: hg: jdk8/tl/jdk: 8015780:
java/lang/reflect/Method/GenericStringTest.java failing
Message-ID: <20130812164149.C5B8B487C9@hg.openjdk.java.net>
Changeset: 70c8f4a4b8d6
Author: vromero
Date: 2013-08-12 17:40 +0100
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/70c8f4a4b8d6
8015780: java/lang/reflect/Method/GenericStringTest.java failing
Reviewed-by: darcy, jfranck
! test/ProblemList.txt
! test/java/lang/reflect/Method/GenericStringTest.java
From sean.mullan at oracle.com Mon Aug 12 17:37:58 2013
From: sean.mullan at oracle.com (Sean Mullan)
Date: Mon, 12 Aug 2013 13:37:58 -0400
Subject: Code review request: 8020081 Cipher with OAEPPadding and
OAEPParameterSpec can't be created
In-Reply-To: <52046A4A.70400@oracle.com>
References: <52046A4A.70400@oracle.com>
Message-ID: <52091D76.70106@oracle.com>
Fix looks good, Very comprehensive test too.
--Sean
On 08/09/2013 12:04 AM, Anthony Scarpino wrote:
> Hi,
>
> I need a review of this small fix that registers OAEPPadding in SunJCE.
>
> http://cr.openjdk.java.net/~ascarpino/8020081/webrev.00/
>
> thanks
>
> Tony
From lance.andersen at oracle.com Mon Aug 12 20:09:57 2013
From: lance.andersen at oracle.com (lance.andersen at oracle.com)
Date: Mon, 12 Aug 2013 20:09:57 +0000
Subject: hg: jdk8/tl/jdk: 8022753: SQLXML javadoc example typo
Message-ID: <20130812201011.0221F487E1@hg.openjdk.java.net>
Changeset: cc64a05836a7
Author: lancea
Date: 2013-08-12 16:09 -0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/cc64a05836a7
8022753: SQLXML javadoc example typo
Reviewed-by: alanb, mchung
! src/share/classes/java/sql/SQLXML.java
From henry.jen at oracle.com Mon Aug 12 19:12:06 2013
From: henry.jen at oracle.com (henry.jen at oracle.com)
Date: Mon, 12 Aug 2013 19:12:06 +0000
Subject: hg: jdk8/tl/jdk: 8022749: Convert junit tests to testng in
test/java/lang/invoke
Message-ID: <20130812191235.BC88E487D6@hg.openjdk.java.net>
Changeset: 7758bcf0ab6b
Author: henryjen
Date: 2013-08-12 12:11 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/7758bcf0ab6b
8022749: Convert junit tests to testng in test/java/lang/invoke
Reviewed-by: mduigou, alanb
Contributed-by: Mani Sarkar
! test/java/lang/invoke/AccessControlTest.java
! test/java/lang/invoke/ClassValueTest.java
! test/java/lang/invoke/InvokeGenericTest.java
! test/java/lang/invoke/JavaDocExamplesTest.java
! test/java/lang/invoke/MethodTypeTest.java
! test/java/lang/invoke/PermuteArgsTest.java
! test/java/lang/invoke/ThrowExceptionsTest.java
From fweimer at redhat.com Tue Aug 13 08:25:41 2013
From: fweimer at redhat.com (Florian Weimer)
Date: Tue, 13 Aug 2013 10:25:41 +0200
Subject: Code review request, 8020842 IDN do not throw IAE when hostname
ends with a trailing dot
In-Reply-To: <52025434.8070200@oracle.com>
References: <5200E1B9.7070002@oracle.com> <520127A3.3060405@oracle.com>
<520133C7.20401@oracle.com> <5202411F.2010706@oracle.com>
<52025434.8070200@oracle.com>
Message-ID: <5209ED85.9060701@redhat.com>
On 08/07/2013 04:05 PM, Michael McMahon wrote:
> Resolvers seem to accept queries using trailing dots.
>
> eg nslookup www.oracle.com.
>
> or InetAddress.getByName("www.oracle.com.");
The trailing dot is even required in some contexts because it bypasses
the configured search path. For example, on some systems, "to" and
"to." return different address records, and for some applications, the
difference is rather important.
(This applies only to non-Windows systems, Windows has its own
idiosyncrasies when it comes to the trailing dot.)
--
Florian Weimer / Red Hat Product Security Team
From xuelei.fan at oracle.com Tue Aug 13 08:29:32 2013
From: xuelei.fan at oracle.com (Xuelei Fan)
Date: Tue, 13 Aug 2013 16:29:32 +0800
Subject: Code review request, 8020842 IDN do not throw IAE when hostname
ends with a trailing dot
In-Reply-To: <52087B8C.5080105@oracle.com>
References: <5200E1B9.7070002@oracle.com> <520127A3.3060405@oracle.com>
<520133C7.20401@oracle.com> <5202411F.2010706@oracle.com>
<52025434.8070200@oracle.com> <5202561A.5040908@oracle.com>
<52025726.8060203@oracle.com> <520264F1.1090802@oracle.com>
<52043AB3.6060704@oracle.com> <5204446D.7030603@oracle.com>
<520447BD.30206@oracle.com> <52045070.1000506@oracle.com>
<520458DF.1030502@oracle.com> <52046FF3.1040903@oracle.com>
<5204D312.4030209@oracle.com> <52050A01.3030503@oracle.com>
<520593CC.4010608@oracle.com> <5205AA57.6050704@oracle.com>
<520835CD.5090402@oracle.com> <5208526E.5020808@oracle.com>
<52087668.9080500@oracle.com> <52087B8C.5080105@oracle.com>
Message-ID: <5209EE6C.3050604@oracle.com>
Can I get an additional code review from networking team?
Thanks,
Xuelei
On 8/12/2013 2:07 PM, Weijun Wang wrote:
> new webrev: http://cr.openjdk.java.net/~xuelei/8020842/webrev.06/
From sean.mullan at oracle.com Tue Aug 13 13:05:47 2013
From: sean.mullan at oracle.com (sean.mullan at oracle.com)
Date: Tue, 13 Aug 2013 13:05:47 +0000
Subject: hg: jdk8/tl/jdk: 8020081: Cipher with OAEPPadding and
OAEPParameterSpec can't be created
Message-ID: <20130813130623.337D448806@hg.openjdk.java.net>
Changeset: 5b14d702b0b8
Author: ascarpino
Date: 2013-08-12 11:25 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/5b14d702b0b8
8020081: Cipher with OAEPPadding and OAEPParameterSpec can't be created
Reviewed-by: mullan
! src/share/classes/com/sun/crypto/provider/SunJCE.java
+ test/com/sun/crypto/provider/Cipher/RSA/TestOAEPPadding.java
From vincent.x.ryan at oracle.com Tue Aug 13 13:11:13 2013
From: vincent.x.ryan at oracle.com (Vincent Ryan)
Date: Tue, 13 Aug 2013 14:11:13 +0100
Subject: [8] code review 8013170: Spec for PBEParameterSpec does not specify
behavior when paramSpec is null
Message-ID: <101B64A5-02ED-470A-8EAF-2946D7CEFDDC@oracle.com>
Please review the following clarification to the spec for javax.crypto.spec.PBEParameterSpec
to specify that its new 3-arg constructor can also accept null as its final argument:
http://cr.openjdk.java.net/~vinnie/8013170/webrev.00/
Thanks.
From sean.mullan at oracle.com Tue Aug 13 13:41:24 2013
From: sean.mullan at oracle.com (Sean Mullan)
Date: Tue, 13 Aug 2013 09:41:24 -0400
Subject: [8] Review Request: 8022897: Add
test/com/sun/crypto/provider/Cipher/RSA/TestOAEPPadding.java
to ProblemList
Message-ID: <520A3784.7040300@oracle.com>
Could I get a quick code review on this?
Thanks,
Sean
$ hg diff ProblemList.txt
diff -r 5b14d702b0b8 test/ProblemList.txt
--- a/test/ProblemList.txt
+++ b/test/ProblemList.txt
@@ -296,6 +296,9 @@
# 7194428
sun/security/mscapi/ShortRSAKey1024.sh
windows-all
+# 8022896
+com/sun/crypto/provider/Cipher/RSA/TestOAEPPadding.java generic-all
+
############################################################################
# jdk_sound
From vincent.x.ryan at oracle.com Tue Aug 13 13:19:13 2013
From: vincent.x.ryan at oracle.com (vincent.x.ryan at oracle.com)
Date: Tue, 13 Aug 2013 13:19:13 +0000
Subject: hg: jdk8/tl/jdk: 2 new changesets
Message-ID: <20130813131940.272B248807@hg.openjdk.java.net>
Changeset: 818c3f82269c
Author: vinnie
Date: 2013-08-13 14:15 +0100
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/818c3f82269c
8013170: Spec for PBEParameterSpec does not specify behavior when paramSpec is null
Reviewed-by: mullan
! src/share/classes/javax/crypto/spec/PBEParameterSpec.java
Changeset: 26753a05859a
Author: vinnie
Date: 2013-08-13 14:18 +0100
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/26753a05859a
Merge
From alan.bateman at oracle.com Tue Aug 13 13:46:41 2013
From: alan.bateman at oracle.com (alan.bateman at oracle.com)
Date: Tue, 13 Aug 2013 13:46:41 +0000
Subject: hg: jdk8/tl/jdk: 8022180: BigInteger Burnikel-Ziegler quotient and
remainder calculation assumes quotient parameter is zero
Message-ID: <20130813134655.5EFA14880A@hg.openjdk.java.net>
Changeset: 834faf2081b3
Author: bpb
Date: 2013-08-12 16:21 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/834faf2081b3
8022180: BigInteger Burnikel-Ziegler quotient and remainder calculation assumes quotient parameter is zero
Summary: Clear the quotient in divideAndRemainderBurnikelZiegler() if the divisor is larger than the dividend.
Reviewed-by: alanb, bpb
Contributed-by: Timothy Buktu
! src/share/classes/java/math/MutableBigInteger.java
! test/java/math/BigInteger/BigIntegerTest.java
From sean.mullan at oracle.com Tue Aug 13 13:52:19 2013
From: sean.mullan at oracle.com (Sean Mullan)
Date: Tue, 13 Aug 2013 09:52:19 -0400
Subject: [8] code review 8013170: Spec for PBEParameterSpec does not
specify behavior when paramSpec is null
In-Reply-To: <101B64A5-02ED-470A-8EAF-2946D7CEFDDC@oracle.com>
References: <101B64A5-02ED-470A-8EAF-2946D7CEFDDC@oracle.com>
Message-ID: <520A3A13.10902@oracle.com>
Looks fine. The bug should have a noreg label (probably noreg-jck).
--Sean
On 08/13/2013 09:11 AM, Vincent Ryan wrote:
> Please review the following clarification to the spec for javax.crypto.spec.PBEParameterSpec
> to specify that its new 3-arg constructor can also accept null as its final argument:
>
> http://cr.openjdk.java.net/~vinnie/8013170/webrev.00/
>
> Thanks.
>
>
From vincent.x.ryan at oracle.com Tue Aug 13 14:00:13 2013
From: vincent.x.ryan at oracle.com (Vincent Ryan)
Date: Tue, 13 Aug 2013 15:00:13 +0100
Subject: [8] code review 8013170: Spec for PBEParameterSpec does not
specify behavior when paramSpec is null
In-Reply-To: <520A3A13.10902@oracle.com>
References: <101B64A5-02ED-470A-8EAF-2946D7CEFDDC@oracle.com>
<520A3A13.10902@oracle.com>
Message-ID:
Thanks. I've also updated the bug report as you suggest.
On 13 Aug 2013, at 14:52, Sean Mullan wrote:
> Looks fine. The bug should have a noreg label (probably noreg-jck).
>
> --Sean
>
> On 08/13/2013 09:11 AM, Vincent Ryan wrote:
>> Please review the following clarification to the spec for javax.crypto.spec.PBEParameterSpec
>> to specify that its new 3-arg constructor can also accept null as its final argument:
>>
>> http://cr.openjdk.java.net/~vinnie/8013170/webrev.00/
>>
>> Thanks.
>>
>>
>
From vincent.x.ryan at oracle.com Tue Aug 13 14:02:19 2013
From: vincent.x.ryan at oracle.com (Vincent Ryan)
Date: Tue, 13 Aug 2013 15:02:19 +0100
Subject: [8] Review Request: 8022897: Add
test/com/sun/crypto/provider/Cipher/RSA/TestOAEPPadding.java to
ProblemList
In-Reply-To: <520A3784.7040300@oracle.com>
References: <520A3784.7040300@oracle.com>
Message-ID: <371F7C64-210D-4B9F-9DA1-7826A149A567@oracle.com>
Looks fine to me.
On 13 Aug 2013, at 14:41, Sean Mullan wrote:
> Could I get a quick code review on this?
>
> Thanks,
> Sean
>
> $ hg diff ProblemList.txt
> diff -r 5b14d702b0b8 test/ProblemList.txt
> --- a/test/ProblemList.txt
> +++ b/test/ProblemList.txt
> @@ -296,6 +296,9 @@
> # 7194428
> sun/security/mscapi/ShortRSAKey1024.sh windows-all
>
> +# 8022896
> +com/sun/crypto/provider/Cipher/RSA/TestOAEPPadding.java generic-all
> +
> ############################################################################
>
> # jdk_sound
From chris.hegarty at oracle.com Tue Aug 13 14:00:37 2013
From: chris.hegarty at oracle.com (Chris Hegarty)
Date: Tue, 13 Aug 2013 15:00:37 +0100
Subject: [8] Review Request: 8022897: Add
test/com/sun/crypto/provider/Cipher/RSA/TestOAEPPadding.java
to ProblemList
In-Reply-To: <520A3784.7040300@oracle.com>
References: <520A3784.7040300@oracle.com>
Message-ID: <520A3C05.6030903@oracle.com>
Dammit, only seeing this now. I just pushed Amy's ProblemList updates a
few minutes ago, could have added this too.
Anyway, consider it reviewed.
-Chris.
On 08/13/2013 02:41 PM, Sean Mullan wrote:
> Could I get a quick code review on this?
>
> Thanks,
> Sean
>
> $ hg diff ProblemList.txt
> diff -r 5b14d702b0b8 test/ProblemList.txt
> --- a/test/ProblemList.txt
> +++ b/test/ProblemList.txt
> @@ -296,6 +296,9 @@
> # 7194428
> sun/security/mscapi/ShortRSAKey1024.sh windows-all
>
> +# 8022896
> +com/sun/crypto/provider/Cipher/RSA/TestOAEPPadding.java
> generic-all
> +
>
> ############################################################################
>
>
> # jdk_sound
From daniel.fuchs at oracle.com Tue Aug 13 14:01:14 2013
From: daniel.fuchs at oracle.com (daniel.fuchs at oracle.com)
Date: Tue, 13 Aug 2013 14:01:14 +0000
Subject: hg: jdk8/tl/jdk: 8019948:
java/util/logging/bundlesearch/ResourceBundleSearchTest.java is
failing intermittently
Message-ID: <20130813140126.A06E14880E@hg.openjdk.java.net>
Changeset: 78c102c3eefc
Author: dfuchs
Date: 2013-08-13 16:00 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/78c102c3eefc
8019948: java/util/logging/bundlesearch/ResourceBundleSearchTest.java is failing intermittently
Reviewed-by: mchung, dholmes
! test/java/util/logging/bundlesearch/ResourceBundleSearchTest.java
From sean.mullan at oracle.com Tue Aug 13 14:10:00 2013
From: sean.mullan at oracle.com (sean.mullan at oracle.com)
Date: Tue, 13 Aug 2013 14:10:00 +0000
Subject: hg: jdk8/tl/jdk: 2 new changesets
Message-ID: <20130813141024.7A95E4880F@hg.openjdk.java.net>
Changeset: 412b2f0950a9
Author: mullan
Date: 2013-08-13 10:06 -0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/412b2f0950a9
8022897: Add test/com/sun/crypto/provider/Cipher/RSA/TestOAEPPadding.java to ProblemList
Reviewed-by: vinnie, chegar
! test/ProblemList.txt
Changeset: 19133b3af95f
Author: mullan
Date: 2013-08-13 10:07 -0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/19133b3af95f
Merge
! test/ProblemList.txt
From chris.hegarty at oracle.com Tue Aug 13 13:57:59 2013
From: chris.hegarty at oracle.com (chris.hegarty at oracle.com)
Date: Tue, 13 Aug 2013 13:57:59 +0000
Subject: hg: jdk8/tl/jdk: 8022779: ProblemList.txt updates (8/2013)
Message-ID: <20130813135811.2FB3A4880C@hg.openjdk.java.net>
Changeset: 18e15d92610b
Author: chegar
Date: 2013-08-13 14:57 +0100
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/18e15d92610b
8022779: ProblemList.txt updates (8/2013)
Summary: Update ProblemList and remove AggressiveOpts MOAT test run
Reviewed-by: chegar, alanb
Contributed-by: Amy Lu
! test/ProblemList.txt
! test/java/util/Collection/MOAT.java
From joe.darcy at oracle.com Tue Aug 13 17:12:46 2013
From: joe.darcy at oracle.com (joe.darcy at oracle.com)
Date: Tue, 13 Aug 2013 17:12:46 +0000
Subject: hg: jdk8/tl/jdk: 8022959: Fix new doclint issues in java.util.zip
Message-ID: <20130813171336.4A95548827@hg.openjdk.java.net>
Changeset: cd9379e348d0
Author: darcy
Date: 2013-08-13 10:12 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/cd9379e348d0
8022959: Fix new doclint issues in java.util.zip
Reviewed-by: chegar
! src/share/classes/java/util/zip/ZipEntry.java
From ntn at techma.com Tue Aug 13 17:38:47 2013
From: ntn at techma.com (Neon)
Date: Tue, 13 Aug 2013 17:38:47 +0000 (UTC)
Subject: getCodeBase broken locally in 7 update 25
References: <000601ce6d3a$e3822110$aa866330$@segal.org>
<0DB9525D-F31B-46AF-9303-116E8088CB51@oracle.com>
Message-ID:
Sandeep Konchady writes:
>
> Hi Mickey,
> The issue you are seeing is intended behavior. This was caused because of
a vulnerability that was fixed in 7u25 in which which a ?getCodeBase call
against all local?applet/jnlp apps will return null.
>
>
> Thanks,
> Sandeep
>
>
> On Jun 19, 2013, at 3:18 PM, "Mickey Segal"
wrote:
>
> The local getCodeBase problem is not present in Java 8 build 94, the most
recent version.?
> ?
>
> From:?Mickey Segal [mailto:java3 segal.org]?Sent:?Wednesday, June 19,
2013 3:56 PMTo:?Java Security
(security-dev at openjdk.java.net)Subject:?RE:
getCodeBase broken locally in 7 update 25
>
> ?
> The same getCodeBase problem seems to be occurring on the MacOS version too.
> ?
> From:?Mickey Segal [mailto:java3 at segal.org]
> I upgraded a Windows 7 computer to Java version 1.7.0_25 from 1.7.0_21.? A
getCodeBase call in a signed applet now returns null.? In previous versions
of Java, getCodeBase returned a URL that referred to the current directory
(tested from Java 1.1 to 1.7.0_21 over the years).
> ?
> Was this done purposely for security reasons, or is it just a bug??
> ?
> I will also test on Macintosh and report back on macosx-port-dev if it is
a problem there too.
>
>
We have code that uses relative path from the codebase for Applets when it
is served either from a web server or local file which is now broken from
the local file system.
What is the alternative in 7u25 for Applet.getCodeBase() for Applets running
on a local file?
Regards,
Neon
From rob.mckenna at oracle.com Tue Aug 13 18:09:34 2013
From: rob.mckenna at oracle.com (rob.mckenna at oracle.com)
Date: Tue, 13 Aug 2013 18:09:34 +0000
Subject: hg: jdk8/tl/jdk: 5049299: (process) Use posix_spawn, not fork,
on S10 to avoid swap exhaustion
Message-ID: <20130813181025.5211F4882B@hg.openjdk.java.net>
Changeset: a4b0be7341ef
Author: robm
Date: 2013-08-13 19:10 +0100
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/a4b0be7341ef
5049299: (process) Use posix_spawn, not fork, on S10 to avoid swap exhaustion
Reviewed-by: alanb, dholmes, martin, erikj, coffeys
! make/java/java/Exportedfiles.gmk
! make/java/java/Makefile
! makefiles/CompileLaunchers.gmk
! makefiles/CompileNativeLibraries.gmk
! src/solaris/classes/java/lang/UNIXProcess.java.bsd
! src/solaris/classes/java/lang/UNIXProcess.java.linux
! src/solaris/classes/java/lang/UNIXProcess.java.solaris
! src/solaris/native/java/lang/UNIXProcess_md.c
+ src/solaris/native/java/lang/childproc.c
+ src/solaris/native/java/lang/childproc.h
+ src/solaris/native/java/lang/jspawnhelper.c
! test/java/lang/ProcessBuilder/Basic.java
From anthony.scarpino at oracle.com Tue Aug 13 23:00:32 2013
From: anthony.scarpino at oracle.com (Anthony Scarpino)
Date: Tue, 13 Aug 2013 16:00:32 -0700
Subject: Code review request: 8022669 OAEPParameterSpec does not work if
MGF1ParameterSpec is set to SHA2 algorithms
Message-ID: <520ABA90.6070803@oracle.com>
Hi,
I'd like to get a code review of my fix for:
8022669 OAEPParameterSpec does not work if MGF1ParameterSpec is set to
SHA2 algorithms
http://cr.openjdk.java.net/~ascarpino/8022669/webrev.00/
thanks
Tony
From lana.steuck at oracle.com Wed Aug 14 02:47:11 2013
From: lana.steuck at oracle.com (lana.steuck at oracle.com)
Date: Wed, 14 Aug 2013 02:47:11 +0000
Subject: hg: jdk8/tl/nashorn: 3 new changesets
Message-ID: <20130814024719.4B06448856@hg.openjdk.java.net>
Changeset: 795cff5c1b5c
Author: cl
Date: 2013-08-08 10:10 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/795cff5c1b5c
Added tag jdk8-b102 for changeset e966ff0a3ffe
! .hgtags
Changeset: 414203de4374
Author: lana
Date: 2013-08-13 10:34 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/414203de4374
Merge
Changeset: 8ecf68b292d0
Author: lana
Date: 2013-08-13 18:34 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/8ecf68b292d0
Merge
From lana.steuck at oracle.com Wed Aug 14 02:47:11 2013
From: lana.steuck at oracle.com (lana.steuck at oracle.com)
Date: Wed, 14 Aug 2013 02:47:11 +0000
Subject: hg: jdk8/tl/jaxp: 2 new changesets
Message-ID: <20130814024727.1676748858@hg.openjdk.java.net>
Changeset: b1ceab582fc6
Author: cl
Date: 2013-08-08 10:10 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jaxp/rev/b1ceab582fc6
Added tag jdk8-b102 for changeset 7cffafa606e9
! .hgtags
Changeset: 9800647936dd
Author: lana
Date: 2013-08-13 18:28 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jaxp/rev/9800647936dd
Merge
From lana.steuck at oracle.com Wed Aug 14 02:47:03 2013
From: lana.steuck at oracle.com (lana.steuck at oracle.com)
Date: Wed, 14 Aug 2013 02:47:03 +0000
Subject: hg: jdk8/tl/corba: 2 new changesets
Message-ID: <20130814024709.852E048855@hg.openjdk.java.net>
Changeset: f8ed09af1df6
Author: cl
Date: 2013-08-08 10:10 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/corba/rev/f8ed09af1df6
Added tag jdk8-b102 for changeset 528c7e76eaee
! .hgtags
Changeset: 49c4a777fdfd
Author: lana
Date: 2013-08-13 10:34 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/corba/rev/49c4a777fdfd
Merge
From lana.steuck at oracle.com Wed Aug 14 02:47:08 2013
From: lana.steuck at oracle.com (lana.steuck at oracle.com)
Date: Wed, 14 Aug 2013 02:47:08 +0000
Subject: hg: jdk8/tl: Added tag jdk8-b102 for changeset 5eb3c1dc348f
Message-ID: <20130814024709.7C73148854@hg.openjdk.java.net>
Changeset: b7e64be81c8a
Author: cl
Date: 2013-08-08 10:10 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/rev/b7e64be81c8a
Added tag jdk8-b102 for changeset 5eb3c1dc348f
! .hgtags
From lana.steuck at oracle.com Wed Aug 14 02:47:11 2013
From: lana.steuck at oracle.com (lana.steuck at oracle.com)
Date: Wed, 14 Aug 2013 02:47:11 +0000
Subject: hg: jdk8/tl/langtools: 3 new changesets
Message-ID: <20130814024733.007B548859@hg.openjdk.java.net>
Changeset: 6718df4cd616
Author: cl
Date: 2013-08-08 10:10 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/6718df4cd616
Added tag jdk8-b102 for changeset 453a305e1165
! .hgtags
Changeset: 76cfe7c61f25
Author: lana
Date: 2013-08-13 10:35 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/76cfe7c61f25
Merge
Changeset: 32b6a99cc74e
Author: lana
Date: 2013-08-13 18:34 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/32b6a99cc74e
Merge
From lana.steuck at oracle.com Wed Aug 14 02:47:20 2013
From: lana.steuck at oracle.com (lana.steuck at oracle.com)
Date: Wed, 14 Aug 2013 02:47:20 +0000
Subject: hg: jdk8/tl/hotspot: 25 new changesets
Message-ID: <20130814024823.802374885A@hg.openjdk.java.net>
Changeset: b9a927798f12
Author: cl
Date: 2013-08-08 10:10 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/b9a927798f12
Added tag jdk8-b102 for changeset c4697c1c4484
! .hgtags
Changeset: 79ce055063e9
Author: amurillo
Date: 2013-08-02 03:06 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/79ce055063e9
8022124: new hotspot build - hs25-b45
Reviewed-by: jcoomes
! make/hotspot_version
Changeset: 9bd314787fad
Author: mseledtsov
Date: 2013-08-01 22:15 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/9bd314787fad
8020614: OutputAnalyzer.shouldHaveExitValue() should print stdout/stderr output
Summary: OutputAnalyzer.shouldHaveExitValue() should print stdout/stderr output
Reviewed-by: kvn, ctornqvi, dholmes
+ test/testlibrary/OutputAnalyzerReportingTest.java
! test/testlibrary/com/oracle/java/testlibrary/OutputAnalyzer.java
! test/testlibrary/com/oracle/java/testlibrary/ProcessTools.java
Changeset: c01913206da5
Author: ctornqvi
Date: 2013-08-01 22:20 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/c01913206da5
8014294: Assert in ThreadTimesClosure::do_thread() due to use of naked oop instead of handle
Summary: Assert in ThreadTimesClosure::do_thread() due to use of naked oop instead of handle
Reviewed-by: coleenp, sspitsyn
! src/share/vm/services/management.cpp
Changeset: 81e0f17ade64
Author: ctornqvi
Date: 2013-08-01 22:25 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/81e0f17ade64
8009407: runtime/8000968/Test8000968.sh has incorrect check for proper config
Summary: runtime/8000968/Test8000968.sh has incorrect check for proper config
Reviewed-by: coleenp, mseledtsov, sspitsyn, hseigel
- test/runtime/8000968/Test8000968.sh
+ test/runtime/CompressedOops/CompressedKlassPointerAndOops.java
Changeset: 32e3bada0978
Author: kevinw
Date: 2013-08-02 12:26 +0100
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/32e3bada0978
8020943: Memory leak when GCNotifier uses create_from_platform_dependent_str()
Reviewed-by: mgerdin, fparain, dcubed
! src/share/vm/services/gcNotifier.cpp
Changeset: dee4c330acd4
Author: dcubed
Date: 2013-08-02 08:32 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/dee4c330acd4
Merge
- test/runtime/8000968/Test8000968.sh
Changeset: fa57c8104b76
Author: ctornqvi
Date: 2013-08-02 18:12 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/fa57c8104b76
8009585: test/runtime/7196045 times out
Summary: test/runtime/7196045 times out
Reviewed-by: dholmes, mseledtsov
- test/runtime/7196045/Test7196045.java
+ test/runtime/InternalApi/ThreadCpuTimesDeadlock.java
Changeset: 0f209afdfcf8
Author: ctornqvi
Date: 2013-08-02 18:26 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/0f209afdfcf8
Merge
Changeset: d02de8cac823
Author: ctornqvi
Date: 2013-08-02 22:34 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/d02de8cac823
Merge
- test/runtime/7196045/Test7196045.java
Changeset: e0379d5ba5d2
Author: kevinw
Date: 2013-08-05 10:27 +0100
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/e0379d5ba5d2
8021444: SA: ClassDump.run() should not ignore existing ClassFilter.
Reviewed-by: minqi, poonam
! agent/src/share/classes/sun/jvm/hotspot/tools/jcore/ClassDump.java
Changeset: b67604b59546
Author: hseigel
Date: 2013-08-04 16:30 -0400
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/b67604b59546
7073961: [TESTBUG] closed/runtime/4845371/DBB.java failed on solaris 10 X65
Summary: Added a x86 64-bit Solaris shared library and rewrote test in Java
Reviewed-by: dholmes, ctornqvi
! test/testlibrary/com/oracle/java/testlibrary/Platform.java
Changeset: 9064e3a19525
Author: hseigel
Date: 2013-08-05 08:55 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/9064e3a19525
Merge
- test/runtime/7196045/Test7196045.java
- test/runtime/8000968/Test8000968.sh
Changeset: 22a5aff0df0b
Author: dsamersoff
Date: 2013-08-06 14:28 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/22a5aff0df0b
8019396: SA-JDI OSThread class initialization throws an exception
Summary: Method sun.jvm.hotspot.runtime.OSThread.initialize throws a sun.jvm.hotspot.types.WrongTypeException
Reviewed-by: dholmes, mgerdin
! agent/src/share/classes/sun/jvm/hotspot/jdi/JVMTIThreadState.java
! agent/src/share/classes/sun/jvm/hotspot/runtime/OSThread.java
Changeset: cd25d3be91c5
Author: vladidan
Date: 2013-08-06 20:01 -0400
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/cd25d3be91c5
8012144: multiple SIGSEGVs fails on staxf
Summary: Forward port of 7u change to add additional fence() on RMO platforms, with a load_acquire on all platforms
Reviewed-by: dholmes, kvn
! src/share/vm/utilities/taskqueue.hpp
Changeset: f5bed20f2492
Author: dholmes
Date: 2013-08-08 08:29 -0400
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/f5bed20f2492
Merge
Changeset: 79a5283f4595
Author: iignatyev
Date: 2013-07-29 11:54 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/79a5283f4595
8021120: TieredCompilation can be enabled even if TIERED is undefined
Reviewed-by: kvn, dholmes
! src/share/vm/runtime/arguments.cpp
Changeset: 8d77d02828d9
Author: twisti
Date: 2013-07-29 16:32 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/8d77d02828d9
8016474: Crash in sun.reflect.UnsafeObjectFieldAccessorImpl.get
Summary: C1's GetUnsafeObject G1 pre-barrier uses the wrong type to read the klass pointer.
Reviewed-by: iveresov, kvn
! src/share/vm/c1/c1_LIRGenerator.cpp
+ test/compiler/unsafe/GetUnsafeObjectG1PreBarrier.java
Changeset: 446cb5d25d03
Author: anoll
Date: 2013-08-01 16:01 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/446cb5d25d03
8020531: Test compiler/codecache/CheckUpperLimit.java fails when memory limited
Summary: Removed part of the test that required the VM to start up with -XX:ReservedCodeCacheSize=2048m
Reviewed-by: kvn, rbackman
! test/compiler/codecache/CheckUpperLimit.java
Changeset: 6e04c193845f
Author: anoll
Date: 2013-08-02 10:20 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/6e04c193845f
8021301: better event messages
Summary: made event messages better readable
Reviewed-by: kvn, rbackman
! src/share/vm/classfile/classLoader.cpp
! src/share/vm/utilities/exceptions.cpp
Changeset: 5e0b3d7df485
Author: rbackman
Date: 2013-08-05 17:15 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/5e0b3d7df485
Merge
! src/share/vm/runtime/arguments.cpp
Changeset: 71526a36ebb4
Author: twisti
Date: 2013-08-05 15:03 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/71526a36ebb4
8022029: GetUnsafeObjectG1PreBarrier fails on 32-bit with: Unrecognized VM option 'ObjectAlignmentInBytes=32'
Reviewed-by: kvn
! test/compiler/unsafe/GetUnsafeObjectG1PreBarrier.java
Changeset: dadf62510ae4
Author: rbackman
Date: 2013-08-08 23:49 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/dadf62510ae4
Merge
Changeset: 7f55137d6aa8
Author: amurillo
Date: 2013-08-09 01:32 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/7f55137d6aa8
Merge
- test/runtime/7196045/Test7196045.java
- test/runtime/8000968/Test8000968.sh
Changeset: 6f9be7f87b96
Author: amurillo
Date: 2013-08-09 01:32 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/6f9be7f87b96
Added tag hs25-b45 for changeset 7f55137d6aa8
! .hgtags
From lana.steuck at oracle.com Wed Aug 14 02:47:11 2013
From: lana.steuck at oracle.com (lana.steuck at oracle.com)
Date: Wed, 14 Aug 2013 02:47:11 +0000
Subject: hg: jdk8/tl/jaxws: Added tag jdk8-b102 for changeset 988a5f2ac559
Message-ID: <20130814024722.7F86B48857@hg.openjdk.java.net>
Changeset: 6cdc6ed98780
Author: cl
Date: 2013-08-08 10:10 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jaxws/rev/6cdc6ed98780
Added tag jdk8-b102 for changeset 988a5f2ac559
! .hgtags
From lana.steuck at oracle.com Wed Aug 14 02:48:48 2013
From: lana.steuck at oracle.com (lana.steuck at oracle.com)
Date: Wed, 14 Aug 2013 02:48:48 +0000
Subject: hg: jdk8/tl/jdk: 21 new changesets
Message-ID: <20130814025338.ABC014885B@hg.openjdk.java.net>
Changeset: e057cddf0d6c
Author: cl
Date: 2013-08-08 10:10 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/e057cddf0d6c
Added tag jdk8-b102 for changeset 8ed8e2b4b90e
! .hgtags
Changeset: 1c6bfb303ffc
Author: prr
Date: 2013-08-06 13:38 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/1c6bfb303ffc
8022175: Fix doclint warnings in javax.print
Reviewed-by: darcy
! src/share/classes/javax/print/DocFlavor.java
! src/share/classes/javax/print/MultiDocPrintJob.java
! src/share/classes/javax/print/PrintService.java
! src/share/classes/javax/print/ServiceUI.java
! src/share/classes/javax/print/ServiceUIFactory.java
! src/share/classes/javax/print/attribute/AttributeSet.java
! src/share/classes/javax/print/attribute/DateTimeSyntax.java
! src/share/classes/javax/print/attribute/DocAttributeSet.java
! src/share/classes/javax/print/attribute/EnumSyntax.java
! src/share/classes/javax/print/attribute/HashAttributeSet.java
! src/share/classes/javax/print/attribute/IntegerSyntax.java
! src/share/classes/javax/print/attribute/PrintJobAttributeSet.java
! src/share/classes/javax/print/attribute/PrintRequestAttributeSet.java
! src/share/classes/javax/print/attribute/PrintServiceAttributeSet.java
! src/share/classes/javax/print/attribute/ResolutionSyntax.java
! src/share/classes/javax/print/attribute/Size2DSyntax.java
! src/share/classes/javax/print/attribute/standard/Chromaticity.java
! src/share/classes/javax/print/attribute/standard/Compression.java
! src/share/classes/javax/print/attribute/standard/Finishings.java
! src/share/classes/javax/print/attribute/standard/JobKOctets.java
! src/share/classes/javax/print/attribute/standard/MediaPrintableArea.java
! src/share/classes/javax/print/attribute/standard/MediaSize.java
! src/share/classes/javax/print/attribute/standard/PresentationDirection.java
! src/share/classes/javax/print/attribute/standard/PrinterMoreInfoManufacturer.java
! src/share/classes/javax/print/attribute/standard/PrinterResolution.java
Changeset: c3b91dc2504a
Author: jgodinez
Date: 2013-08-06 14:22 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/c3b91dc2504a
8021583: test/javax/print/autosense/PrintAutoSenseData.java throwing NPE
Reviewed-by: jchen, prr
! src/solaris/classes/sun/print/UnixPrintJob.java
! src/windows/classes/sun/print/Win32PrintJob.java
! test/javax/print/attribute/autosense/PrintAutoSenseData.java
+ test/javax/print/attribute/autosense/sample.txt
Changeset: fe04f40cf469
Author: prr
Date: 2013-08-06 17:11 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/fe04f40cf469
8022455: Fix doclint warnings in javax.imageio
Reviewed-by: darcy
! src/share/classes/javax/imageio/ImageIO.java
! src/share/classes/javax/imageio/ImageReadParam.java
! src/share/classes/javax/imageio/ImageReader.java
! src/share/classes/javax/imageio/ImageTypeSpecifier.java
! src/share/classes/javax/imageio/ImageWriteParam.java
! src/share/classes/javax/imageio/ImageWriter.java
! src/share/classes/javax/imageio/metadata/IIOMetadataFormatImpl.java
! src/share/classes/javax/imageio/plugins/bmp/BMPImageWriteParam.java
! src/share/classes/javax/imageio/plugins/jpeg/JPEGImageReadParam.java
! src/share/classes/javax/imageio/plugins/jpeg/JPEGImageWriteParam.java
! src/share/classes/javax/imageio/spi/ImageReaderSpi.java
! src/share/classes/javax/imageio/spi/ImageWriterSpi.java
! src/share/classes/javax/imageio/spi/ServiceRegistry.java
! src/share/classes/javax/imageio/stream/ImageInputStream.java
! src/share/classes/javax/imageio/stream/ImageInputStreamImpl.java
! src/share/classes/javax/imageio/stream/ImageOutputStream.java
Changeset: c827ad8c1101
Author: prr
Date: 2013-08-06 17:12 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/c827ad8c1101
8022447: Fix doclint warnings in java.awt.image
Reviewed-by: darcy
! src/share/classes/java/awt/image/BufferStrategy.java
! src/share/classes/java/awt/image/BufferedImage.java
! src/share/classes/java/awt/image/ByteLookupTable.java
! src/share/classes/java/awt/image/ColorModel.java
! src/share/classes/java/awt/image/DirectColorModel.java
! src/share/classes/java/awt/image/ImageProducer.java
! src/share/classes/java/awt/image/IndexColorModel.java
! src/share/classes/java/awt/image/MemoryImageSource.java
! src/share/classes/java/awt/image/MultiPixelPackedSampleModel.java
! src/share/classes/java/awt/image/PixelGrabber.java
! src/share/classes/java/awt/image/RGBImageFilter.java
! src/share/classes/java/awt/image/ShortLookupTable.java
! src/share/classes/java/awt/image/SinglePixelPackedSampleModel.java
! src/share/classes/java/awt/image/WritableRaster.java
Changeset: 9314c199003d
Author: lana
Date: 2013-08-06 22:47 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/9314c199003d
Merge
- src/share/classes/java/net/package.html
Changeset: ab64c138d5bd
Author: prr
Date: 2013-08-07 18:24 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/ab64c138d5bd
8014883: java.awt.container.add(component comp object constraints) doesn't work as expected on some linux platforms
Reviewed-by: jgodinez
! makefiles/CompileNativeLibraries.gmk
! src/solaris/native/sun/java2d/x11/XRBackendNative.c
Changeset: 645a37a3559f
Author: leonidr
Date: 2013-08-01 01:26 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/645a37a3559f
8021815: Add regression test for JDK-8007267
Reviewed-by: serb
+ test/com/apple/eawt/DefaultMenuBar/DefaultMenuBarTest.java
Changeset: 495ca130cbde
Author: alexsch
Date: 2013-08-01 17:09 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/495ca130cbde
7161568: [macosx] api/javax_swing/JTabbedPane/index2.html#varios fails
Reviewed-by: malenkov, serb
! src/macosx/classes/com/apple/laf/AquaTabbedPaneCopyFromBasicUI.java
! src/macosx/classes/com/apple/laf/AquaTabbedPaneUI.java
+ test/javax/swing/JTabbedPane/4361477/bug4361477.java
+ test/javax/swing/JTabbedPane/6495408/bug6495408.java
+ test/javax/swing/JTabbedPane/7161568/bug7161568.java
Changeset: e76b1568d002
Author: leonidr
Date: 2013-08-02 15:42 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/e76b1568d002
8021381: JavaFX scene included in Swing JDialog not starting from Web Start
Reviewed-by: art, dcherepanov
! src/share/classes/sun/awt/AppContext.java
Changeset: 07abddc1d7f2
Author: leonidr
Date: 2013-08-06 17:07 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/07abddc1d7f2
8022247: java/awt/EventDispatchThread/LoopRobustness/LoopRobustness throws NPE
Reviewed-by: art
! test/java/awt/EventDispatchThread/LoopRobustness/LoopRobustness.java
Changeset: 27d1bdf2f7d9
Author: mcherkas
Date: 2013-08-06 17:29 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/27d1bdf2f7d9
8016833: Underlines and strikethrough not rendering correctly
Reviewed-by: alexsch, serb
Contributed-by: anton.nashatyrev at oracle.com
! src/share/classes/javax/swing/text/GlyphView.java
+ test/javax/swing/text/StyledEditorKit/8016833/bug8016833.java
Changeset: f8ed88f5ed87
Author: alexsch
Date: 2013-08-07 18:32 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/f8ed88f5ed87
8022532: [parfait] Potential memory leak in gtk2_interface.c
Reviewed-by: art, serb
! src/solaris/native/sun/awt/gtk2_interface.c
Changeset: 7706a622d35f
Author: alexsch
Date: 2013-08-07 18:58 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/7706a622d35f
8013849: Awt assert on Hashtable.cpp:124
Reviewed-by: serb
! src/windows/native/sun/windows/awt_Component.cpp
+ test/java/awt/event/KeyEvent/DeadKey/DeadKeySystemAssertionDialog.java
Changeset: f70492d969e7
Author: serb
Date: 2013-08-07 19:57 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/f70492d969e7
7124339: [macosx] setIconImage is not endlessly tolerant to the broken image-arguments
Reviewed-by: alexsch, leonidr
! src/macosx/classes/sun/lwawt/macosx/CPlatformWindow.java
Changeset: 540192229a69
Author: art
Date: 2013-08-07 21:31 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/540192229a69
6551589: ContainerListener Documentation may be incorrect
Reviewed-by: serb
! src/share/classes/java/awt/event/ContainerListener.java
Changeset: 9bcc3f2af980
Author: lana
Date: 2013-08-07 12:03 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/9bcc3f2af980
Merge
- src/share/classes/java/net/package.html
Changeset: e193c4ad940a
Author: lana
Date: 2013-08-07 19:52 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/e193c4ad940a
Merge
Changeset: 23e68a8e4b91
Author: lana
Date: 2013-08-07 19:56 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/23e68a8e4b91
Merge
- test/java/lang/System/MacJNUEncoding/ExpectedEncoding.java
- test/java/lang/System/MacJNUEncoding/MacJNUEncoding.sh
Changeset: e0f6039c0290
Author: lana
Date: 2013-08-13 10:42 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/e0f6039c0290
Merge
Changeset: 18ce880b5fb4
Author: lana
Date: 2013-08-13 18:33 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/18ce880b5fb4
Merge
! makefiles/CompileNativeLibraries.gmk
From vicente.romero at oracle.com Wed Aug 14 09:56:50 2013
From: vicente.romero at oracle.com (vicente.romero at oracle.com)
Date: Wed, 14 Aug 2013 09:56:50 +0000
Subject: hg: jdk8/tl/langtools: 8013394: compile of iterator use fails with
error \"defined in an inaccessible class or interface\"
Message-ID: <20130814095656.1A4184886E@hg.openjdk.java.net>
Changeset: 0ad781399706
Author: vromero
Date: 2013-08-14 10:53 +0100
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/0ad781399706
8013394: compile of iterator use fails with error \"defined in an inaccessible class or interface\"
Reviewed-by: mcimadamore
! src/share/classes/com/sun/tools/javac/comp/Lower.java
+ test/tools/javac/T8013394/CompileErrorWithIteratorTest.java
From sean.mullan at oracle.com Wed Aug 14 12:55:03 2013
From: sean.mullan at oracle.com (Sean Mullan)
Date: Wed, 14 Aug 2013 08:55:03 -0400
Subject: Code review request: 8022669 OAEPParameterSpec does not work
if MGF1ParameterSpec is set to SHA2 algorithms
In-Reply-To: <520ABA90.6070803@oracle.com>
References: <520ABA90.6070803@oracle.com>
Message-ID: <520B7E27.2070006@oracle.com>
Looks good to me.
--Sean
On 08/13/2013 07:00 PM, Anthony Scarpino wrote:
> Hi,
>
> I'd like to get a code review of my fix for:
>
> 8022669 OAEPParameterSpec does not work if MGF1ParameterSpec is set to
> SHA2 algorithms
>
> http://cr.openjdk.java.net/~ascarpino/8022669/webrev.00/
>
> thanks
>
> Tony
From kumar.x.srinivasan at oracle.com Wed Aug 14 14:12:00 2013
From: kumar.x.srinivasan at oracle.com (kumar.x.srinivasan at oracle.com)
Date: Wed, 14 Aug 2013 14:12:00 +0000
Subject: hg: jdk8/tl/langtools: 8007517: DefaultMethodRegressionTests.java
fail in TL
Message-ID: <20130814141207.40C9548882@hg.openjdk.java.net>
Changeset: 3ab468194f11
Author: ksrini
Date: 2013-08-14 07:07 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/3ab468194f11
8007517: DefaultMethodRegressionTests.java fail in TL
Reviewed-by: jjg, vromero
- test/tools/javac/defaultMethods/defaultMethodExecution/DefaultMethodRegressionTests.java
From coleen.phillimore at oracle.com Wed Aug 14 14:22:53 2013
From: coleen.phillimore at oracle.com (coleen.phillimore at oracle.com)
Date: Wed, 14 Aug 2013 14:22:53 +0000
Subject: hg: jdk8/tl/jdk: 2 new changesets
Message-ID: <20130814142330.58BF748884@hg.openjdk.java.net>
Changeset: cb74d71fd02f
Author: hseigel
Date: 2013-08-13 10:56 -0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/cb74d71fd02f
8022259: MakeClasslist is buggy and its README is out of date.
Summary: Fixed bug in FOR loop and updated comments and README
Reviewed-by: dholmes, alanb
! make/tools/sharing/README.txt
! make/tools/src/build/tools/makeclasslist/MakeClasslist.java
Changeset: f9cf6ecf596c
Author: coleenp
Date: 2013-08-14 10:14 -0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/f9cf6ecf596c
Merge
From kumar.x.srinivasan at oracle.com Wed Aug 14 15:14:11 2013
From: kumar.x.srinivasan at oracle.com (kumar.x.srinivasan at oracle.com)
Date: Wed, 14 Aug 2013 15:14:11 +0000
Subject: hg: jdk8/tl/jdk: 8022547: [verifier] move
DefaultMethodRegressionTests.java to jdk
Message-ID: <20130814151438.4906648890@hg.openjdk.java.net>
Changeset: bc3cafb17c09
Author: ksrini
Date: 2013-08-14 08:12 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/bc3cafb17c09
8022547: [verifier] move DefaultMethodRegressionTests.java to jdk
Reviewed-by: acorn
+ test/vm/verifier/defaultMethods/DefaultMethodRegressionTests.java
+ test/vm/verifier/defaultMethods/DefaultMethodRegressionTestsRun.java
From xueming.shen at oracle.com Wed Aug 14 18:40:18 2013
From: xueming.shen at oracle.com (xueming.shen at oracle.com)
Date: Wed, 14 Aug 2013 18:40:18 +0000
Subject: hg: jdk8/tl/jdk: 8022178: System.console() throws IOE on some Windows
Message-ID: <20130814184030.A190B48897@hg.openjdk.java.net>
Changeset: c138d1b608e0
Author: sherman
Date: 2013-08-14 11:42 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/c138d1b608e0
8022178: System.console() throws IOE on some Windows
Summary: to remove the IOE throwing code
Reviewed-by: alanb
! src/windows/native/java/io/Console_md.c
From joe.darcy at oracle.com Wed Aug 14 18:27:21 2013
From: joe.darcy at oracle.com (joe.darcy at oracle.com)
Date: Wed, 14 Aug 2013 18:27:21 +0000
Subject: hg: jdk8/tl/jdk: 8022990: Fix dep_ann lint warnings in swing code
Message-ID: <20130814182745.46DDC48895@hg.openjdk.java.net>
Changeset: 444a7edcf367
Author: darcy
Date: 2013-08-14 11:26 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/444a7edcf367
8022990: Fix dep_ann lint warnings in swing code
Reviewed-by: alexsch
! src/share/classes/com/sun/java/swing/Painter.java
! src/share/classes/com/sun/java/swing/plaf/nimbus/AbstractRegionPainter.java
! src/share/classes/com/sun/java/swing/plaf/nimbus/NimbusLookAndFeel.java
From mike.duigou at oracle.com Wed Aug 14 20:38:36 2013
From: mike.duigou at oracle.com (mike.duigou at oracle.com)
Date: Wed, 14 Aug 2013 20:38:36 +0000
Subject: hg: jdk8/tl/jdk: 8022109: Evaluate adding incrementExact,
decrementExact, negateExact to java.lang.Math
Message-ID: <20130814203859.9BC0F4889C@hg.openjdk.java.net>
Changeset: 17dfbb3f60d3
Author: bpb
Date: 2013-08-12 10:35 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/17dfbb3f60d3
8022109: Evaluate adding incrementExact, decrementExact, negateExact to java.lang.Math
Summary: Add the methods for parameter types int and long.
Reviewed-by: mduigou
Contributed-by: Brian Burkhalter
! src/share/classes/java/lang/Math.java
! test/java/lang/Math/ExactArithTests.java
From sean.mullan at oracle.com Wed Aug 14 22:05:21 2013
From: sean.mullan at oracle.com (Sean Mullan)
Date: Wed, 14 Aug 2013 18:05:21 -0400
Subject: [8] Request for review: 8016850: JCK javax.security.auth.Policy tests
fail when run in Profiles mode
Message-ID: <520BFF21.8000706@oracle.com>
Hello,
Could you please review my fix for 8016850:
webrev: http://cr.openjdk.java.net/~mullan/webrevs/8016850/webrev.00/
bug: http://bugs.sun.com/bugdatabase/view_bug.do?bug_id=8016850
This is very similar to my previous fix for 8016848:
http://mail.openjdk.java.net/pipermail/security-dev/2013-August/008322.html
In this case, javax.security.auth.Policy.getPolicy() returns a default
implementation that is not in the compact1 or compact2 profiles.
The fix is to move the implementation to
sun.security.provider.AuthPolicyFile. The existing
com.sun.security.auth.PolicyFile is not removed, but is now just a
wrapper around AuthPolicyFile.
noreg-jck as there is an existing JCK test for this.
Thanks,
Sean
From jonathan.gibbons at oracle.com Wed Aug 14 23:41:29 2013
From: jonathan.gibbons at oracle.com (jonathan.gibbons at oracle.com)
Date: Wed, 14 Aug 2013 23:41:29 +0000
Subject: hg: jdk8/tl/langtools: 8017191: Javadoc is confused by @link to
imported classes outside of the set of generated packages
Message-ID: <20130814234134.907F4488A5@hg.openjdk.java.net>
Changeset: 14faef2b51eb
Author: jjg
Date: 2013-08-14 16:41 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/14faef2b51eb
8017191: Javadoc is confused by @link to imported classes outside of the set of generated packages
Reviewed-by: bpatel
! src/share/classes/com/sun/tools/doclets/formats/html/LinkFactoryImpl.java
! src/share/classes/com/sun/tools/doclets/formats/html/markup/StringContent.java
+ test/com/sun/javadoc/testSeeTag/TestSeeTag.java
+ test/com/sun/javadoc/testSeeTag/pkg/Test.java
From kumar.x.srinivasan at oracle.com Thu Aug 15 01:59:33 2013
From: kumar.x.srinivasan at oracle.com (kumar.x.srinivasan at oracle.com)
Date: Thu, 15 Aug 2013 01:59:33 +0000
Subject: hg: jdk8/tl/langtools: 6840442: JavaCompiler.getTask() has incomplete
specification for IllegalArgumentException
Message-ID: <20130815015938.49FDB488A8@hg.openjdk.java.net>
Changeset: fac0d1bb87f2
Author: ksrini
Date: 2013-08-14 18:58 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/fac0d1bb87f2
6840442: JavaCompiler.getTask() has incomplete specification for IllegalArgumentException
Reviewed-by: jjg
! src/share/classes/javax/tools/JavaCompiler.java
From bradford.wetmore at oracle.com Thu Aug 15 02:21:36 2013
From: bradford.wetmore at oracle.com (bradford.wetmore at oracle.com)
Date: Thu, 15 Aug 2013 02:21:36 +0000
Subject: hg: jdk8/tl/jdk: 8023075: JDK-5049299 has broken old make in jdk8
Message-ID: <20130815022202.8E3A8488AA@hg.openjdk.java.net>
Changeset: f8af3499c1fb
Author: wetmore
Date: 2013-08-14 19:19 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/f8af3499c1fb
8023075: JDK-5049299 has broken old make in jdk8
Reviewed-by: katleman
! make/java/java/Makefile
From alan.bateman at oracle.com Thu Aug 15 10:59:11 2013
From: alan.bateman at oracle.com (alan.bateman at oracle.com)
Date: Thu, 15 Aug 2013 10:59:11 +0000
Subject: hg: jdk8/tl/jdk: 8022921: Remove experimental Profile attribute
Message-ID: <20130815105950.DE270488BB@hg.openjdk.java.net>
Changeset: 5ff3b55df2d4
Author: alanb
Date: 2013-08-15 11:54 +0100
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/5ff3b55df2d4
8022921: Remove experimental Profile attribute
Reviewed-by: mchung, chegar
! src/share/classes/java/net/URLClassLoader.java
! src/share/classes/java/util/jar/Attributes.java
! src/share/classes/java/util/jar/JarFile.java
! src/share/classes/java/util/jar/JavaUtilJarAccessImpl.java
- src/share/classes/java/util/jar/UnsupportedProfileException.java
! src/share/classes/sun/launcher/LauncherHelper.java
! src/share/classes/sun/launcher/resources/launcher.properties
! src/share/classes/sun/misc/JavaUtilJarAccess.java
! src/share/classes/sun/misc/URLClassPath.java
! src/share/classes/sun/misc/Version.java.template
! src/share/classes/sun/tools/jar/Main.java
! src/share/classes/sun/tools/jar/resources/jar.properties
- test/java/net/URLClassLoader/profiles/Basic.java
- test/java/net/URLClassLoader/profiles/Lib.java
- test/java/net/URLClassLoader/profiles/basic.sh
- test/tools/jar/AddAndUpdateProfile.java
- test/tools/launcher/profiles/Basic.java
- test/tools/launcher/profiles/Logging.java
- test/tools/launcher/profiles/Main.java
- test/tools/launcher/profiles/VersionCheck.java
From alan.bateman at oracle.com Thu Aug 15 12:47:15 2013
From: alan.bateman at oracle.com (alan.bateman at oracle.com)
Date: Thu, 15 Aug 2013 12:47:15 +0000
Subject: hg: jdk8/tl/jdk: 8015765: TEST_BUG:
java/nio/channels/ServerSocketChannel/AdaptServerSocket.java
failing intermittently
Message-ID: <20130815124748.AA4E2488BC@hg.openjdk.java.net>
Changeset: b7b0beef5ded
Author: alanb
Date: 2013-08-15 13:42 +0100
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/b7b0beef5ded
8015765: TEST_BUG: java/nio/channels/ServerSocketChannel/AdaptServerSocket.java failing intermittently
Reviewed-by: chegar, dholmes, alanb
Contributed-by: yiming.wang at oracle.com
! test/java/nio/channels/ServerSocketChannel/AdaptServerSocket.java
From chris.hegarty at oracle.com Thu Aug 15 13:52:27 2013
From: chris.hegarty at oracle.com (chris.hegarty at oracle.com)
Date: Thu, 15 Aug 2013 13:52:27 +0000
Subject: hg: jdk8/tl/jdk: 8022584: Memory leak in some NetworkInterface methods
Message-ID: <20130815135302.BDDF0488C0@hg.openjdk.java.net>
Changeset: 7d7d553a8c61
Author: igerasim
Date: 2013-08-13 13:04 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/7d7d553a8c61
8022584: Memory leak in some NetworkInterface methods
Reviewed-by: alanb, dholmes, chegar, michaelm
! src/solaris/native/java/net/NetworkInterface.c
+ test/java/net/NetworkInterface/MemLeakTest.java
From chris.hegarty at oracle.com Thu Aug 15 14:01:52 2013
From: chris.hegarty at oracle.com (chris.hegarty at oracle.com)
Date: Thu, 15 Aug 2013 14:01:52 +0000
Subject: hg: jdk8/tl/jdk: 8023103: FJ parallelism zero; ...
Message-ID: <20130815140204.0D5EE488C1@hg.openjdk.java.net>
Changeset: 3223342fb76e
Author: dl
Date: 2013-08-15 15:01 +0100
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/3223342fb76e
8023103: FJ parallelism zero
8020537: java/util/concurrent/forkjoin/ThrowingRunnable.java
Reviewed-by: chegar, mduigou, alanb
! src/share/classes/java/util/concurrent/ForkJoinPool.java
From chris.hegarty at oracle.com Thu Aug 15 14:05:14 2013
From: chris.hegarty at oracle.com (chris.hegarty at oracle.com)
Date: Thu, 15 Aug 2013 14:05:14 +0000
Subject: hg: jdk8/tl/jdk: 8023104: ConcurrentHashMap typo
Message-ID: <20130815140526.9587B488C2@hg.openjdk.java.net>
Changeset: b07b19182e40
Author: dl
Date: 2013-08-15 15:04 +0100
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/b07b19182e40
8023104: ConcurrentHashMap typo
Reviewed-by: chegar, mduigou
! src/share/classes/java/util/concurrent/ConcurrentHashMap.java
From chris.hegarty at oracle.com Thu Aug 15 14:16:47 2013
From: chris.hegarty at oracle.com (chris.hegarty at oracle.com)
Date: Thu, 15 Aug 2013 14:16:47 +0000
Subject: hg: jdk8/tl/jdk: 8022126: Remove throws SocketException from
DatagramPacket constructors accepting SocketAddress
Message-ID: <20130815141659.619C8488C3@hg.openjdk.java.net>
Changeset: e7137695dce3
Author: chegar
Date: 2013-08-15 15:16 +0100
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/e7137695dce3
8022126: Remove throws SocketException from DatagramPacket constructors accepting SocketAddress
Reviewed-by: smarks, alanb, michaelm, darcy
! src/share/classes/java/net/DatagramPacket.java
From erik.joelsson at oracle.com Thu Aug 15 15:38:22 2013
From: erik.joelsson at oracle.com (erik.joelsson at oracle.com)
Date: Thu, 15 Aug 2013 15:38:22 +0000
Subject: hg: jdk8/tl/langtools: 8015145: Smartjavac needs more flexibility
with linking to sources
Message-ID: <20130815153832.4D627488C6@hg.openjdk.java.net>
Changeset: 71b0089b146f
Author: erikj
Date: 2013-08-15 17:24 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/71b0089b146f
8015145: Smartjavac needs more flexibility with linking to sources
Reviewed-by: jjg, ohrstrom
! src/share/classes/com/sun/tools/sjavac/JavacState.java
! src/share/classes/com/sun/tools/sjavac/Main.java
! test/tools/sjavac/SJavac.java
From vincent.x.ryan at oracle.com Thu Aug 15 16:11:42 2013
From: vincent.x.ryan at oracle.com (Vincent Ryan)
Date: Thu, 15 Aug 2013 17:11:42 +0100
Subject: [8] code review 8023108: Remove ShortRSAKey1024.sh from
ProblemList.txt
Message-ID:
Please approve the removal of ShortRSAKey1024.sh from the test exclusion list
as it is now passing reliably on Windows platforms.
Bug:
http://bugs.sun.com/bugdatabase/view_bug.do?bug_id=8023108
Webrev:
http://cr.openjdk.java.net/~vinnie/8023108/webrev.00/
Thanks.
From xueming.shen at oracle.com Thu Aug 15 17:39:16 2013
From: xueming.shen at oracle.com (xueming.shen at oracle.com)
Date: Thu, 15 Aug 2013 17:39:16 +0000
Subject: hg: jdk8/tl/jdk: 7154662: {CRC32, Adler32}.update(byte[] b, int off,
int len): undocumented ArrayIndexOutOfBoundsException
Message-ID: <20130815173953.E887D488DF@hg.openjdk.java.net>
Changeset: 6c307b4d0dd8
Author: sherman
Date: 2013-08-15 10:41 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/6c307b4d0dd8
7154662: {CRC32, Adler32}.update(byte[] b, int off, int len): undocumented ArrayIndexOutOfBoundsException
Summary: to add the throws clause
Reviewed-by: alanb, chegar
! src/share/classes/java/util/zip/Adler32.java
! src/share/classes/java/util/zip/CRC32.java
From sean.mullan at oracle.com Thu Aug 15 18:41:31 2013
From: sean.mullan at oracle.com (Sean Mullan)
Date: Thu, 15 Aug 2013 14:41:31 -0400
Subject: [8] code review 8023108: Remove ShortRSAKey1024.sh from
ProblemList.txt
In-Reply-To:
References:
Message-ID: <520D20DB.8040203@oracle.com>
Approved.
--Sean
On 08/15/2013 12:11 PM, Vincent Ryan wrote:
>
> Please approve the removal of ShortRSAKey1024.sh from the test exclusion list
> as it is now passing reliably on Windows platforms.
>
> Bug:
> http://bugs.sun.com/bugdatabase/view_bug.do?bug_id=8023108
> Webrev:
> http://cr.openjdk.java.net/~vinnie/8023108/webrev.00/
>
> Thanks.
>
From vincent.x.ryan at oracle.com Thu Aug 15 19:00:25 2013
From: vincent.x.ryan at oracle.com (Vincent Ryan)
Date: Thu, 15 Aug 2013 20:00:25 +0100
Subject: [8] code review 8023108: Remove ShortRSAKey1024.sh from
ProblemList.txt
In-Reply-To: <520D20DB.8040203@oracle.com>
References:
<520D20DB.8040203@oracle.com>
Message-ID:
Thanks Sean.
On 15 Aug 2013, at 19:41, Sean Mullan wrote:
> Approved.
>
> --Sean
>
> On 08/15/2013 12:11 PM, Vincent Ryan wrote:
>>
>> Please approve the removal of ShortRSAKey1024.sh from the test exclusion list
>> as it is now passing reliably on Windows platforms.
>>
>> Bug:
>> http://bugs.sun.com/bugdatabase/view_bug.do?bug_id=8023108
>> Webrev:
>> http://cr.openjdk.java.net/~vinnie/8023108/webrev.00/
>>
>> Thanks.
>>
>
From vincent.x.ryan at oracle.com Thu Aug 15 18:57:28 2013
From: vincent.x.ryan at oracle.com (vincent.x.ryan at oracle.com)
Date: Thu, 15 Aug 2013 18:57:28 +0000
Subject: hg: jdk8/tl/jdk: 2 new changesets
Message-ID: <20130815185828.D4AEB488F8@hg.openjdk.java.net>
Changeset: b4645069238a
Author: vinnie
Date: 2013-08-15 19:49 +0100
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/b4645069238a
8023108: Remove ShortRSAKey1024.sh from ProblemList.txt
Reviewed-by: mullan
! test/ProblemList.txt
Changeset: 3211caab58ba
Author: vinnie
Date: 2013-08-15 19:56 +0100
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/3211caab58ba
Merge
From dan.xu at oracle.com Thu Aug 15 19:37:01 2013
From: dan.xu at oracle.com (dan.xu at oracle.com)
Date: Thu, 15 Aug 2013 19:37:01 +0000
Subject: hg: jdk8/tl/jdk: 4858457: File.getCanonicalPath() throws IOException
when invoked with "nul" (win)
Message-ID: <20130815193727.9F60848905@hg.openjdk.java.net>
Changeset: 5bb196aa183c
Author: dxu
Date: 2013-08-15 12:36 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/5bb196aa183c
4858457: File.getCanonicalPath() throws IOException when invoked with "nul" (win)
Reviewed-by: alanb
! src/windows/native/java/io/canonicalize_md.c
! test/java/io/File/WinDeviceName.java
From dan.xu at oracle.com Thu Aug 15 21:11:34 2013
From: dan.xu at oracle.com (dan.xu at oracle.com)
Date: Thu, 15 Aug 2013 21:11:34 +0000
Subject: hg: jdk8/tl/jdk: 8017109: Cleanup overrides warning in
src/solaris/classes/sun/print/AttributeClass.java
Message-ID: <20130815211147.0FDCE48913@hg.openjdk.java.net>
Changeset: 0d27309a87e0
Author: dxu
Date: 2013-08-15 14:11 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/0d27309a87e0
8017109: Cleanup overrides warning in src/solaris/classes/sun/print/AttributeClass.java
Reviewed-by: jgodinez
! src/solaris/classes/sun/print/AttributeClass.java
From bhavesh.x.patel at oracle.com Thu Aug 15 04:49:20 2013
From: bhavesh.x.patel at oracle.com (bhavesh.x.patel at oracle.com)
Date: Thu, 15 Aug 2013 04:49:20 +0000
Subject: hg: jdk8/tl/langtools: 8016921: Change the profiles table on
overview-summary.html page to a list
Message-ID: <20130815044923.A3925488B2@hg.openjdk.java.net>
Changeset: 3d4f0fa2ad05
Author: bpatel
Date: 2013-08-14 21:44 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/3d4f0fa2ad05
8016921: Change the profiles table on overview-summary.html page to a list
Reviewed-by: jjg
! src/share/classes/com/sun/tools/doclets/formats/html/AbstractPackageIndexWriter.java
! src/share/classes/com/sun/tools/doclets/formats/html/PackageIndexWriter.java
! test/com/sun/javadoc/testProfiles/TestProfiles.java
From yong.huang at oracle.com Thu Aug 15 06:00:07 2013
From: yong.huang at oracle.com (yong.huang at oracle.com)
Date: Thu, 15 Aug 2013 06:00:07 +0000
Subject: hg: jdk8/tl/jdk: 8021121: ISO 4217 Amendment Number 156
Message-ID: <20130815060019.9A492488B3@hg.openjdk.java.net>
Changeset: 2f6523abab08
Author: yhuang
Date: 2013-08-14 22:49 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/2f6523abab08
8021121: ISO 4217 Amendment Number 156
Reviewed-by: naoto
! src/share/classes/java/util/CurrencyData.properties
! src/share/classes/sun/util/resources/lv/CurrencyNames_lv_LV.properties
! test/java/util/Currency/tablea1.txt
! test/sun/text/resources/LocaleData
! test/sun/text/resources/LocaleDataTest.java
From henry.jen at oracle.com Thu Aug 15 23:14:21 2013
From: henry.jen at oracle.com (henry.jen at oracle.com)
Date: Thu, 15 Aug 2013 23:14:21 +0000
Subject: hg: jdk8/tl/jdk: 8019401: Collectors.collectingAndThen
Message-ID: <20130815231432.C0BFB48918@hg.openjdk.java.net>
Changeset: 5649837a4cfa
Author: briangoetz
Date: 2013-08-12 12:06 -0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/5649837a4cfa
8019401: Collectors.collectingAndThen
Reviewed-by: mduigou
Contributed-by: brian.goetz at oracle.com
! src/share/classes/java/util/stream/Collectors.java
! test/java/util/stream/test/org/openjdk/tests/java/util/stream/TabulatorsTest.java
From vicente.romero at oracle.com Fri Aug 16 09:33:30 2013
From: vicente.romero at oracle.com (vicente.romero at oracle.com)
Date: Fri, 16 Aug 2013 09:33:30 +0000
Subject: hg: jdk8/tl/langtools: 8022053: javac generates unverifiable
initializer for nested subclass of local class
Message-ID: <20130816093341.F3A3D48927@hg.openjdk.java.net>
Changeset: a6378c19836b
Author: vromero
Date: 2013-08-16 10:32 +0100
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/a6378c19836b
8022053: javac generates unverifiable initializer for nested subclass of local class
Reviewed-by: jjg, mcimadamore
! src/share/classes/com/sun/tools/javac/comp/Lower.java
+ test/tools/javac/T8022053/UnverifiableInitForNestedLocalClassTest.java
From paul.sandoz at oracle.com Fri Aug 16 10:41:09 2013
From: paul.sandoz at oracle.com (paul.sandoz at oracle.com)
Date: Fri, 16 Aug 2013 10:41:09 +0000
Subject: hg: jdk8/tl/jdk: 8023150: java/util/stream tests no longer compiling
following JDK-8019401
Message-ID: <20130816104126.AC1FD4892A@hg.openjdk.java.net>
Changeset: 5fe19566b6f0
Author: psandoz
Date: 2013-08-16 12:29 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/5fe19566b6f0
8023150: java/util/stream tests no longer compiling following JDK-8019401
Reviewed-by: alanb
! test/java/util/stream/test/org/openjdk/tests/java/util/stream/TabulatorsTest.java
From paul.sandoz at oracle.com Fri Aug 16 10:50:51 2013
From: paul.sandoz at oracle.com (paul.sandoz at oracle.com)
Date: Fri, 16 Aug 2013 10:50:51 +0000
Subject: hg: jdk8/tl/jdk: 2 new changesets
Message-ID: <20130816105116.052784892B@hg.openjdk.java.net>
Changeset: 2eebaff52a94
Author: psandoz
Date: 2013-08-16 12:46 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/2eebaff52a94
8012940: More than 50 tests failed in Serialization/DeSerialization testing (test-mangled)
Reviewed-by: ksrini
+ test/java/util/stream/bootlib/java/util/stream/LambdaTestMode.java
! test/java/util/stream/bootlib/java/util/stream/StreamTestDataProvider.java
Changeset: 02ce5a0e4b98
Author: psandoz
Date: 2013-08-16 12:46 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/02ce5a0e4b98
8022898: java/util/Spliterator/SpliteratorCollisions.java fails in HashableIntSpliteratorWithNull data provider
Reviewed-by: henryjen, alanb, rriggs
! test/java/util/Spliterator/SpliteratorCollisions.java
From maurizio.cimadamore at oracle.com Fri Aug 16 11:02:10 2013
From: maurizio.cimadamore at oracle.com (maurizio.cimadamore at oracle.com)
Date: Fri, 16 Aug 2013 11:02:10 +0000
Subject: hg: jdk8/tl/langtools: 2 new changesets
Message-ID: <20130816110219.73A474892C@hg.openjdk.java.net>
Changeset: ec77c7b46c37
Author: jlahoda
Date: 2013-08-15 22:33 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/ec77c7b46c37
8015809: More user friendly compile-time errors for uncaught exceptions in lambda expression
Summary: Producing individual errors for uncaught undeclared exceptions inside lambda expressions, rather than one error for the whole lambda
Reviewed-by: mcimadamore
! src/share/classes/com/sun/tools/javac/code/Type.java
! src/share/classes/com/sun/tools/javac/comp/Attr.java
! src/share/classes/com/sun/tools/javac/comp/Flow.java
! src/share/classes/com/sun/tools/javac/resources/compiler.properties
! src/share/classes/com/sun/tools/javac/tree/JCTree.java
- test/tools/javac/diags/examples/IncompatibleThrownTypesInLambda.java
+ test/tools/javac/lambda/ExceptionsInLambda.java
+ test/tools/javac/lambda/ExceptionsInLambda.out
! test/tools/javac/lambda/TargetType21.out
Changeset: f657d400c736
Author: jlahoda
Date: 2013-08-15 22:36 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/f657d400c736
8022508: javac crashes if the generics arity of a base class is wrong
Reviewed-by: mcimadamore, vromero
! src/share/classes/com/sun/tools/javac/comp/Check.java
! test/tools/javac/generics/8016640/T8016640.java
From paul.sandoz at oracle.com Fri Aug 16 11:24:39 2013
From: paul.sandoz at oracle.com (paul.sandoz at oracle.com)
Date: Fri, 16 Aug 2013 11:24:39 +0000
Subject: hg: jdk8/tl/jdk: 8022797: Clarify spliterator characteristics for
collections containing no elements
Message-ID: <20130816112450.C13654892E@hg.openjdk.java.net>
Changeset: 737b6c298d81
Author: psandoz
Date: 2013-08-13 11:16 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/737b6c298d81
8022797: Clarify spliterator characteristics for collections containing no elements
Reviewed-by: alanb, mduigou
! src/share/classes/java/util/Collection.java
From erik.joelsson at oracle.com Fri Aug 16 14:00:31 2013
From: erik.joelsson at oracle.com (erik.joelsson at oracle.com)
Date: Fri, 16 Aug 2013 14:00:31 +0000
Subject: hg: jdk8/tl/langtools: 8023146: Sjavac test failes in langtools
nightly
Message-ID: <20130816140037.E276D48935@hg.openjdk.java.net>
Changeset: 4300c2f5fb1b
Author: erikj
Date: 2013-08-16 16:00 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/4300c2f5fb1b
8023146: Sjavac test failes in langtools nightly
Reviewed-by: mcimadamore, jfranck
! test/tools/sjavac/SJavac.java
From roger.riggs at oracle.com Fri Aug 16 16:50:21 2013
From: roger.riggs at oracle.com (roger.riggs at oracle.com)
Date: Fri, 16 Aug 2013 16:50:21 +0000
Subject: hg: jdk8/tl/jdk: 2 new changesets
Message-ID: <20130816165100.1B3C04893F@hg.openjdk.java.net>
Changeset: 53819fd0ab61
Author: rriggs
Date: 2013-08-16 11:28 -0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/53819fd0ab61
8022770: java/time/tck/java/time/chrono/TCKChronology.java start failing
8022766: java/time/test/java/time/chrono/TestUmmAlQuraChronology.java failed.
Summary: TCKChronology: corrected display name to match update from JDK-8015986
Reviewed-by: alanb
! test/java/time/tck/java/time/chrono/TCKChronology.java
! test/java/time/test/java/time/chrono/TestUmmAlQuraChronology.java
Changeset: d7fc4e149bb8
Author: rriggs
Date: 2013-08-16 11:11 -0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/d7fc4e149bb8
8022193: java/time/test/java/util/TestFormatter.java failed in th locale.
Summary: Tests corrected to use fixed locale and not dependent on the environment
Reviewed-by: sherman
! src/share/classes/java/util/Formatter.java
! test/java/time/test/java/util/TestFormatter.java
From roger.riggs at oracle.com Fri Aug 16 18:00:01 2013
From: roger.riggs at oracle.com (roger.riggs at oracle.com)
Date: Fri, 16 Aug 2013 18:00:01 +0000
Subject: hg: jdk8/tl/jdk: 8019185: Inconsistency between JapaneseEra start
dates and java.util.JapaneseImperialDate
Message-ID: <20130816180013.E79D848946@hg.openjdk.java.net>
Changeset: acaa256e3f7c
Author: rriggs
Date: 2013-08-16 13:58 -0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/acaa256e3f7c
8019185: Inconsistency between JapaneseEra start dates and java.util.JapaneseImperialDate
Summary: align Meiji start date with lib/calendar.properties to avoid any confusion
Reviewed-by: sherman
! src/share/classes/java/time/chrono/JapaneseEra.java
From xuelei.fan at oracle.com Mon Aug 19 05:56:51 2013
From: xuelei.fan at oracle.com (Xuelei Fan)
Date: Mon, 19 Aug 2013 13:56:51 +0800
Subject: Code review request, 8020842 IDN do not throw IAE when hostname
ends with a trailing dot
In-Reply-To: <5209EE6C.3050604@oracle.com>
References: <5200E1B9.7070002@oracle.com> <520127A3.3060405@oracle.com>
<520133C7.20401@oracle.com> <5202411F.2010706@oracle.com>
<52025434.8070200@oracle.com> <5202561A.5040908@oracle.com>
<52025726.8060203@oracle.com> <520264F1.1090802@oracle.com>
<52043AB3.6060704@oracle.com> <5204446D.7030603@oracle.com>
<520447BD.30206@oracle.com> <52045070.1000506@oracle.com>
<520458DF.1030502@oracle.com> <52046FF3.1040903@oracle.com>
<5204D312.4030209@oracle.com> <52050A01.3030503@oracle.com>
<520593CC.4010608@oracle.com> <5205AA57.6050704@oracle.com>
<520835CD.5090402@oracle.com> <5208526E.5020808@oracle.com>
<52087668.9080500@oracle.com> <52087B8C.5080105@oracle.com>
<5209EE6C.3050604@oracle.com>
Message-ID: <5211B3A3.2050506@oracle.com>
If no objections, I will push the change by COB Monday.
Thanks,
Xuelei
On 8/13/2013 4:29 PM, Xuelei Fan wrote:
> Can I get an additional code review from networking team?
>
> Thanks,
> Xuelei
>
> On 8/12/2013 2:07 PM, Weijun Wang wrote:
>> new webrev: http://cr.openjdk.java.net/~xuelei/8020842/webrev.06/
>
From paul.sandoz at oracle.com Mon Aug 19 08:54:44 2013
From: paul.sandoz at oracle.com (paul.sandoz at oracle.com)
Date: Mon, 19 Aug 2013 08:54:44 +0000
Subject: hg: jdk8/tl/jdk: 8022318: Document Spliterator characteristics and
binding policy of java util concurrent collection impls
Message-ID: <20130819085531.8707F48988@hg.openjdk.java.net>
Changeset: 9e9f5713b26d
Author: psandoz
Date: 2013-08-06 14:26 +0100
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/9e9f5713b26d
8022318: Document Spliterator characteristics and binding policy of java util concurrent collection impls
Reviewed-by: chegar
Contributed-by: Martin Buchholz , Paul Sandoz
! src/share/classes/java/util/concurrent/ArrayBlockingQueue.java
! src/share/classes/java/util/concurrent/ConcurrentHashMap.java
! src/share/classes/java/util/concurrent/ConcurrentLinkedDeque.java
! src/share/classes/java/util/concurrent/ConcurrentLinkedQueue.java
! src/share/classes/java/util/concurrent/ConcurrentNavigableMap.java
! src/share/classes/java/util/concurrent/ConcurrentSkipListMap.java
! src/share/classes/java/util/concurrent/ConcurrentSkipListSet.java
! src/share/classes/java/util/concurrent/CopyOnWriteArrayList.java
! src/share/classes/java/util/concurrent/CopyOnWriteArraySet.java
! src/share/classes/java/util/concurrent/DelayQueue.java
! src/share/classes/java/util/concurrent/LinkedBlockingDeque.java
! src/share/classes/java/util/concurrent/LinkedBlockingQueue.java
! src/share/classes/java/util/concurrent/LinkedTransferQueue.java
! src/share/classes/java/util/concurrent/PriorityBlockingQueue.java
! src/share/classes/java/util/concurrent/SynchronousQueue.java
! src/share/classes/java/util/concurrent/package-info.java
From chris.hegarty at oracle.com Mon Aug 19 09:45:33 2013
From: chris.hegarty at oracle.com (chris.hegarty at oracle.com)
Date: Mon, 19 Aug 2013 09:45:33 +0000
Subject: hg: jdk8/tl: 8021820: Number of opened files used in select() is
limited to 1024 [macosx]
Message-ID: <20130819094534.30D3F4898B@hg.openjdk.java.net>
Changeset: 00dcfaa6bc01
Author: aefimov
Date: 2013-08-16 18:40 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/rev/00dcfaa6bc01
8021820: Number of opened files used in select() is limited to 1024 [macosx]
Reviewed-by: alanb, chegar, tbell, smarks
! common/autoconf/generated-configure.sh
! common/autoconf/toolchain.m4
From chris.hegarty at oracle.com Mon Aug 19 09:47:17 2013
From: chris.hegarty at oracle.com (chris.hegarty at oracle.com)
Date: Mon, 19 Aug 2013 09:47:17 +0000
Subject: hg: jdk8/tl/jdk: 8021820: Number of opened files used in select() is
limited to 1024 [macosx]
Message-ID: <20130819094817.B3DE94898E@hg.openjdk.java.net>
Changeset: 11ccaabdb2a8
Author: aefimov
Date: 2013-08-16 18:41 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/11ccaabdb2a8
8021820: Number of opened files used in select() is limited to 1024 [macosx]
Reviewed-by: alanb, chegar, tbell, smarks
+ test/java/net/ServerSocket/SelectFdsLimit.java
From alan.bateman at oracle.com Mon Aug 19 10:07:04 2013
From: alan.bateman at oracle.com (alan.bateman at oracle.com)
Date: Mon, 19 Aug 2013 10:07:04 +0000
Subject: hg: jdk8/tl/jdk: 8023215: test/java/util/Comparator/TypeTest.java not
running (failing but reported as passing)
Message-ID: <20130819100719.3AF2648991@hg.openjdk.java.net>
Changeset: f580728b08b4
Author: alanb
Date: 2013-08-19 11:04 +0100
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/f580728b08b4
8023215: test/java/util/Comparator/TypeTest.java not running (failing but reported as passing)
Reviewed-by: psandoz
! test/java/util/Comparator/TypeTest.java
From xuelei.fan at oracle.com Mon Aug 19 12:49:46 2013
From: xuelei.fan at oracle.com (Xuelei Fan)
Date: Mon, 19 Aug 2013 20:49:46 +0800
Subject: Code review request 8023230, The impl of KerberosClientKeyExchange
maybe not exist
Message-ID: <5212146A.1070405@oracle.com>
Hi Weijun,
Please review this update when you are available.
webrev: http://cr.openjdk.java.net/~xuelei/8023230/webrev.00/
If package sun.security.ssl.krb5 does not exist, the impl of
KerberosClientKeyExchange (krb5.KerberosClientKeyExchangeImpl) will not
present as well. Need to consider this case in the implementation of
sun.security.ssl.KerberosClientKeyExchange.
Thanks,
Xuelei
From weijun.wang at oracle.com Mon Aug 19 13:11:18 2013
From: weijun.wang at oracle.com (Weijun Wang)
Date: Mon, 19 Aug 2013 21:11:18 +0800
Subject: RFR 8022761: SQE test regression on wrongly signed indexed jar file
In-Reply-To: <520861FA.4090605@oracle.com>
References: <520861FA.4090605@oracle.com>
Message-ID: <52121976.60708@oracle.com>
Hi Sherman
I try out "jar i" after signing and it puts INDEX.LIST at the very
beginning of the file. Does this mean INDEX.LIST was actually an
exception? Or it's just a bug?
Anyway, I think I should update the fix for 8021788 and here is the webrev:
http://cr.openjdk.java.net/~weijun/8022761/webrev.00/
Now it also skips INDEX.LIST, i.e. update line 142 to
if (uname.equals(JarFile.MANIFEST_NAME) ||
uname.equals(JarIndex.INDEX_NAME) ) {
After this change, if INDEX.LIST appears before the MANIFEST and
signature-related files, it will not be treated as signed. This should
usually be true because it only happens when you call "jar i" after
signing a jar which means INDEX.LIST *is* unsigned.
Thanks
Max
On 8/12/13 12:18 PM, Weijun Wang wrote:
> Hi Sherman
>
> SQE observes a regression in their test suite and
> the reason is my recent fix for 8021788 at
>
> http://hg.openjdk.java.net/jdk8/tl/jdk/rev/758e3117899c
>
> The jar file mentioned contains
>
> 66 Mon Jun 04 15:42:18 CST 2007 META-INF/INDEX.LIST
> 323 Sat Apr 01 15:47:28 CST 2000 META-INF/MANIFEST.MF
> 376 Mon Jun 04 15:41:00 CST 2007 META-INF/MYKEY.SF
> 972 Sat Apr 01 15:47:38 CST 2000 META-INF/MYKEY.DSA
> 0 Sat Apr 01 15:46:58 CST 2000 META-INF/
> 0 Sat Apr 01 15:45:16 CST 2000 test/
> 21 Sat Apr 01 15:46:24 CST 2000 test/test0
> 21 Sat Apr 01 15:46:18 CST 2000 test/test1
> 21 Sat Apr 01 15:46:04 CST 2000 test/test2
> 21 Sat Apr 01 15:46:10 CST 2000 test/test3
>
> After JDK-8021788, the file is regarded as an unsigned jar because the
> updated JarVerifier goes thru all signature-related files and treats all
> others not. Here the first one is not signature-related so none is.
>
> Is fix for JDK-8021788 wrong? Inside JarVerifier.java, we have
>
> * Assumptions:
> * 1. The manifest should be the first entry in the META-INF directory.
> * 2. The .SF/.DSA/.EC files follow the manifest, before any normal
> entries
>
> Is this INDEX.LIST an exception?
>
> Thanks
> Max
From weijun.wang at oracle.com Mon Aug 19 13:53:56 2013
From: weijun.wang at oracle.com (Weijun Wang)
Date: Mon, 19 Aug 2013 21:53:56 +0800
Subject: Code review request 8023230, The impl of KerberosClientKeyExchange
maybe not exist
In-Reply-To: <5212146A.1070405@oracle.com>
References: <5212146A.1070405@oracle.com>
Message-ID: <52122374.4030400@oracle.com>
Only one change I don't understand:
73 public KerberosClientKeyExchange() {
74 if (impl == null) {
75 throw new IllegalStateException("Kerberos is
unavailable");
76 }
77 }
It seems this constructor will be automatically called when constructing
an instance of its child class -- KerberosClientKeyExchangeImpl. Isn't
that impl itself? There seems to be a chicken-or-egg puzzle here.
Also, did you really spot a failure when KerberosClientKeyExchangeImpl
does not exist?
Thanks
Max
On 8/19/13 8:49 PM, Xuelei Fan wrote:
> Hi Weijun,
>
> Please review this update when you are available.
>
> webrev: http://cr.openjdk.java.net/~xuelei/8023230/webrev.00/
>
> If package sun.security.ssl.krb5 does not exist, the impl of
> KerberosClientKeyExchange (krb5.KerberosClientKeyExchangeImpl) will not
> present as well. Need to consider this case in the implementation of
> sun.security.ssl.KerberosClientKeyExchange.
>
> Thanks,
> Xuelei
>
From sean.mullan at oracle.com Mon Aug 19 14:27:26 2013
From: sean.mullan at oracle.com (Sean Mullan)
Date: Mon, 19 Aug 2013 10:27:26 -0400
Subject: [8] Request for review: 8016850: JCK javax.security.auth.Policy
tests fail when run in Profiles mode
In-Reply-To: <520BFF21.8000706@oracle.com>
References: <520BFF21.8000706@oracle.com>
Message-ID: <52122B4E.4010602@oracle.com>
Ping? Can anyone review this for me? The changes are not as extensive as
they look; this is mostly just moving code to a different package. Also,
com.sun.security.auth.PolicyParser.java has been removed as
sun.security.provider.PolicyParser is functionally equivalent and can be
used instead.
Thanks,
Sean
On 08/14/2013 06:05 PM, Sean Mullan wrote:
> Hello,
>
> Could you please review my fix for 8016850:
>
> webrev: http://cr.openjdk.java.net/~mullan/webrevs/8016850/webrev.00/
>
> bug: http://bugs.sun.com/bugdatabase/view_bug.do?bug_id=8016850
>
> This is very similar to my previous fix for 8016848:
> http://mail.openjdk.java.net/pipermail/security-dev/2013-August/008322.html
>
> In this case, javax.security.auth.Policy.getPolicy() returns a default
> implementation that is not in the compact1 or compact2 profiles.
>
> The fix is to move the implementation to
> sun.security.provider.AuthPolicyFile. The existing
> com.sun.security.auth.PolicyFile is not removed, but is now just a
> wrapper around AuthPolicyFile.
>
> noreg-jck as there is an existing JCK test for this.
>
> Thanks,
> Sean
From paul.sandoz at oracle.com Mon Aug 19 14:15:56 2013
From: paul.sandoz at oracle.com (paul.sandoz at oracle.com)
Date: Mon, 19 Aug 2013 14:15:56 +0000
Subject: hg: jdk8/tl/jdk: 8014824: Document Spliterator characteristics and
binding policy of java util collection impls
Message-ID: <20130819141634.3910A4899C@hg.openjdk.java.net>
Changeset: 3647aab7b1d5
Author: psandoz
Date: 2013-08-06 14:26 +0100
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/3647aab7b1d5
8014824: Document Spliterator characteristics and binding policy of java util collection impls
Reviewed-by: chegar
! src/share/classes/java/util/ArrayDeque.java
! src/share/classes/java/util/ArrayList.java
! src/share/classes/java/util/HashSet.java
! src/share/classes/java/util/LinkedHashMap.java
! src/share/classes/java/util/LinkedHashSet.java
! src/share/classes/java/util/LinkedList.java
! src/share/classes/java/util/List.java
! src/share/classes/java/util/PriorityQueue.java
! src/share/classes/java/util/Set.java
! src/share/classes/java/util/SortedSet.java
! src/share/classes/java/util/Spliterator.java
! src/share/classes/java/util/TreeMap.java
! src/share/classes/java/util/TreeSet.java
! src/share/classes/java/util/Vector.java
From sundararajan.athijegannathan at oracle.com Mon Aug 19 14:48:58 2013
From: sundararajan.athijegannathan at oracle.com (sundararajan.athijegannathan at oracle.com)
Date: Mon, 19 Aug 2013 14:48:58 +0000
Subject: hg: jdk8/tl/nashorn: 7 new changesets
Message-ID: <20130819144905.7CC544899E@hg.openjdk.java.net>
Changeset: bbc4e9d37315
Author: jlaskey
Date: 2013-08-12 18:00 -0300
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/bbc4e9d37315
8022676: Confusing error message checking instanceof non-class
Reviewed-by: jlaskey, sundar
Contributed-by: michael.horowitz at oracle.com
! src/jdk/nashorn/internal/runtime/resources/Messages.properties
Changeset: ba507ac08719
Author: sundar
Date: 2013-08-14 20:51 +0530
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/ba507ac08719
8023026: Array.prototype iterator functions like forEach, reduce should work for Java arrays, lists
Reviewed-by: jlaskey, lagergren
- src/jdk/nashorn/internal/runtime/arrays/ArrayIterator.java
! src/jdk/nashorn/internal/runtime/arrays/ArrayLikeIterator.java
+ src/jdk/nashorn/internal/runtime/arrays/JavaArrayIterator.java
+ src/jdk/nashorn/internal/runtime/arrays/JavaListIterator.java
- src/jdk/nashorn/internal/runtime/arrays/MapIterator.java
- src/jdk/nashorn/internal/runtime/arrays/ReverseArrayIterator.java
+ src/jdk/nashorn/internal/runtime/arrays/ReverseJavaArrayIterator.java
+ src/jdk/nashorn/internal/runtime/arrays/ReverseJavaListIterator.java
- src/jdk/nashorn/internal/runtime/arrays/ReverseMapIterator.java
+ src/jdk/nashorn/internal/runtime/arrays/ReverseScriptArrayIterator.java
+ src/jdk/nashorn/internal/runtime/arrays/ReverseScriptObjectIterator.java
+ src/jdk/nashorn/internal/runtime/arrays/ScriptArrayIterator.java
+ src/jdk/nashorn/internal/runtime/arrays/ScriptObjectIterator.java
+ test/script/basic/JDK-8023026.js
+ test/script/basic/JDK-8023026.js.EXPECTED
Changeset: 09c99b58b81e
Author: sundar
Date: 2013-08-16 15:04 +0530
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/09c99b58b81e
8020355: bind on built-in constructors don't use bound argument values
Reviewed-by: lagergren, hannesw
! src/jdk/nashorn/internal/runtime/ScriptFunctionData.java
+ test/script/basic/JDK-8020355.js
Changeset: 1d29d2e27590
Author: hannesw
Date: 2013-08-16 13:42 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/1d29d2e27590
8019985: Date.parse("2000-01-01T00:00:00.Z") should return NaN
Reviewed-by: sundar, jlaskey
! src/jdk/nashorn/internal/parser/DateParser.java
+ test/script/basic/JDK-8019985.js
Changeset: 36fb36217e1d
Author: lagergren
Date: 2013-08-16 18:51 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/36fb36217e1d
8023017: SUB missing for widest op == number for BinaryNode
Reviewed-by: sundar, jlaskey
! src/jdk/nashorn/internal/codegen/ObjectClassGenerator.java
! src/jdk/nashorn/internal/codegen/ObjectCreator.java
! src/jdk/nashorn/internal/ir/BinaryNode.java
! src/jdk/nashorn/internal/ir/BreakableNode.java
! src/jdk/nashorn/internal/ir/IdentNode.java
! src/jdk/nashorn/internal/ir/LexicalContextNode.java
! src/jdk/nashorn/internal/objects/NativeArguments.java
! src/jdk/nashorn/internal/objects/NativeArray.java
! src/jdk/nashorn/internal/parser/Parser.java
! src/jdk/nashorn/internal/runtime/Context.java
! src/jdk/nashorn/internal/runtime/RecompilableScriptFunctionData.java
! src/jdk/nashorn/internal/runtime/ScriptFunction.java
! src/jdk/nashorn/internal/runtime/ScriptObject.java
! src/jdk/nashorn/internal/runtime/arrays/ArrayLikeIterator.java
! src/jdk/nashorn/internal/runtime/arrays/LongArrayData.java
! src/jdk/nashorn/internal/runtime/arrays/SparseArrayData.java
! src/jdk/nashorn/internal/runtime/linker/BoundDynamicMethod.java
! src/jdk/nashorn/internal/runtime/linker/BoundDynamicMethodLinker.java
! src/jdk/nashorn/internal/runtime/linker/JavaAdapterClassLoader.java
Changeset: bd0174b1a42f
Author: sundar
Date: 2013-08-19 17:16 +0530
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/bd0174b1a42f
8023210: jjs tools should support a mode where it will load few command line scripts and then entering into interactive shell
Reviewed-by: hannesw, attila, lagergren, jlaskey
! src/jdk/nashorn/internal/runtime/options/Options.java
! src/jdk/nashorn/tools/Shell.java
Changeset: e628aefac504
Author: sundar
Date: 2013-08-19 19:37 +0530
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/e628aefac504
Merge
- src/jdk/nashorn/internal/runtime/arrays/ArrayIterator.java
- src/jdk/nashorn/internal/runtime/arrays/MapIterator.java
- src/jdk/nashorn/internal/runtime/arrays/ReverseArrayIterator.java
- src/jdk/nashorn/internal/runtime/arrays/ReverseMapIterator.java
From michael.x.mcmahon at oracle.com Mon Aug 19 15:12:22 2013
From: michael.x.mcmahon at oracle.com (Michael McMahon)
Date: Mon, 19 Aug 2013 16:12:22 +0100
Subject: Code review request, 8020842 IDN do not throw IAE when hostname
ends with a trailing dot
In-Reply-To: <5211B3A3.2050506@oracle.com>
References: <5200E1B9.7070002@oracle.com> <520127A3.3060405@oracle.com>
<520133C7.20401@oracle.com> <5202411F.2010706@oracle.com>
<52025434.8070200@oracle.com> <5202561A.5040908@oracle.com>
<52025726.8060203@oracle.com> <520264F1.1090802@oracle.com>
<52043AB3.6060704@oracle.com> <5204446D.7030603@oracle.com>
<520447BD.30206@oracle.com> <52045070.1000506@oracle.com>
<520458DF.1030502@oracle.com> <52046FF3.1040903@oracle.com>
<5204D312.4030209@oracle.com> <52050A01.3030503@oracle.com>
<520593CC.4010608@oracle.com> <5205AA57.6050704@oracle.com>
<520835CD.5090402@oracle.com> <5208526E.5020808@oracle.com>
<52087668.9080500@oracle.com> <52087B8C.5080105@oracle.com>
<5209EE6C.3050604@oracle.com> <5211B3A3.2050506@oracle.com>
Message-ID: <521235D6.2070308@oracle.com>
Seems fine to me Xuelei.
- Michael
On 19/08/13 06:56, Xuelei Fan wrote:
> If no objections, I will push the change by COB Monday.
>
> Thanks,
> Xuelei
>
> On 8/13/2013 4:29 PM, Xuelei Fan wrote:
>> Can I get an additional code review from networking team?
>>
>> Thanks,
>> Xuelei
>>
>> On 8/12/2013 2:07 PM, Weijun Wang wrote:
>>> new webrev: http://cr.openjdk.java.net/~xuelei/8020842/webrev.06/
From kumar.x.srinivasan at oracle.com Mon Aug 19 16:42:45 2013
From: kumar.x.srinivasan at oracle.com (kumar.x.srinivasan at oracle.com)
Date: Mon, 19 Aug 2013 16:42:45 +0000
Subject: hg: jdk8/tl/langtools: 7071377: Exception when javac -processor is
given a class name with invalid postfix
Message-ID: <20130819164255.72E15489A4@hg.openjdk.java.net>
Changeset: 389eaf6ed973
Author: ksrini
Date: 2013-08-19 07:47 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/389eaf6ed973
7071377: Exception when javac -processor is given a class name with invalid postfix
Reviewed-by: jjg, vromero
! src/share/classes/com/sun/tools/javac/comp/Attr.java
+ test/tools/javac/processing/errors/TestClassNames.java
From anthony.scarpino at oracle.com Mon Aug 19 18:52:56 2013
From: anthony.scarpino at oracle.com (Anthony Scarpino)
Date: Mon, 19 Aug 2013 11:52:56 -0700
Subject: Code review request - 8022896:
test/com/sun/crypto/provider/Cipher/RSA/TestOAEPPadding.java fails
Message-ID: <52126988.20902@oracle.com>
Hi,
I need a very simple review on enabling a test
http://cr.openjdk.java.net/~ascarpino/8022896/webrev.00/
thanks
Tony
From sean.mullan at oracle.com Mon Aug 19 19:08:04 2013
From: sean.mullan at oracle.com (Sean Mullan)
Date: Mon, 19 Aug 2013 15:08:04 -0400
Subject: Code review request - 8022896:
test/com/sun/crypto/provider/Cipher/RSA/TestOAEPPadding.java fails
In-Reply-To: <52126988.20902@oracle.com>
References: <52126988.20902@oracle.com>
Message-ID: <52126D14.5070500@oracle.com>
Looks fine.
--Sean
On 08/19/2013 02:52 PM, Anthony Scarpino wrote:
> Hi,
>
> I need a very simple review on enabling a test
>
> http://cr.openjdk.java.net/~ascarpino/8022896/webrev.00/
>
> thanks
>
> Tony
From vincent.x.ryan at oracle.com Mon Aug 19 19:18:25 2013
From: vincent.x.ryan at oracle.com (Vincent Ryan)
Date: Mon, 19 Aug 2013 20:18:25 +0100
Subject: [8] Request for review: 8016850: JCK javax.security.auth.Policy
tests fail when run in Profiles mode
In-Reply-To: <52122B4E.4010602@oracle.com>
References: <520BFF21.8000706@oracle.com> <52122B4E.4010602@oracle.com>
Message-ID: <52126F81.6040308@oracle.com>
Your fix looks fine Sean.
On 19/08/2013 15:27, Sean Mullan wrote:
> Ping? Can anyone review this for me? The changes are not as extensive as
> they look; this is mostly just moving code to a different package. Also,
> com.sun.security.auth.PolicyParser.java has been removed as
> sun.security.provider.PolicyParser is functionally equivalent and can be
> used instead.
>
> Thanks,
> Sean
>
> On 08/14/2013 06:05 PM, Sean Mullan wrote:
>> Hello,
>>
>> Could you please review my fix for 8016850:
>>
>> webrev: http://cr.openjdk.java.net/~mullan/webrevs/8016850/webrev.00/
>>
>> bug: http://bugs.sun.com/bugdatabase/view_bug.do?bug_id=8016850
>>
>> This is very similar to my previous fix for 8016848:
>> http://mail.openjdk.java.net/pipermail/security-dev/2013-August/008322.html
>>
>>
>> In this case, javax.security.auth.Policy.getPolicy() returns a default
>> implementation that is not in the compact1 or compact2 profiles.
>>
>> The fix is to move the implementation to
>> sun.security.provider.AuthPolicyFile. The existing
>> com.sun.security.auth.PolicyFile is not removed, but is now just a
>> wrapper around AuthPolicyFile.
>>
>> noreg-jck as there is an existing JCK test for this.
>>
>> Thanks,
>> Sean
>
From sean.mullan at oracle.com Mon Aug 19 19:13:44 2013
From: sean.mullan at oracle.com (sean.mullan at oracle.com)
Date: Mon, 19 Aug 2013 19:13:44 +0000
Subject: hg: jdk8/tl/jdk: 2 new changesets
Message-ID: <20130819191422.3915D489A7@hg.openjdk.java.net>
Changeset: bce5205dbe84
Author: ascarpino
Date: 2013-08-14 10:50 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/bce5205dbe84
8022669: OAEPParameterSpec does not work if MGF1ParameterSpec is set to SHA2 algorithms
Reviewed-by: mullan
! src/share/classes/sun/security/rsa/RSAPadding.java
! test/com/sun/crypto/provider/Cipher/RSA/TestOAEPPadding.java
Changeset: b40d246d4d81
Author: ascarpino
Date: 2013-08-16 12:31 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/b40d246d4d81
8022896: test/com/sun/crypto/provider/Cipher/RSA/TestOAEPPadding.java fails
Reviewed-by: mullan
! test/ProblemList.txt
From vincent.x.ryan at oracle.com Mon Aug 19 19:20:18 2013
From: vincent.x.ryan at oracle.com (Vincent Ryan)
Date: Mon, 19 Aug 2013 20:20:18 +0100
Subject: Code review request - 8022896:
test/com/sun/crypto/provider/Cipher/RSA/TestOAEPPadding.java fails
In-Reply-To: <52126988.20902@oracle.com>
References: <52126988.20902@oracle.com>
Message-ID: <52126FF2.5030603@oracle.com>
Your change looks fine.
On 19/08/2013 19:52, Anthony Scarpino wrote:
> Hi,
>
> I need a very simple review on enabling a test
>
> http://cr.openjdk.java.net/~ascarpino/8022896/webrev.00/
>
> thanks
>
> Tony
From bradford.wetmore at oracle.com Mon Aug 19 19:27:52 2013
From: bradford.wetmore at oracle.com (Bradford Wetmore)
Date: Mon, 19 Aug 2013 12:27:52 -0700
Subject: Code review request - 8022896:
test/com/sun/crypto/provider/Cipher/RSA/TestOAEPPadding.java fails
In-Reply-To: <52126D14.5070500@oracle.com>
References: <52126988.20902@oracle.com> <52126D14.5070500@oracle.com>
Message-ID: <521271B8.4020707@oracle.com>
Ditto.
brad
On 8/19/2013 12:08 PM, Sean Mullan wrote:
> Looks fine.
>
> --Sean
>
> On 08/19/2013 02:52 PM, Anthony Scarpino wrote:
>> Hi,
>>
>> I need a very simple review on enabling a test
>>
>> http://cr.openjdk.java.net/~ascarpino/8022896/webrev.00/
>>
>> thanks
>>
>> Tony
>
From dan.xu at oracle.com Mon Aug 19 19:39:13 2013
From: dan.xu at oracle.com (dan.xu at oracle.com)
Date: Mon, 19 Aug 2013 19:39:13 +0000
Subject: hg: jdk8/tl/jdk: 8023203: Wrap RandomAccessFile.seek native method
into a Java helper method
Message-ID: <20130819193934.17B0D489B2@hg.openjdk.java.net>
Changeset: 2fd841fccb2e
Author: dxu
Date: 2013-08-19 12:38 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/2fd841fccb2e
8023203: Wrap RandomAccessFile.seek native method into a Java helper method
Reviewed-by: alanb, chegar
! make/java/java/mapfile-vers
! makefiles/mapfiles/libjava/mapfile-vers
! src/share/classes/java/io/RandomAccessFile.java
! src/share/native/java/io/RandomAccessFile.c
From sean.mullan at oracle.com Mon Aug 19 21:19:17 2013
From: sean.mullan at oracle.com (sean.mullan at oracle.com)
Date: Mon, 19 Aug 2013 21:19:17 +0000
Subject: hg: jdk8/tl/jdk: 8016850: JCK javax.security.auth.Policy tests fail
when run in Profiles mode
Message-ID: <20130819211951.B52AD489C1@hg.openjdk.java.net>
Changeset: f120e2c4b4b1
Author: mullan
Date: 2013-08-19 17:17 -0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/f120e2c4b4b1
8016850: JCK javax.security.auth.Policy tests fail when run in Profiles mode
Summary: Move default javax.security.auth.Policy implementation to compact1 profile
Reviewed-by: vinnie
! src/share/classes/com/sun/security/auth/PolicyFile.java
- src/share/classes/com/sun/security/auth/PolicyParser.java
- src/share/classes/com/sun/security/auth/SubjectCodeSource.java
! src/share/classes/javax/security/auth/Policy.java
+ src/share/classes/sun/security/provider/AuthPolicyFile.java
+ src/share/classes/sun/security/provider/SubjectCodeSource.java
From xuelei.fan at oracle.com Tue Aug 20 00:43:43 2013
From: xuelei.fan at oracle.com (xuelei.fan at oracle.com)
Date: Tue, 20 Aug 2013 00:43:43 +0000
Subject: hg: jdk8/tl/jdk: 8020842: IDN do not throw IAE when hostname ends
with a trailing dot
Message-ID: <20130820004420.A5A84489CB@hg.openjdk.java.net>
Changeset: 096e7c665857
Author: xuelei
Date: 2013-08-19 17:42 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/096e7c665857
8020842: IDN do not throw IAE when hostname ends with a trailing dot
Reviewed-by: weijun, michaelm
! src/share/classes/java/net/IDN.java
+ test/java/net/IDN/IllegalArg.java
+ test/sun/security/ssl/javax/net/ssl/ServerName/IllegalSNIName.java
From xuelei.fan at oracle.com Tue Aug 20 01:24:25 2013
From: xuelei.fan at oracle.com (Xuelei Fan)
Date: Tue, 20 Aug 2013 09:24:25 +0800
Subject: Code review request 8023230, The impl of KerberosClientKeyExchange
maybe not exist
In-Reply-To: <52122374.4030400@oracle.com>
References: <5212146A.1070405@oracle.com> <52122374.4030400@oracle.com>
Message-ID: <5212C549.2070701@oracle.com>
new webrev: http://cr.openjdk.java.net/~xuelei/8023230/webrev.01/
On 8/19/2013 9:53 PM, Weijun Wang wrote:
> Only one change I don't understand:
>
> 73 public KerberosClientKeyExchange() {
> 74 if (impl == null) {
> 75 throw new IllegalStateException("Kerberos is
> unavailable");
> 76 }
> 77 }
>
> It seems this constructor will be automatically called when constructing
> an instance of its child class -- KerberosClientKeyExchangeImpl. Isn't
> that impl itself? There seems to be a chicken-or-egg puzzle here.
>
Good catch. It's a weird link between KerberosClientKeyExchangeImpl and
KerberosClientKeyExchange.
Then I would like to restrict the use of this constructor, and declare
it as protected. See above webrev.
> Also, did you really spot a failure when KerberosClientKeyExchangeImpl
> does not exist?
>
Not really. But that's the purpose of existence of
KerberosClientKeyExchangeImpl. Krb5 implementation should be able to be
removed from jsse.jar.
Thanks,
Xuelei
> Thanks
> Max
>
>
> On 8/19/13 8:49 PM, Xuelei Fan wrote:
>> Hi Weijun,
>>
>> Please review this update when you are available.
>>
>> webrev: http://cr.openjdk.java.net/~xuelei/8023230/webrev.00/
>>
>> If package sun.security.ssl.krb5 does not exist, the impl of
>> KerberosClientKeyExchange (krb5.KerberosClientKeyExchangeImpl) will not
>> present as well. Need to consider this case in the implementation of
>> sun.security.ssl.KerberosClientKeyExchange.
>>
>> Thanks,
>> Xuelei
>>
From weijun.wang at oracle.com Tue Aug 20 01:37:31 2013
From: weijun.wang at oracle.com (Weijun Wang)
Date: Tue, 20 Aug 2013 09:37:31 +0800
Subject: Code review request 8023230, The impl of KerberosClientKeyExchange
maybe not exist
In-Reply-To: <5212C549.2070701@oracle.com>
References: <5212146A.1070405@oracle.com> <52122374.4030400@oracle.com>
<5212C549.2070701@oracle.com>
Message-ID: <5212C85B.5050101@oracle.com>
Looks fine now.
Or maybe you can just remove KerberosClientKeyExchange()? I remember an
empty public constrictor is equivalent to no constructor. Of course you
made it protected so it's a little different.
When I ask if you saw a failure, I had two different questions:
1. Is the code change necessary? i.e. if there is no impl at all, can a
program go as far as this way to this class?
2. Is the code change sufficient? i.e. is there other places we need to
take care of?
--Max
On 8/20/13 9:24 AM, Xuelei Fan wrote:
> new webrev: http://cr.openjdk.java.net/~xuelei/8023230/webrev.01/
>
> On 8/19/2013 9:53 PM, Weijun Wang wrote:
>> Only one change I don't understand:
>>
>> 73 public KerberosClientKeyExchange() {
>> 74 if (impl == null) {
>> 75 throw new IllegalStateException("Kerberos is
>> unavailable");
>> 76 }
>> 77 }
>>
>> It seems this constructor will be automatically called when constructing
>> an instance of its child class -- KerberosClientKeyExchangeImpl. Isn't
>> that impl itself? There seems to be a chicken-or-egg puzzle here.
>>
> Good catch. It's a weird link between KerberosClientKeyExchangeImpl and
> KerberosClientKeyExchange.
>
> Then I would like to restrict the use of this constructor, and declare
> it as protected. See above webrev.
>
>> Also, did you really spot a failure when KerberosClientKeyExchangeImpl
>> does not exist?
>>
> Not really. But that's the purpose of existence of
> KerberosClientKeyExchangeImpl. Krb5 implementation should be able to be
> removed from jsse.jar.
>
> Thanks,
> Xuelei
>
>> Thanks
>> Max
>>
>>
>> On 8/19/13 8:49 PM, Xuelei Fan wrote:
>>> Hi Weijun,
>>>
>>> Please review this update when you are available.
>>>
>>> webrev: http://cr.openjdk.java.net/~xuelei/8023230/webrev.00/
>>>
>>> If package sun.security.ssl.krb5 does not exist, the impl of
>>> KerberosClientKeyExchange (krb5.KerberosClientKeyExchangeImpl) will not
>>> present as well. Need to consider this case in the implementation of
>>> sun.security.ssl.KerberosClientKeyExchange.
>>>
>>> Thanks,
>>> Xuelei
>>>
>
From xuelei.fan at oracle.com Tue Aug 20 01:44:38 2013
From: xuelei.fan at oracle.com (Xuelei Fan)
Date: Tue, 20 Aug 2013 09:44:38 +0800
Subject: Code review request 8023230, The impl of KerberosClientKeyExchange
maybe not exist
In-Reply-To: <5212C85B.5050101@oracle.com>
References: <5212146A.1070405@oracle.com> <52122374.4030400@oracle.com>
<5212C549.2070701@oracle.com> <5212C85B.5050101@oracle.com>
Message-ID: <5212CA06.8010101@oracle.com>
On 8/20/2013 9:37 AM, Weijun Wang wrote:
> Looks fine now.
>
> Or maybe you can just remove KerberosClientKeyExchange()? I remember an
> empty public constrictor is equivalent to no constructor. Of course you
> made it protected so it's a little different.
>
> When I ask if you saw a failure, I had two different questions:
>
> 1. Is the code change necessary? i.e. if there is no impl at all, can a
> program go as far as this way to this class?
>
It's a public internal class. It's a little better to restrict the
usage of this constructor.
> 2. Is the code change sufficient? i.e. is there other places we need to
> take care of?
>
No similar issue found on other krb5/ssl impl.
Thanks,
Xuelei
> --Max
>
> On 8/20/13 9:24 AM, Xuelei Fan wrote:
>> new webrev: http://cr.openjdk.java.net/~xuelei/8023230/webrev.01/
>>
>> On 8/19/2013 9:53 PM, Weijun Wang wrote:
>>> Only one change I don't understand:
>>>
>>> 73 public KerberosClientKeyExchange() {
>>> 74 if (impl == null) {
>>> 75 throw new IllegalStateException("Kerberos is
>>> unavailable");
>>> 76 }
>>> 77 }
>>>
>>> It seems this constructor will be automatically called when constructing
>>> an instance of its child class -- KerberosClientKeyExchangeImpl. Isn't
>>> that impl itself? There seems to be a chicken-or-egg puzzle here.
>>>
>> Good catch. It's a weird link between KerberosClientKeyExchangeImpl and
>> KerberosClientKeyExchange.
>>
>> Then I would like to restrict the use of this constructor, and declare
>> it as protected. See above webrev.
>>
>>> Also, did you really spot a failure when KerberosClientKeyExchangeImpl
>>> does not exist?
>>>
>> Not really. But that's the purpose of existence of
>> KerberosClientKeyExchangeImpl. Krb5 implementation should be able to be
>> removed from jsse.jar.
>>
>> Thanks,
>> Xuelei
>>
>>> Thanks
>>> Max
>>>
>>>
>>> On 8/19/13 8:49 PM, Xuelei Fan wrote:
>>>> Hi Weijun,
>>>>
>>>> Please review this update when you are available.
>>>>
>>>> webrev: http://cr.openjdk.java.net/~xuelei/8023230/webrev.00/
>>>>
>>>> If package sun.security.ssl.krb5 does not exist, the impl of
>>>> KerberosClientKeyExchange (krb5.KerberosClientKeyExchangeImpl) will not
>>>> present as well. Need to consider this case in the implementation of
>>>> sun.security.ssl.KerberosClientKeyExchange.
>>>>
>>>> Thanks,
>>>> Xuelei
>>>>
>>
From xuelei.fan at oracle.com Tue Aug 20 01:51:26 2013
From: xuelei.fan at oracle.com (xuelei.fan at oracle.com)
Date: Tue, 20 Aug 2013 01:51:26 +0000
Subject: hg: jdk8/tl/jdk: 8023230: The impl of KerberosClientKeyExchange maybe
not exist
Message-ID: <20130820015148.C0D5F489CE@hg.openjdk.java.net>
Changeset: 21a25911f7f7
Author: xuelei
Date: 2013-08-19 18:49 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/21a25911f7f7
8023230: The impl of KerberosClientKeyExchange maybe not exist
Reviewed-by: weijun
! src/share/classes/sun/security/ssl/KerberosClientKeyExchange.java
From david.holmes at oracle.com Tue Aug 20 07:19:32 2013
From: david.holmes at oracle.com (david.holmes at oracle.com)
Date: Tue, 20 Aug 2013 07:19:32 +0000
Subject: hg: jdk8/tl/jdk: 8023311: Clean up profile-includes.txt
Message-ID: <20130820071955.810B7489D5@hg.openjdk.java.net>
Changeset: e17da8b09f5e
Author: dholmes
Date: 2013-08-20 03:18 -0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/e17da8b09f5e
8023311: Clean up profile-includes.txt
Reviewed-by: alanb
! makefiles/profile-includes.txt
From alexander.zuev at oracle.com Tue Aug 20 13:36:52 2013
From: alexander.zuev at oracle.com (alexander.zuev at oracle.com)
Date: Tue, 20 Aug 2013 13:36:52 +0000
Subject: hg: jdk8/tl/langtools: 7182350: Regression in wording of unchecked
warning message
Message-ID: <20130820133656.57107489E0@hg.openjdk.java.net>
Changeset: 55da6b3a6940
Author: kizune
Date: 2013-08-20 17:34 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/55da6b3a6940
7182350: Regression in wording of unchecked warning message
Reviewed-by: mcimadamore, jjg
! src/share/classes/com/sun/tools/javac/comp/Check.java
! test/tools/javac/6758789/T6758789b.out
+ test/tools/javac/7182350/T7182350.java
+ test/tools/javac/7182350/T7182350.out
! test/tools/javac/generics/7015430/T7015430_1.out
! test/tools/javac/generics/7015430/T7015430_2.out
! test/tools/javac/generics/7151802/T7151802.out
! test/tools/javac/generics/inference/6718364/T6718364.out
! test/tools/javac/generics/inference/7177306/T7177306a.out
From joel.franck at oracle.com Tue Aug 20 15:27:15 2013
From: joel.franck at oracle.com (joel.franck at oracle.com)
Date: Tue, 20 Aug 2013 15:27:15 +0000
Subject: hg: jdk8/tl/langtools: 8019243: AnnotationTypeMismatchException
instead of MirroredTypeException
Message-ID: <20130820152718.E9171489E6@hg.openjdk.java.net>
Changeset: e811fb09a1dc
Author: jfranck
Date: 2013-08-20 17:21 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/e811fb09a1dc
8019243: AnnotationTypeMismatchException instead of MirroredTypeException
Reviewed-by: jjg
! src/share/classes/com/sun/tools/javac/code/Attribute.java
! src/share/classes/com/sun/tools/javac/comp/Annotate.java
! src/share/classes/com/sun/tools/javac/model/AnnotationProxyMaker.java
+ test/tools/javac/processing/errors/EnsureMirroredTypeException/Processor.java
+ test/tools/javac/processing/errors/EnsureMirroredTypeException/Source.java
+ test/tools/javac/processing/errors/EnsureMirroredTypeException/Source.out
From paul.sandoz at oracle.com Tue Aug 20 16:47:20 2013
From: paul.sandoz at oracle.com (paul.sandoz at oracle.com)
Date: Tue, 20 Aug 2013 16:47:20 +0000
Subject: hg: jdk8/tl/jdk: 8023367:
Collections.emptyList().sort((Comparator)null) throws NPE
Message-ID: <20130820164747.1CD50489ED@hg.openjdk.java.net>
Changeset: c17d6543b30f
Author: psandoz
Date: 2013-08-20 17:36 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/c17d6543b30f
8023367: Collections.emptyList().sort((Comparator)null) throws NPE
Reviewed-by: alanb, mduigou
! src/share/classes/java/util/Collections.java
! test/java/util/Collection/ListDefaults.java
From joe.darcy at oracle.com Tue Aug 20 19:16:27 2013
From: joe.darcy at oracle.com (joe.darcy at oracle.com)
Date: Tue, 20 Aug 2013 19:16:27 +0000
Subject: hg: jdk8/tl/langtools: 8011043: Warn about use of 1.5 and earlier
source and target values
Message-ID: <20130820191632.B7F59489F6@hg.openjdk.java.net>
Changeset: 58da1296c6b3
Author: darcy
Date: 2013-08-20 12:15 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/58da1296c6b3
8011043: Warn about use of 1.5 and earlier source and target values
Reviewed-by: jjg
! src/share/classes/com/sun/tools/javac/main/JavaCompiler.java
! src/share/classes/com/sun/tools/javac/resources/compiler.properties
! src/share/classes/com/sun/tools/javadoc/Start.java
+ test/tools/javac/diags/examples/ObsoleteSourceAndTarget.java
From jaroslav.bachorik at oracle.com Mon Aug 19 09:05:55 2013
From: jaroslav.bachorik at oracle.com (jaroslav.bachorik at oracle.com)
Date: Mon, 19 Aug 2013 09:05:55 +0000
Subject: hg: jdk8/tl/jdk: 4 new changesets
Message-ID: <20130819090651.373E34898A@hg.openjdk.java.net>
Changeset: 8e098a29ecd8
Author: egahlin
Date: 2013-08-16 17:02 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/8e098a29ecd8
6417702: Graph in Memory tab is not redrawn immediately if changed via 'Chart' combo box
Reviewed-by: alanb, jbachorik, sjiang
! src/share/classes/sun/tools/jconsole/MemoryTab.java
Changeset: c67cb9d4d51a
Author: egahlin
Date: 2013-08-16 17:11 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/c67cb9d4d51a
6721425: jconsole Makefile clean rule is missing rm of generated Version.java
Reviewed-by: alanb, jbachorik
! make/sun/jconsole/Makefile
Changeset: 89ef4bcf7b0e
Author: egahlin
Date: 2013-08-16 16:53 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/89ef4bcf7b0e
7015157: String "Tabular Navigation" should be rephrased for avoiding mistranslation
Reviewed-by: alanb, jbachorik, sjiang
! src/share/classes/sun/tools/jconsole/resources/messages.properties
Changeset: 71bad9540825
Author: egahlin
Date: 2013-08-16 18:58 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/71bad9540825
6696970: Jconsole becomes unusable if a plugin throws an exception
Reviewed-by: mchung, jbachorik
+ src/share/classes/sun/tools/jconsole/ExceptionSafePlugin.java
! src/share/classes/sun/tools/jconsole/Messages.java
! src/share/classes/sun/tools/jconsole/VMPanel.java
! src/share/classes/sun/tools/jconsole/resources/messages.properties
From staffan.larsen at oracle.com Tue Aug 20 06:59:36 2013
From: staffan.larsen at oracle.com (staffan.larsen at oracle.com)
Date: Tue, 20 Aug 2013 06:59:36 +0000
Subject: hg: jdk8/tl/jdk: 8022071: Some vm/jvmti tests fail because cannot
attach to the Java virtual machine
Message-ID: <20130820070010.F0E36489D2@hg.openjdk.java.net>
Changeset: 53ea4b5cef9b
Author: sla
Date: 2013-08-20 08:59 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/53ea4b5cef9b
8022071: Some vm/jvmti tests fail because cannot attach to the Java virtual machine
Reviewed-by: erikj, sspitsyn
! makefiles/CompileNativeLibraries.gmk
+ makefiles/mapfiles/libattach/reorder-windows-x86
+ makefiles/mapfiles/libattach/reorder-windows-x86_64
! src/windows/native/sun/tools/attach/WindowsVirtualMachine.c
From staffan.larsen at oracle.com Tue Aug 20 14:56:12 2013
From: staffan.larsen at oracle.com (staffan.larsen at oracle.com)
Date: Tue, 20 Aug 2013 14:56:12 +0000
Subject: hg: jdk8/tl/jdk: 8016727:
test/com/sun/jdi/sde/TemperatureTableTest.java failing intermittently
Message-ID: <20130820145635.5C28E489E3@hg.openjdk.java.net>
Changeset: 961cdea684b5
Author: sla
Date: 2013-08-20 16:53 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/961cdea684b5
8016727: test/com/sun/jdi/sde/TemperatureTableTest.java failing intermittently
Reviewed-by: alanb
! test/com/sun/jdi/sde/TemperatureTableTest.java
From staffan.larsen at oracle.com Tue Aug 20 17:07:41 2013
From: staffan.larsen at oracle.com (staffan.larsen at oracle.com)
Date: Tue, 20 Aug 2013 17:07:41 +0000
Subject: hg: jdk8/tl/jdk: 8023250: Update JavaScript code in JDK for changes
in iteration over Java arrays
Message-ID: <20130820170753.D7C43489F1@hg.openjdk.java.net>
Changeset: 1ccc7bbee0bb
Author: attila
Date: 2013-08-20 11:15 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/1ccc7bbee0bb
8023250: Update JavaScript code in JDK for changes in iteration over Java arrays
Reviewed-by: sundar, sla
! src/share/classes/com/sun/tools/hat/resources/hat.js
From jonathan.gibbons at oracle.com Tue Aug 20 21:48:34 2013
From: jonathan.gibbons at oracle.com (jonathan.gibbons at oracle.com)
Date: Tue, 20 Aug 2013 21:48:34 +0000
Subject: hg: jdk8/tl/langtools: 8020663: Restructure some properties to
facilitate better translation
Message-ID: <20130820214837.9671E48A07@hg.openjdk.java.net>
Changeset: a76dc1b4c299
Author: jjg
Date: 2013-08-20 14:46 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/a76dc1b4c299
8020663: Restructure some properties to facilitate better translation
Reviewed-by: darcy
! src/share/classes/com/sun/tools/doclets/internal/toolkit/resources/doclets.properties
! src/share/classes/com/sun/tools/doclets/internal/toolkit/util/Util.java
From kumar.x.srinivasan at oracle.com Tue Aug 20 21:18:34 2013
From: kumar.x.srinivasan at oracle.com (kumar.x.srinivasan at oracle.com)
Date: Tue, 20 Aug 2013 21:18:34 +0000
Subject: hg: jdk8/tl/langtools: 7179455:
tools/javac/processing/model/testgetallmembers/Main.java fails
against JDK 7 and JDK 8
Message-ID: <20130820211839.BB48A48A01@hg.openjdk.java.net>
Changeset: 0f88e3d3d250
Author: ksrini
Date: 2013-08-20 14:15 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/0f88e3d3d250
7179455: tools/javac/processing/model/testgetallmembers/Main.java fails against JDK 7 and JDK 8
Reviewed-by: jjg
! test/tools/javac/processing/model/testgetallmembers/Main.java
From jonathan.gibbons at oracle.com Tue Aug 20 21:55:32 2013
From: jonathan.gibbons at oracle.com (jonathan.gibbons at oracle.com)
Date: Tue, 20 Aug 2013 21:55:32 +0000
Subject: hg: jdk8/tl/langtools: 8022080: javadoc generates invalid HTML in
Turkish locale
Message-ID: <20130820215535.36BC748A08@hg.openjdk.java.net>
Changeset: 79e341614c50
Author: jjg
Date: 2013-08-20 14:55 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/79e341614c50
8022080: javadoc generates invalid HTML in Turkish locale
Reviewed-by: bpatel
! src/share/classes/com/sun/tools/doclets/formats/html/markup/HtmlTag.java
! src/share/classes/com/sun/tools/doclint/HtmlTag.java
From jonathan.gibbons at oracle.com Tue Aug 20 22:13:02 2013
From: jonathan.gibbons at oracle.com (jonathan.gibbons at oracle.com)
Date: Tue, 20 Aug 2013 22:13:02 +0000
Subject: hg: jdk8/tl/langtools: 8013887: In class use,
some tables are randomly unsorted
Message-ID: <20130820221305.33B1448A09@hg.openjdk.java.net>
Changeset: 720992953d43
Author: jjg
Date: 2013-08-20 15:12 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/720992953d43
8013887: In class use, some tables are randomly unsorted
Reviewed-by: bpatel
! src/share/classes/com/sun/tools/doclets/formats/html/ClassUseWriter.java
From mike.duigou at oracle.com Wed Aug 21 00:51:30 2013
From: mike.duigou at oracle.com (mike.duigou at oracle.com)
Date: Wed, 21 Aug 2013 00:51:30 +0000
Subject: hg: jdk8/tl: 8023433: Improve 'make help'
Message-ID: <20130821005130.7CC5C48A18@hg.openjdk.java.net>
Changeset: c8da1b6a9762
Author: mduigou
Date: 2013-08-20 17:44 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/rev/c8da1b6a9762
8023433: Improve 'make help'
Reviewed-by: tbell
! NewMakefile.gmk
From alan.bateman at oracle.com Wed Aug 21 09:02:07 2013
From: alan.bateman at oracle.com (alan.bateman at oracle.com)
Date: Wed, 21 Aug 2013 09:02:07 +0000
Subject: hg: jdk8/tl/jdk: 8023351: Add TEST.groups in preparation to simplify
rules in jdk/test/Makefile
Message-ID: <20130821090221.72AF148A34@hg.openjdk.java.net>
Changeset: eb18a483e772
Author: alanb
Date: 2013-08-21 09:59 +0100
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/eb18a483e772
8023351: Add TEST.groups in preparation to simplify rules in jdk/test/Makefile
Reviewed-by: lancea, mduigou
! test/TEST.ROOT
+ test/TEST.groups
From staffan.larsen at oracle.com Wed Aug 21 09:43:40 2013
From: staffan.larsen at oracle.com (staffan.larsen at oracle.com)
Date: Wed, 21 Aug 2013 09:43:40 +0000
Subject: hg: jdk8/tl/jdk: 4 new changesets
Message-ID: <20130821094503.9A16C48A37@hg.openjdk.java.net>
Changeset: 68be998c2596
Author: egahlin
Date: 2013-08-19 12:57 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/68be998c2596
6358357: Division by zero in Threads tab when shrinking jconsole window
Reviewed-by: mchung, leifs, jbachorik
! src/share/classes/sun/tools/jconsole/Plotter.java
Changeset: bddf55211ed8
Author: egahlin
Date: 2013-08-19 16:21 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/bddf55211ed8
6417721: Thread list should not allow multiple selection
Reviewed-by: alanb, jbachorik, sjiang
! src/share/classes/sun/tools/jconsole/ThreadTab.java
Changeset: 2636d337a1ed
Author: egahlin
Date: 2013-08-19 16:41 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/2636d337a1ed
6800801: NPE in JConsole when using Nimbus L&F
Reviewed-by: alanb, sjiang
! src/share/classes/sun/tools/jconsole/ConnectDialog.java
! src/share/classes/sun/tools/jconsole/VMPanel.java
Changeset: ba943fc47fc8
Author: egahlin
Date: 2013-08-19 13:11 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/ba943fc47fc8
7042707: Un-needed mnemonic in JConsole resource file
Reviewed-by: mfang, jbachorik
! src/share/classes/sun/tools/jconsole/Messages.java
! src/share/classes/sun/tools/jconsole/resources/messages.properties
! src/share/classes/sun/tools/jconsole/resources/messages_ja.properties
! src/share/classes/sun/tools/jconsole/resources/messages_zh_CN.properties
From david.holmes at oracle.com Wed Aug 21 09:57:16 2013
From: david.holmes at oracle.com (david.holmes at oracle.com)
Date: Wed, 21 Aug 2013 09:57:16 +0000
Subject: hg: jdk8/tl/jdk: 8023460: OPENJDK build fails due to missing jfr.jar
Message-ID: <20130821095728.7866948A38@hg.openjdk.java.net>
Changeset: 3b8fed46b2a8
Author: dholmes
Date: 2013-08-21 05:56 -0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/3b8fed46b2a8
8023460: OPENJDK build fails due to missing jfr.jar
Reviewed-by: alanb
! makefiles/Profiles.gmk
From staffan.larsen at oracle.com Wed Aug 21 15:33:42 2013
From: staffan.larsen at oracle.com (staffan.larsen at oracle.com)
Date: Wed, 21 Aug 2013 15:33:42 +0000
Subject: hg: jdk8/tl/jdk: 8023485: Remove com/sun/jdi/DoubleAgentTest.java and
com/sun/jdi/FieldWatchpoints.java from ProblemList.txt
Message-ID: <20130821153409.DC15048A46@hg.openjdk.java.net>
Changeset: 8996f47f738d
Author: sla
Date: 2013-08-21 17:19 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/8996f47f738d
8023485: Remove com/sun/jdi/DoubleAgentTest.java and com/sun/jdi/FieldWatchpoints.java from ProblemList.txt
Reviewed-by: chegar, mgronlun
! test/ProblemList.txt
From mike.duigou at oracle.com Wed Aug 21 19:49:20 2013
From: mike.duigou at oracle.com (mike.duigou at oracle.com)
Date: Wed, 21 Aug 2013 19:49:20 +0000
Subject: hg: jdk8/tl/jdk: 2 new changesets
Message-ID: <20130821194944.A99FD48A5B@hg.openjdk.java.net>
Changeset: fad3b6673159
Author: mduigou
Date: 2013-08-21 12:03 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/fad3b6673159
8023306: Add replace() implementations to TreeMap
Reviewed-by: psandoz, alanb, chegar, bpb
! src/share/classes/java/util/TreeMap.java
Changeset: 91a31c77be5b
Author: mduigou
Date: 2013-08-21 12:03 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/91a31c77be5b
8023395: Remove sun.misc.Sort and sun.misc.Compare
Reviewed-by: alanb, smarks, darcy, mr
- src/share/classes/sun/misc/Compare.java
- src/share/classes/sun/misc/Sort.java
From martinrb at google.com Wed Aug 21 22:43:11 2013
From: martinrb at google.com (Martin Buchholz)
Date: Wed, 21 Aug 2013 15:43:11 -0700
Subject: Bug in ProcessBuilder.
Message-ID:
Hi security team,
There's some code in ProcessBuilder.java to avoid leaking data in case
ProcessBuilder.start fails.
It appears to have an obvious bug, with an obvious fix.
http://cr.openjdk.java.net/~martin/webrevs/openjdk8/ProcessBuilder-checkRead/
checkRead is spec'ed to throw SecurityException, not AccessControlException.
If checkRead does throw SecurityException, then start will throw the wrong
exception.
Untested.
@@ -1033,9 +1033,9 @@
// Can not disclose the fail reason for read-protected files.
try {
security.checkRead(prog);
- } catch (AccessControlException ace) {
+ } catch (SecurityException e) {
exceptionInfo = "";
- cause = ace;
+ cause = e;
}
}
// It's much easier for us to create a high-quality error
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
From martinrb at google.com Wed Aug 21 22:51:59 2013
From: martinrb at google.com (Martin Buchholz)
Date: Wed, 21 Aug 2013 15:51:59 -0700
Subject: Bug in ProcessBuilder.
In-Reply-To:
References:
Message-ID:
Adding Alexey Utkin, who appears to be the author of the lines I am
proposing to modify. Alexey, you are invited to take ownership of this fix.
On Wed, Aug 21, 2013 at 3:43 PM, Martin Buchholz wrote:
> Hi security team,
>
> There's some code in ProcessBuilder.java to avoid leaking data in case
> ProcessBuilder.start fails.
> It appears to have an obvious bug, with an obvious fix.
>
>
> http://cr.openjdk.java.net/~martin/webrevs/openjdk8/ProcessBuilder-checkRead/
>
> checkRead is spec'ed to throw SecurityException, not AccessControlException.
> If checkRead does throw SecurityException, then start will throw the wrong
> exception.
>
> Untested.
>
> @@ -1033,9 +1033,9 @@
> // Can not disclose the fail reason for read-protected files.
> try {
> security.checkRead(prog);
> - } catch (AccessControlException ace) {
> + } catch (SecurityException e) {
> exceptionInfo = "";
> - cause = ace;
> + cause = e;
> }
> }
> // It's much easier for us to create a high-quality error
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
From jonathan.gibbons at oracle.com Wed Aug 21 23:14:14 2013
From: jonathan.gibbons at oracle.com (jonathan.gibbons at oracle.com)
Date: Wed, 21 Aug 2013 23:14:14 +0000
Subject: hg: jdk8/tl/langtools: 8023515: import type-annotations updates
Message-ID: <20130821231417.A145A48A61@hg.openjdk.java.net>
Changeset: 7de231613e4a
Author: jjg
Date: 2013-08-21 16:13 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/7de231613e4a
8023515: import type-annotations updates
Reviewed-by: jjg
Contributed-by: wdietl at gmail.com
! src/share/classes/com/sun/source/tree/MethodTree.java
! src/share/classes/com/sun/source/tree/TypeParameterTree.java
! src/share/classes/com/sun/tools/javac/code/Printer.java
! src/share/classes/com/sun/tools/javac/code/TypeAnnotations.java
! src/share/classes/com/sun/tools/javac/comp/LambdaToMethod.java
! src/share/classes/com/sun/tools/javac/comp/MemberEnter.java
! src/share/classes/com/sun/tools/javac/processing/JavacProcessingEnvironment.java
! src/share/classes/com/sun/tools/javac/resources/compiler.properties
! src/share/classes/com/sun/tools/javac/tree/Pretty.java
! test/tools/javac/annotations/typeAnnotations/classfile/CombinationsTargetTest2.java
+ test/tools/javac/annotations/typeAnnotations/failures/DummyProcessor.java
+ test/tools/javac/annotations/typeAnnotations/failures/T8020715.java
! test/tools/javac/annotations/typeAnnotations/referenceinfos/Constructors.java
+ test/tools/javac/tree/TypeAnnotationsPretty.java
From eric.mccorkle at oracle.com Thu Aug 22 00:24:04 2013
From: eric.mccorkle at oracle.com (eric.mccorkle at oracle.com)
Date: Thu, 22 Aug 2013 00:24:04 +0000
Subject: hg: jdk8/tl/langtools: 7118412: Shadowing of type-variables vs.
member types; ...
Message-ID: <20130822002407.9A65248A64@hg.openjdk.java.net>
Changeset: 2068190f8ac2
Author: emc
Date: 2013-08-21 20:23 -0400
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/2068190f8ac2
7118412: Shadowing of type-variables vs. member types
4987840: What is the scope of an annotation?
Summary: Fixed issue with shadowing of type names.
Reviewed-by: jjg, abuckley, mcimadamore
! src/share/classes/com/sun/tools/javac/comp/Resolve.java
From jonathan.gibbons at oracle.com Thu Aug 22 00:29:36 2013
From: jonathan.gibbons at oracle.com (jonathan.gibbons at oracle.com)
Date: Thu, 22 Aug 2013 00:29:36 +0000
Subject: hg: jdk8/tl/langtools: 8022287: javac.sym.Profiles uses a static Map
when it should not
Message-ID: <20130822002939.8336848A65@hg.openjdk.java.net>
Changeset: 57e1266527dd
Author: jjg
Date: 2013-08-21 17:26 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/57e1266527dd
8022287: javac.sym.Profiles uses a static Map when it should not
Reviewed-by: ksrini
! src/share/classes/com/sun/tools/javac/sym/Profiles.java
+ test/tools/javac/profiles/ProfileTest.java
From eric.mccorkle at oracle.com Thu Aug 22 00:43:27 2013
From: eric.mccorkle at oracle.com (eric.mccorkle at oracle.com)
Date: Thu, 22 Aug 2013 00:43:27 +0000
Subject: hg: jdk8/tl/langtools: 8023520: Add missing test for JDK-7118412
Message-ID: <20130822004330.6C49548A66@hg.openjdk.java.net>
Changeset: eebb29618f50
Author: emc
Date: 2013-08-21 20:41 -0400
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/eebb29618f50
8023520: Add missing test for JDK-7118412
Summary: The test for JDK-7118412 was dropped from the changeset in a merging accident.
Reviewed-by: jjg
+ test/tools/javac/7118412/ShadowingTest.java
From xuelei.fan at oracle.com Thu Aug 22 01:18:20 2013
From: xuelei.fan at oracle.com (Xuelei Fan)
Date: Thu, 22 Aug 2013 09:18:20 +0800
Subject: [JDK 8]Code review request 8022228, Intermittent test failures in
sun/security/ssl/javax/net/ssl/NewAPIs
Message-ID: <521566DC.2030400@oracle.com>
Hi Weijun,
Please review this regression test bug fix for JDK 8.
Webrev: http://cr.openjdk.java.net/~xuelei/8022228/webrev.00/
The timeout issue of SessionTimeOutTests.java is still unknown. This
fix is just try to use new SSL testing template so as to expose more
information.
The issue of SessionCacheSizeTests is that the client side may kick off
a connection before server is ready to listen on a particular port.
Thanks,
Xuelei
From weijun.wang at oracle.com Thu Aug 22 01:30:08 2013
From: weijun.wang at oracle.com (Weijun Wang)
Date: Thu, 22 Aug 2013 09:30:08 +0800
Subject: [JDK 8]Code review request 8022228, Intermittent test failures
in sun/security/ssl/javax/net/ssl/NewAPIs
In-Reply-To: <521566DC.2030400@oracle.com>
References: <521566DC.2030400@oracle.com>
Message-ID: <521569A0.6010402@oracle.com>
SessionTimeOutTests.java:
411 local.initCause(remote);
What if local already has a cause? Will this overwrite it?
427 exception.addSuppressed(startException);
Is it possible startException is null?
Same for the other test.
Also, if you have to do all these checks in every SSL test, can they be
added into a library?
Thanks
Max
On 8/22/13 9:18 AM, Xuelei Fan wrote:
> Hi Weijun,
>
> Please review this regression test bug fix for JDK 8.
>
> Webrev: http://cr.openjdk.java.net/~xuelei/8022228/webrev.00/
>
> The timeout issue of SessionTimeOutTests.java is still unknown. This
> fix is just try to use new SSL testing template so as to expose more
> information.
>
> The issue of SessionCacheSizeTests is that the client side may kick off
> a connection before server is ready to listen on a particular port.
>
> Thanks,
> Xuelei
>
From xuelei.fan at oracle.com Thu Aug 22 01:46:56 2013
From: xuelei.fan at oracle.com (Xuelei Fan)
Date: Thu, 22 Aug 2013 09:46:56 +0800
Subject: [JDK 8]Code review request 8022228, Intermittent test failures
in sun/security/ssl/javax/net/ssl/NewAPIs
In-Reply-To: <521569A0.6010402@oracle.com>
References: <521566DC.2030400@oracle.com> <521569A0.6010402@oracle.com>
Message-ID: <52156D90.5030805@oracle.com>
new webrev: http://cr.openjdk.java.net/~xuelei/8022228/webrev.01/
On 8/22/2013 9:30 AM, Weijun Wang wrote:
> SessionTimeOutTests.java:
>
> 411 local.initCause(remote);
>
> What if local already has a cause? Will this overwrite it?
>
Yes. It's intent to override the current cause, but with the current
stacks. It's a approach to show some information of both side.
> 427 exception.addSuppressed(startException);
>
> Is it possible startException is null?
>
Good catch! It's a safer code to consider this case.
> Same for the other test.
>
> Also, if you have to do all these checks in every SSL test, can they be
> added into a library?
>
Maybe we can design a super class for this kind of tests later.
Thanks,
Xuelei
> Thanks
> Max
>
> On 8/22/13 9:18 AM, Xuelei Fan wrote:
>> Hi Weijun,
>>
>> Please review this regression test bug fix for JDK 8.
>>
>> Webrev: http://cr.openjdk.java.net/~xuelei/8022228/webrev.00/
>>
>> The timeout issue of SessionTimeOutTests.java is still unknown. This
>> fix is just try to use new SSL testing template so as to expose more
>> information.
>>
>> The issue of SessionCacheSizeTests is that the client side may kick off
>> a connection before server is ready to listen on a particular port.
>>
>> Thanks,
>> Xuelei
>>
From weijun.wang at oracle.com Thu Aug 22 02:09:49 2013
From: weijun.wang at oracle.com (Weijun Wang)
Date: Thu, 22 Aug 2013 10:09:49 +0800
Subject: [JDK 8]Code review request 8022228, Intermittent test failures
in sun/security/ssl/javax/net/ssl/NewAPIs
In-Reply-To: <52156D90.5030805@oracle.com>
References: <521566DC.2030400@oracle.com> <521569A0.6010402@oracle.com>
<52156D90.5030805@oracle.com>
Message-ID: <521572ED.8080700@oracle.com>
On 8/22/13 9:46 AM, Xuelei Fan wrote:
> new webrev: http://cr.openjdk.java.net/~xuelei/8022228/webrev.01/
>
> On 8/22/2013 9:30 AM, Weijun Wang wrote:
>> SessionTimeOutTests.java:
>>
>> 411 local.initCause(remote);
>>
>> What if local already has a cause? Will this overwrite it?
>>
> Yes. It's intent to override the current cause, but with the current
> stacks. It's a approach to show some information of both side.
I don't know if the current stack is enough for you to debug. Why not
also use addSuppressed here? Or you can just printStackTrace.
--Max
>
>> 427 exception.addSuppressed(startException);
>>
>> Is it possible startException is null?
>>
> Good catch! It's a safer code to consider this case.
>
>> Same for the other test.
>>
>> Also, if you have to do all these checks in every SSL test, can they be
>> added into a library?
>>
> Maybe we can design a super class for this kind of tests later.
>
> Thanks,
> Xuelei
>
>> Thanks
>> Max
>>
>> On 8/22/13 9:18 AM, Xuelei Fan wrote:
>>> Hi Weijun,
>>>
>>> Please review this regression test bug fix for JDK 8.
>>>
>>> Webrev: http://cr.openjdk.java.net/~xuelei/8022228/webrev.00/
>>>
>>> The timeout issue of SessionTimeOutTests.java is still unknown. This
>>> fix is just try to use new SSL testing template so as to expose more
>>> information.
>>>
>>> The issue of SessionCacheSizeTests is that the client side may kick off
>>> a connection before server is ready to listen on a particular port.
>>>
>>> Thanks,
>>> Xuelei
>>>
>
From henry.jen at oracle.com Wed Aug 21 20:14:41 2013
From: henry.jen at oracle.com (henry.jen at oracle.com)
Date: Wed, 21 Aug 2013 20:14:41 +0000
Subject: hg: jdk8/tl/jdk: 8016846: Pattern.splitAsStream tests required
Message-ID: <20130821201454.58B7848A5E@hg.openjdk.java.net>
Changeset: 60891d90327f
Author: henryjen
Date: 2013-08-20 14:23 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/60891d90327f
8016846: Pattern.splitAsStream tests required
Reviewed-by: alanb, psandoz
Contributed-by: Ben Evans
+ test/java/util/regex/PatternTest.java
From xuelei.fan at oracle.com Thu Aug 22 02:22:57 2013
From: xuelei.fan at oracle.com (Xuelei Fan)
Date: Thu, 22 Aug 2013 10:22:57 +0800
Subject: [JDK 8]Code review request 8022228, Intermittent test failures
in sun/security/ssl/javax/net/ssl/NewAPIs
In-Reply-To: <521572ED.8080700@oracle.com>
References: <521566DC.2030400@oracle.com> <521569A0.6010402@oracle.com>
<52156D90.5030805@oracle.com> <521572ED.8080700@oracle.com>
Message-ID: <52157601.2090709@oracle.com>
On 8/22/2013 10:09 AM, Weijun Wang wrote:
>
>
> On 8/22/13 9:46 AM, Xuelei Fan wrote:
>> new webrev: http://cr.openjdk.java.net/~xuelei/8022228/webrev.01/
>>
>> On 8/22/2013 9:30 AM, Weijun Wang wrote:
>>> SessionTimeOutTests.java:
>>>
>>> 411 local.initCause(remote);
>>>
>>> What if local already has a cause? Will this overwrite it?
>>>
>> Yes. It's intent to override the current cause, but with the current
>> stacks. It's a approach to show some information of both side.
>
> I don't know if the current stack is enough for you to debug. Why not
> also use addSuppressed here? Or you can just printStackTrace.
>
Good suggestions. This template is wildly used in JSSE testing. I will
consider it later.
Thanks,
Xuelei
> --Max
>
>>
>>> 427 exception.addSuppressed(startException);
>>>
>>> Is it possible startException is null?
>>>
>> Good catch! It's a safer code to consider this case.
>>
>>> Same for the other test.
>>>
>>> Also, if you have to do all these checks in every SSL test, can they be
>>> added into a library?
>>>
>> Maybe we can design a super class for this kind of tests later.
>>
>> Thanks,
>> Xuelei
>>
>>> Thanks
>>> Max
>>>
>>> On 8/22/13 9:18 AM, Xuelei Fan wrote:
>>>> Hi Weijun,
>>>>
>>>> Please review this regression test bug fix for JDK 8.
>>>>
>>>> Webrev: http://cr.openjdk.java.net/~xuelei/8022228/webrev.00/
>>>>
>>>> The timeout issue of SessionTimeOutTests.java is still unknown. This
>>>> fix is just try to use new SSL testing template so as to expose more
>>>> information.
>>>>
>>>> The issue of SessionCacheSizeTests is that the client side may kick off
>>>> a connection before server is ready to listen on a particular port.
>>>>
>>>> Thanks,
>>>> Xuelei
>>>>
>>
From xuelei.fan at oracle.com Thu Aug 22 02:46:51 2013
From: xuelei.fan at oracle.com (xuelei.fan at oracle.com)
Date: Thu, 22 Aug 2013 02:46:51 +0000
Subject: hg: jdk8/tl/jdk: 8022228: Intermittent test failures in
sun/security/ssl/javax/net/ssl/NewAPIs
Message-ID: <20130822024717.B922548A76@hg.openjdk.java.net>
Changeset: ec827a62070a
Author: xuelei
Date: 2013-08-21 19:44 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/ec827a62070a
8022228: Intermittent test failures in sun/security/ssl/javax/net/ssl/NewAPIs
Reviewed-by: weijun
! test/sun/security/ssl/javax/net/ssl/NewAPIs/SessionCacheSizeTests.java
! test/sun/security/ssl/javax/net/ssl/NewAPIs/SessionTimeOutTests.java
! test/sun/security/ssl/templates/SSLSocketTemplate.java
From staffan.larsen at oracle.com Thu Aug 22 06:29:14 2013
From: staffan.larsen at oracle.com (staffan.larsen at oracle.com)
Date: Thu, 22 Aug 2013 06:29:14 +0000
Subject: hg: jdk8/tl/jdk: 8023101:
java/lang/management/MemoryMXBean/ResetPeakMemoryUsage.java fails
Message-ID: <20130822062937.A47CB48A7B@hg.openjdk.java.net>
Changeset: a0896634ab46
Author: sla
Date: 2013-08-22 08:28 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/a0896634ab46
8023101: java/lang/management/MemoryMXBean/ResetPeakMemoryUsage.java fails
Reviewed-by: ysr
! test/java/lang/management/MemoryMXBean/ResetPeakMemoryUsage.java
From xuelei.fan at oracle.com Thu Aug 22 07:03:10 2013
From: xuelei.fan at oracle.com (Xuelei Fan)
Date: Thu, 22 Aug 2013 15:03:10 +0800
Subject: hg: jdk8/tl/jdk: 8022228: Intermittent test failures in
sun/security/ssl/javax/net/ssl/NewAPIs
In-Reply-To:
References: <20130822024717.B922548A76@hg.openjdk.java.net>
Message-ID: <5215B7AE.2040406@oracle.com>
On 8/22/2013 11:37 AM, Laxmi Narayan NIT DGP wrote:
> is there are any chances of contribution for outsider of oracle and even
> student developers ??
>
Sure. Please see the following page about how to contribute:
http://openjdk.java.net/contribute/
And The OpenJDK Developers' Guide:
http://openjdk.java.net/guide/
Thanks,
Xuelei
> *
>
>
>
>
> Laxmi Narayan Patel
> *
> *
> MCA NIT Durgapur (Pre final year)
> *
> *
> mob:- 8345847473
> *
>
>
> On Thu, Aug 22, 2013 at 8:16 AM, > wrote:
>
> Changeset: ec827a62070a
> Author: xuelei
> Date: 2013-08-21 19:44 -0700
> URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/ec827a62070a
>
> 8022228: Intermittent test failures in
> sun/security/ssl/javax/net/ssl/NewAPIs
> Reviewed-by: weijun
>
> ! test/sun/security/ssl/javax/net/ssl/NewAPIs/SessionCacheSizeTests.java
> ! test/sun/security/ssl/javax/net/ssl/NewAPIs/SessionTimeOutTests.java
> ! test/sun/security/ssl/templates/SSLSocketTemplate.java
>
>
From vicente.romero at oracle.com Thu Aug 22 09:23:48 2013
From: vicente.romero at oracle.com (vicente.romero at oracle.com)
Date: Thu, 22 Aug 2013 09:23:48 +0000
Subject: hg: jdk8/tl/langtools: 8022316: Generic throws,
overriding and method reference
Message-ID: <20130822092359.E724B48A80@hg.openjdk.java.net>
Changeset: 7a4717f3ea7b
Author: vromero
Date: 2013-08-22 10:22 +0100
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/7a4717f3ea7b
8022316: Generic throws, overriding and method reference
Reviewed-by: jjg, mcimadamore
! src/share/classes/com/sun/tools/javac/code/Types.java
+ test/tools/javac/T8022316/CompilerErrorGenericThrowPlusMethodRefTest.java
+ test/tools/javac/T8022316/CompilerErrorGenericThrowPlusMethodRefTest.out
From vicente.romero at oracle.com Thu Aug 22 12:13:31 2013
From: vicente.romero at oracle.com (vicente.romero at oracle.com)
Date: Thu, 22 Aug 2013 12:13:31 +0000
Subject: hg: jdk8/tl/langtools: 8023112: javac should not use lazy constant
evaluation approach for method references
Message-ID: <20130822121336.74ABE48A86@hg.openjdk.java.net>
Changeset: 25aaff78d754
Author: vromero
Date: 2013-08-22 13:12 +0100
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/25aaff78d754
8023112: javac should not use lazy constant evaluation approach for method references
Reviewed-by: jjg, mcimadamore
! src/share/classes/com/sun/tools/javac/comp/Attr.java
! src/share/classes/com/sun/tools/javac/comp/MemberEnter.java
+ test/tools/javac/T8023112/SkipLazyConstantCreationForMethodRefTest.java
From xuelei.fan at oracle.com Thu Aug 22 12:59:50 2013
From: xuelei.fan at oracle.com (Xuelei Fan)
Date: Thu, 22 Aug 2013 20:59:50 +0800
Subject: [JDK 8]Code review request 8023557, Manually measure the performance
of SSL/TLS implementation
Message-ID: <52160B46.1000801@oracle.com>
Hi,
This is a new test case used to manually measure performance of SSL/TLS
connections. It is useful to evaluate performance impact of JSSE update.
webrev: http://cr.openjdk.java.net/~xuelei/8023557/webrev.00/
Thanks,
Xuelei
From joe.darcy at oracle.com Thu Aug 22 16:41:33 2013
From: joe.darcy at oracle.com (joe.darcy at oracle.com)
Date: Thu, 22 Aug 2013 16:41:33 +0000
Subject: hg: jdk8/tl/jdk: 8023587: Fix lone remaining doclint issue in
java.util.regex
Message-ID: <20130822164212.2D00B48AA0@hg.openjdk.java.net>
Changeset: b7c4094be729
Author: darcy
Date: 2013-08-22 09:40 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/b7c4094be729
8023587: Fix lone remaining doclint issue in java.util.regex
Reviewed-by: jjg
! src/share/classes/java/util/regex/Pattern.java
From eric.mccorkle at oracle.com Thu Aug 22 16:49:15 2013
From: eric.mccorkle at oracle.com (eric.mccorkle at oracle.com)
Date: Thu, 22 Aug 2013 16:49:15 +0000
Subject: hg: jdk8/tl/langtools: 8020745: Suspicious MethodParameters attribute
generated for local classes capturing local variables
Message-ID: <20130822164921.71E4548AA1@hg.openjdk.java.net>
Changeset: 1ab22e60a738
Author: emc
Date: 2013-08-22 12:47 -0400
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/1ab22e60a738
8020745: Suspicious MethodParameters attribute generated for local classes capturing local variables
Summary: Corrected an error in a previous patch that caused captured locals to be added to the beginning, not the end of a parameter list.
Reviewed-by: jjg, mcimadamore, ksrini, abuckley
! src/share/classes/com/sun/tools/javac/code/Symbol.java
! src/share/classes/com/sun/tools/javac/comp/Lower.java
! src/share/classes/com/sun/tools/javac/jvm/ClassWriter.java
- test/tools/javac/8015701/AnonymousParameters.java
+ test/tools/javac/MethodParameters/CaptureTest.java
From dan.xu at oracle.com Thu Aug 22 18:43:40 2013
From: dan.xu at oracle.com (dan.xu at oracle.com)
Date: Thu, 22 Aug 2013 18:43:40 +0000
Subject: hg: jdk8/tl/jdk: 8023430: Replace File.mkdirs with
Files.createDirectories to get MaxPathLength.java failure details
Message-ID: <20130822184414.54EE348ACC@hg.openjdk.java.net>
Changeset: 8a7d9cc2f41c
Author: dxu
Date: 2013-08-22 11:43 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/8a7d9cc2f41c
8023430: Replace File.mkdirs with Files.createDirectories to get MaxPathLength.java failure details
Reviewed-by: alanb
! test/ProblemList.txt
! test/java/io/File/MaxPathLength.java
From jonathan.gibbons at oracle.com Thu Aug 22 19:53:39 2013
From: jonathan.gibbons at oracle.com (jonathan.gibbons at oracle.com)
Date: Thu, 22 Aug 2013 19:53:39 +0000
Subject: hg: jdk8/tl/langtools: 8022173: Relax some warnings in doclint
Message-ID: <20130822195344.ABB5648AD2@hg.openjdk.java.net>
Changeset: b77381d99056
Author: jjg
Date: 2013-08-22 12:41 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/b77381d99056
8022173: Relax some warnings in doclint
Reviewed-by: darcy
! src/share/classes/com/sun/tools/doclint/HtmlTag.java
! test/tools/doclint/html/ListTagsTest.java
! test/tools/doclint/html/OtherTagsTest.java
! test/tools/doclint/html/OtherTagsTest.out
! test/tools/doclint/html/TableTagsTest.java
From stuart.marks at oracle.com Thu Aug 22 22:53:20 2013
From: stuart.marks at oracle.com (stuart.marks at oracle.com)
Date: Thu, 22 Aug 2013 22:53:20 +0000
Subject: hg: jdk8/tl/jdk: 8022445: fix RMISocketFactory example to avoid using
localhost
Message-ID: <20130822225333.EBC9548ADD@hg.openjdk.java.net>
Changeset: 7496ec8bab76
Author: smarks
Date: 2013-08-22 15:54 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/7496ec8bab76
8022445: fix RMISocketFactory example to avoid using localhost
Reviewed-by: chegar, alanb
! src/share/classes/java/rmi/server/RMISocketFactory.java
From nit.dgp673 at gmail.com Thu Aug 22 03:37:45 2013
From: nit.dgp673 at gmail.com (Laxmi Narayan NIT DGP)
Date: Thu, 22 Aug 2013 09:07:45 +0530
Subject: hg: jdk8/tl/jdk: 8022228: Intermittent test failures in
sun/security/ssl/javax/net/ssl/NewAPIs
In-Reply-To: <20130822024717.B922548A76@hg.openjdk.java.net>
References: <20130822024717.B922548A76@hg.openjdk.java.net>
Message-ID:
is there are any chances of contribution for outsider of oracle and even
student developers ??
*
Laxmi Narayan Patel
*
*
MCA NIT Durgapur (Pre final year)
*
*
mob:- 8345847473
*
On Thu, Aug 22, 2013 at 8:16 AM, wrote:
> Changeset: ec827a62070a
> Author: xuelei
> Date: 2013-08-21 19:44 -0700
> URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/ec827a62070a
>
> 8022228: Intermittent test failures in
> sun/security/ssl/javax/net/ssl/NewAPIs
> Reviewed-by: weijun
>
> ! test/sun/security/ssl/javax/net/ssl/NewAPIs/SessionCacheSizeTests.java
> ! test/sun/security/ssl/javax/net/ssl/NewAPIs/SessionTimeOutTests.java
> ! test/sun/security/ssl/templates/SSLSocketTemplate.java
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
From peter.levart at gmail.com Thu Aug 22 22:10:50 2013
From: peter.levart at gmail.com (peter.levart at gmail.com)
Date: Thu, 22 Aug 2013 22:10:50 +0000
Subject: hg: jdk8/tl/jdk: 8022721: AnnotationTypeDeadlockTest.java throws
java.lang.IllegalStateException: unexpected condition
Message-ID: <20130822221116.9EE9548ADC@hg.openjdk.java.net>
Changeset: 2281a7f79738
Author: plevart
Date: 2013-08-20 14:13 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/2281a7f79738
8022721: AnnotationTypeDeadlockTest.java throws java.lang.IllegalStateException: unexpected condition
Reviewed-by: alanb, jfranck
! test/java/lang/annotation/AnnotationType/AnnotationTypeDeadlockTest.java
From valerie.peng at oracle.com Fri Aug 23 02:39:14 2013
From: valerie.peng at oracle.com (Valerie (Yu-Ching) Peng)
Date: Thu, 22 Aug 2013 19:39:14 -0700
Subject: Code review request: 8012615: Realm.getRealmsList returns realms
list in wrong
In-Reply-To: <51F631CE.7080502@oracle.com>
References: <51F631CE.7080502@oracle.com>
Message-ID: <5216CB52.3010304@oracle.com>
1. Line 255, "returns if keys exists" should be "returns true if key
exists".
2. Line 257, "@see get" should be "@see get0"?
3. You may want to add the following to the public getAll(String...
keys) method.
@throws IllegalArgumentException ...
looks fine
Before I looked at Realm.java, I looked at the test first to understand
the expected realm list result.
Well, judging from the test, I feel the parsing of these CA path
settings are too relaxed.
You are allowing all sorts of short cuts and user errors. When has
capaths been implemented?
I wonder what happens when MIT implementation run into these invalid
capath settings.
Is their implementation also interpret them like what you have here?
I think your new comment on line 71 is more confusing.
Can you just say "D2=D1 is the same as D2=."?
What happens for the infinite loop case, i.e. G?
What should (G1, G2) returns? G1 G3?
Thanks,
Valerie
On 07/29/13 02:11, Weijun Wang wrote:
> Hi Valerie
>
> Please review the capaths code change at
>
> http://cr.openjdk.java.net/~weijun/8012615/webrev.01/
>
> It includes:
>
> Config.java
> ===========
>
> Add method to check if a sub-stanza exists.
>
> Realm.java
> ==========
>
> Rewrite reading cross-realm path for both [capaths] and hierarchy. The
> [capaths] part implements the chaining process.
>
> CredentialsUtils.java
> =====================
>
> When reading cross-realm TGT for a path A->B->C->D->SERVERREALM, the
> current impl first gets krbtgt/SERVERREALM at A, and then fallback to
> krbtgt/D at A, krbtgt/C at A and krbtgt/B at A. In fact, since the capath is
> already there, krbtgt/B at A should be the first to check. I don't know
> about the history of this code and dare not change much. But I at
> least reverse the order of the fallback (what the code calls inner
> loop) to try krbtgt/B at A first.
>
> Tried on a local setup of 5 MIT KDC realms configured with a
> one-direction cross-auth from K1 to K5. The MIT kvno command starts
> with kinit in K1 and goes thru krbtgt/K2 at K1, krbtgt/K3 at K2,
> krbtgt/K4 at K3, krbtgt/K5 at K4 and finally get service ticket to
> host/host.k5 at K5. Now Java can do the same with the same krb5.conf.
>
> Thanks
> Max
From weijun.wang at oracle.com Fri Aug 23 04:55:26 2013
From: weijun.wang at oracle.com (Weijun Wang)
Date: Fri, 23 Aug 2013 12:55:26 +0800
Subject: Code review request: 8012615: Realm.getRealmsList returns realms
list in wrong
In-Reply-To: <5216CB52.3010304@oracle.com>
References: <51F631CE.7080502@oracle.com> <5216CB52.3010304@oracle.com>
Message-ID: <5216EB3E.2020608@oracle.com>
On 8/23/13 10:39 AM, Valerie (Yu-Ching) Peng wrote:
>
>
> 1. Line 255, "returns if keys exists" should be "returns true if key
> exists".
> 2. Line 257, "@see get" should be "@see get0"?
I meant looking at the how IAE is thrown in get. Updated to
* @throws IllegalArgumentException if any of the keys is illegal
* (See {@link #get})
> 3. You may want to add the following to the public getAll(String...
> keys) method.
>
> @throws IllegalArgumentException ...
Yes.
>
> looks fine
>
> Before I looked at Realm.java, I looked at the test first to understand
> the expected realm list result.
>
> Well, judging from the test, I feel the parsing of these CA path
> settings are too relaxed.
> You are allowing all sorts of short cuts and user errors. When has
> capaths been implemented?
>
> I wonder what happens when MIT implementation run into these invalid
> capath settings.
> Is their implementation also interpret them like what you have here?
Below are all differences using the krb5.conf in test
--------- 1 ----------
TIVOLI.COM = {
IBM.COM = IBM_LDAPCENTRAL.COM MOONLITE.ORG
IBM_LDAPCENTRAL.COM = LDAPCENTRAL.NET
LDAPCENTRAL.NET = .
}
TIVOLI.COM -> IBM.COM
MIT: [TIVOLI.COM, IBM_LDAPCENTRAL.COM]
java: [TIVOLI.COM, LDAPCENTRAL.NET, IBM_LDAPCENTRAL.COM, MOONLITE.ORG]
Here, the value for IBM.COM is two values on the same line, this is no
legal in MIT. It simply read the first one. Java reads both and combines
it with another value
---------- 2 -----------
B1.COM = {
B2.COM = .
B3.COM = B2.COM
B4.COM = B3.COM
}
B1.COM -> B4.COM
MIT : [B1.COM, B3.COM]
java: [B1.COM, B2.COM, B3.COM]
Java combines 2 values
----------- 3 -----------
C1.COM = {
C3.COM = C2.COM
}
C1.COM -> C2.COM
MIT : [C1.COM, COM]
java: [C1.COM]
When MIT cannot find the sRealm as key, it goes hierarchy. Java only
does this when there is no cRealm sub-section
------------ 4 -----------
D1.COM = {
D2.COM=D1.COM
}
D1.COM -> D2.COM
MIT : [D1.COM, D1.COM]
java: [D1.COM]
MIT returns dup realms
----------- 5 -------------
E1.COM = {
E2.COM = E2.COM
E3.COM = E4.COM
E3.COM = .
}
E1.COM -> E2.COM
MIT : [E1.COM, E2.COM]
java: [E1.COM]
MIT returns dup realms (please remember path does not include last realm)
E1.COM -> E3.COM
MIT : [E1.COM, E4.COM, .]
java: [E1.COM, E4.COM]
"." should only appear as single value for one key. MIT does not notice
it and blindly returns
----------- 6 ----------------
A9.PRAGUE.XXX.CZ = {
PRAGUE.XXX.CZ = .
ROOT.XXX.CZ = PRAGUE.XXX.CZ
SERVIS.XXX.CZ = ROOT.XXX.CZ
}
A9.PRAGUE.XXX.CZ -> SERVIS.XXX.CZ
MIT : [A9.PRAGUE.XXX.CZ, ROOT.XXX.CZ]
java: [A9.PRAGUE.XXX.CZ, PRAGUE.XXX.CZ, ROOT.XXX.CZ]
Java combines 2 values
----------------------------
For 1, 2, 6, Java combines and MIT reads single key. Since we decided to
do this, it's OK.
4, 5, wrong config, Java manages to return a path as leasts look normal,
MIT returns ugly path.
3, This is probably something we can learn from MIT. If you agree, I'll
update webrev.
>
> I think your new comment on line 71 is more confusing.
> Can you just say "D2=D1 is the same as D2=."?
Yes. D1 should not appear as a target when it is the client realm. So
"D2=D1" is just ignored, which is the same as "D2=.".
As said above, if we decide to choose MIT's way to require a sRealm key
to use capaths, "D2=D1" will still be regarded the same as "D2=.", but
it will be different from no D2 line at all.
>
> What happens for the infinite loop case, i.e. G?
> What should (G1, G2) returns? G1 G3?
Yes. I first find G3, and look at G3=G2. Any realm that is either
client, or target, or has appeared in the path is ignored.
In this case, the config itself has a problem so there is no correct
answer. Just want to make sure the search does not leads to a real
infinite loop and then OOME.
Thanks
Max
> Thanks,
> Valerie
>
> On 07/29/13 02:11, Weijun Wang wrote:
>> Hi Valerie
>>
>> Please review the capaths code change at
>>
>> http://cr.openjdk.java.net/~weijun/8012615/webrev.01/
>>
>> It includes:
>>
>> Config.java
>> ===========
>>
>> Add method to check if a sub-stanza exists.
>>
>> Realm.java
>> ==========
>>
>> Rewrite reading cross-realm path for both [capaths] and hierarchy. The
>> [capaths] part implements the chaining process.
>>
>> CredentialsUtils.java
>> =====================
>>
>> When reading cross-realm TGT for a path A->B->C->D->SERVERREALM, the
>> current impl first gets krbtgt/SERVERREALM at A, and then fallback to
>> krbtgt/D at A, krbtgt/C at A and krbtgt/B at A. In fact, since the capath is
>> already there, krbtgt/B at A should be the first to check. I don't know
>> about the history of this code and dare not change much. But I at
>> least reverse the order of the fallback (what the code calls inner
>> loop) to try krbtgt/B at A first.
>>
>> Tried on a local setup of 5 MIT KDC realms configured with a
>> one-direction cross-auth from K1 to K5. The MIT kvno command starts
>> with kinit in K1 and goes thru krbtgt/K2 at K1, krbtgt/K3 at K2,
>> krbtgt/K4 at K3, krbtgt/K5 at K4 and finally get service ticket to
>> host/host.k5 at K5. Now Java can do the same with the same krb5.conf.
>>
>> Thanks
>> Max
>
From staffan.larsen at oracle.com Fri Aug 23 05:55:36 2013
From: staffan.larsen at oracle.com (staffan.larsen at oracle.com)
Date: Fri, 23 Aug 2013 05:55:36 +0000
Subject: hg: jdk8/tl/jdk: 2 new changesets
Message-ID: <20130823055615.9B27648AE6@hg.openjdk.java.net>
Changeset: 7b6211cd8d76
Author: egahlin
Date: 2013-08-21 17:15 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/7b6211cd8d76
6417649: -interval=0 is accepted and jconsole doesn't update window content at all
Reviewed-by: alanb, jbachorik
! src/share/classes/sun/tools/jconsole/JConsole.java
Changeset: 77a32e5df365
Author: egahlin
Date: 2013-08-21 17:17 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/77a32e5df365
6359971: Threads tab: Simple text to explain that one can click on a thread to get stack trace
Reviewed-by: alanb, jbachorik
! src/share/classes/sun/tools/jconsole/Messages.java
! src/share/classes/sun/tools/jconsole/ThreadTab.java
! src/share/classes/sun/tools/jconsole/resources/messages.properties
From chris.hegarty at oracle.com Fri Aug 23 09:03:01 2013
From: chris.hegarty at oracle.com (chris.hegarty at oracle.com)
Date: Fri, 23 Aug 2013 09:03:01 +0000
Subject: hg: jdk8/tl/jdk: 6470700: Math.random() / Math.initRNG() uses "double
checked locking"
Message-ID: <20130823090333.C8F7F48AF2@hg.openjdk.java.net>
Changeset: 223be1d3494f
Author: bpb
Date: 2013-08-22 13:32 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/223be1d3494f
6470700: Math.random() / Math.initRNG() uses "double checked locking"
Summary: Replace class Random variable with a static final holder class
Reviewed-by: alanb, mduigou, chegar
Contributed-by: Brian Burkhalter
! src/share/classes/java/lang/Math.java
! src/share/classes/java/lang/StrictMath.java
From chris.hegarty at oracle.com Fri Aug 23 08:58:15 2013
From: chris.hegarty at oracle.com (chris.hegarty at oracle.com)
Date: Fri, 23 Aug 2013 08:58:15 +0000
Subject: hg: jdk8/tl/jaxws: 8022885: Update JAX-WS RI integration to
2.2.9-b14140; ...
Message-ID: <20130823085819.860EF48AF0@hg.openjdk.java.net>
Changeset: b99d7e355d4b
Author: mkos
Date: 2013-08-23 09:57 +0100
URL: http://hg.openjdk.java.net/jdk8/tl/jaxws/rev/b99d7e355d4b
8022885: Update JAX-WS RI integration to 2.2.9-b14140
8013016: Rebase 8009009 against the latest jdk8/jaxws
Reviewed-by: alanb, chegar
! src/share/jaxws_classes/com/sun/istack/internal/tools/ParallelWorldClassLoader.java
! src/share/jaxws_classes/com/sun/org/glassfish/external/probe/provider/annotations/Probe.java
! src/share/jaxws_classes/com/sun/org/glassfish/external/statistics/impl/AverageRangeStatisticImpl.java
! src/share/jaxws_classes/com/sun/org/glassfish/external/statistics/impl/BoundaryStatisticImpl.java
! src/share/jaxws_classes/com/sun/org/glassfish/external/statistics/impl/BoundedRangeStatisticImpl.java
! src/share/jaxws_classes/com/sun/org/glassfish/external/statistics/impl/CountStatisticImpl.java
! src/share/jaxws_classes/com/sun/org/glassfish/external/statistics/impl/RangeStatisticImpl.java
! src/share/jaxws_classes/com/sun/org/glassfish/external/statistics/impl/StatisticImpl.java
! src/share/jaxws_classes/com/sun/org/glassfish/external/statistics/impl/StringStatisticImpl.java
! src/share/jaxws_classes/com/sun/org/glassfish/external/statistics/impl/TimeStatisticImpl.java
! src/share/jaxws_classes/com/sun/tools/internal/jxc/MessageBundle.properties
! src/share/jaxws_classes/com/sun/tools/internal/jxc/MessageBundle_de.properties
! src/share/jaxws_classes/com/sun/tools/internal/jxc/MessageBundle_es.properties
! src/share/jaxws_classes/com/sun/tools/internal/jxc/MessageBundle_fr.properties
! src/share/jaxws_classes/com/sun/tools/internal/jxc/MessageBundle_it.properties
! src/share/jaxws_classes/com/sun/tools/internal/jxc/MessageBundle_ja.properties
! src/share/jaxws_classes/com/sun/tools/internal/jxc/MessageBundle_ko.properties
! src/share/jaxws_classes/com/sun/tools/internal/jxc/MessageBundle_pt_BR.properties
! src/share/jaxws_classes/com/sun/tools/internal/jxc/MessageBundle_zh_CN.properties
! src/share/jaxws_classes/com/sun/tools/internal/jxc/MessageBundle_zh_TW.properties
! src/share/jaxws_classes/com/sun/tools/internal/jxc/gen/config/AttributesImpl.java
! src/share/jaxws_classes/com/sun/tools/internal/jxc/gen/config/Classes.java
! src/share/jaxws_classes/com/sun/tools/internal/jxc/gen/config/Config.java
! src/share/jaxws_classes/com/sun/tools/internal/jxc/gen/config/NGCCEventReceiver.java
! src/share/jaxws_classes/com/sun/tools/internal/jxc/gen/config/NGCCEventSource.java
! src/share/jaxws_classes/com/sun/tools/internal/jxc/gen/config/NGCCHandler.java
! src/share/jaxws_classes/com/sun/tools/internal/jxc/gen/config/NGCCInterleaveFilter.java
! src/share/jaxws_classes/com/sun/tools/internal/jxc/gen/config/NGCCRuntime.java
! src/share/jaxws_classes/com/sun/tools/internal/jxc/gen/config/Schema.java
! src/share/jaxws_classes/com/sun/tools/internal/ws/version.properties
! src/share/jaxws_classes/com/sun/tools/internal/xjc/MessageBundle.properties
! src/share/jaxws_classes/com/sun/tools/internal/xjc/MessageBundle_de.properties
! src/share/jaxws_classes/com/sun/tools/internal/xjc/MessageBundle_es.properties
! src/share/jaxws_classes/com/sun/tools/internal/xjc/MessageBundle_fr.properties
! src/share/jaxws_classes/com/sun/tools/internal/xjc/MessageBundle_it.properties
! src/share/jaxws_classes/com/sun/tools/internal/xjc/MessageBundle_ja.properties
! src/share/jaxws_classes/com/sun/tools/internal/xjc/MessageBundle_ko.properties
! src/share/jaxws_classes/com/sun/tools/internal/xjc/MessageBundle_pt_BR.properties
! src/share/jaxws_classes/com/sun/tools/internal/xjc/MessageBundle_zh_CN.properties
! src/share/jaxws_classes/com/sun/tools/internal/xjc/MessageBundle_zh_TW.properties
! src/share/jaxws_classes/com/sun/tools/internal/xjc/SchemaCache.java
! src/share/jaxws_classes/com/sun/tools/internal/xjc/generator/annotation/spec/XmlAccessorOrderWriter.java
! src/share/jaxws_classes/com/sun/tools/internal/xjc/generator/annotation/spec/XmlAccessorTypeWriter.java
! src/share/jaxws_classes/com/sun/tools/internal/xjc/generator/annotation/spec/XmlAnyAttributeWriter.java
! src/share/jaxws_classes/com/sun/tools/internal/xjc/generator/annotation/spec/XmlAnyElementWriter.java
! src/share/jaxws_classes/com/sun/tools/internal/xjc/generator/annotation/spec/XmlAttachmentRefWriter.java
! src/share/jaxws_classes/com/sun/tools/internal/xjc/generator/annotation/spec/XmlAttributeWriter.java
! src/share/jaxws_classes/com/sun/tools/internal/xjc/generator/annotation/spec/XmlElementDeclWriter.java
! src/share/jaxws_classes/com/sun/tools/internal/xjc/generator/annotation/spec/XmlElementRefWriter.java
! src/share/jaxws_classes/com/sun/tools/internal/xjc/generator/annotation/spec/XmlElementRefsWriter.java
! src/share/jaxws_classes/com/sun/tools/internal/xjc/generator/annotation/spec/XmlElementWrapperWriter.java
! src/share/jaxws_classes/com/sun/tools/internal/xjc/generator/annotation/spec/XmlElementWriter.java
! src/share/jaxws_classes/com/sun/tools/internal/xjc/generator/annotation/spec/XmlElementsWriter.java
! src/share/jaxws_classes/com/sun/tools/internal/xjc/generator/annotation/spec/XmlEnumValueWriter.java
! src/share/jaxws_classes/com/sun/tools/internal/xjc/generator/annotation/spec/XmlEnumWriter.java
! src/share/jaxws_classes/com/sun/tools/internal/xjc/generator/annotation/spec/XmlIDREFWriter.java
! src/share/jaxws_classes/com/sun/tools/internal/xjc/generator/annotation/spec/XmlIDWriter.java
! src/share/jaxws_classes/com/sun/tools/internal/xjc/generator/annotation/spec/XmlInlineBinaryDataWriter.java
! src/share/jaxws_classes/com/sun/tools/internal/xjc/generator/annotation/spec/XmlJavaTypeAdapterWriter.java
! src/share/jaxws_classes/com/sun/tools/internal/xjc/generator/annotation/spec/XmlListWriter.java
! src/share/jaxws_classes/com/sun/tools/internal/xjc/generator/annotation/spec/XmlMimeTypeWriter.java
! src/share/jaxws_classes/com/sun/tools/internal/xjc/generator/annotation/spec/XmlMixedWriter.java
! src/share/jaxws_classes/com/sun/tools/internal/xjc/generator/annotation/spec/XmlNsWriter.java
! src/share/jaxws_classes/com/sun/tools/internal/xjc/generator/annotation/spec/XmlRegistryWriter.java
! src/share/jaxws_classes/com/sun/tools/internal/xjc/generator/annotation/spec/XmlRootElementWriter.java
! src/share/jaxws_classes/com/sun/tools/internal/xjc/generator/annotation/spec/XmlSchemaTypeWriter.java
! src/share/jaxws_classes/com/sun/tools/internal/xjc/generator/annotation/spec/XmlSchemaTypesWriter.java
! src/share/jaxws_classes/com/sun/tools/internal/xjc/generator/annotation/spec/XmlSchemaWriter.java
! src/share/jaxws_classes/com/sun/tools/internal/xjc/generator/annotation/spec/XmlSeeAlsoWriter.java
! src/share/jaxws_classes/com/sun/tools/internal/xjc/generator/annotation/spec/XmlTransientWriter.java
! src/share/jaxws_classes/com/sun/tools/internal/xjc/generator/annotation/spec/XmlTypeWriter.java
! src/share/jaxws_classes/com/sun/tools/internal/xjc/generator/annotation/spec/XmlValueWriter.java
! src/share/jaxws_classes/com/sun/tools/internal/xjc/generator/bean/MessageBundle.properties
! src/share/jaxws_classes/com/sun/tools/internal/xjc/model/CPropertyInfo.java
! src/share/jaxws_classes/com/sun/tools/internal/xjc/model/CTypeRef.java
! src/share/jaxws_classes/com/sun/tools/internal/xjc/model/package-info.java
! src/share/jaxws_classes/com/sun/tools/internal/xjc/reader/internalizer/AbstractReferenceFinderImpl.java
! src/share/jaxws_classes/com/sun/tools/internal/xjc/reader/internalizer/DOMForest.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/Util.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/Messages.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/Messages.properties
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/model/annotation/Init.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/model/annotation/XmlAttributeQuick.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/model/annotation/XmlElementDeclQuick.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/model/annotation/XmlElementQuick.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/model/annotation/XmlElementRefQuick.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/model/annotation/XmlElementRefsQuick.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/model/annotation/XmlEnumQuick.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/model/annotation/XmlRootElementQuick.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/model/annotation/XmlSchemaQuick.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/model/annotation/XmlSchemaTypeQuick.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/model/annotation/XmlTransientQuick.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/model/annotation/XmlTypeQuick.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/model/annotation/XmlValueQuick.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/model/core/package-info.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/model/impl/RuntimeBuiltinLeafInfoImpl.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/package-info.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/runtime/BridgeAdapter.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/runtime/Coordinator.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/runtime/XMLSerializer.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/runtime/reflect/PrimitiveArrayListerBoolean.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/runtime/reflect/PrimitiveArrayListerCharacter.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/runtime/reflect/PrimitiveArrayListerDouble.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/runtime/reflect/PrimitiveArrayListerFloat.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/runtime/reflect/PrimitiveArrayListerInteger.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/runtime/reflect/PrimitiveArrayListerLong.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/runtime/reflect/PrimitiveArrayListerShort.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/runtime/reflect/opt/FieldAccessor_Boolean.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/runtime/reflect/opt/FieldAccessor_Character.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/runtime/reflect/opt/FieldAccessor_Double.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/runtime/reflect/opt/FieldAccessor_Float.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/runtime/reflect/opt/FieldAccessor_Integer.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/runtime/reflect/opt/FieldAccessor_Long.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/runtime/reflect/opt/FieldAccessor_Short.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/runtime/reflect/opt/MethodAccessor_Boolean.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/runtime/reflect/opt/MethodAccessor_Character.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/runtime/reflect/opt/MethodAccessor_Double.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/runtime/reflect/opt/MethodAccessor_Float.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/runtime/reflect/opt/MethodAccessor_Integer.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/runtime/reflect/opt/MethodAccessor_Long.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/runtime/reflect/opt/MethodAccessor_Short.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/runtime/reflect/opt/TransducedAccessor_field_Double.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/runtime/reflect/opt/TransducedAccessor_field_Float.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/runtime/reflect/opt/TransducedAccessor_field_Long.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/runtime/reflect/opt/TransducedAccessor_field_Short.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/runtime/reflect/opt/TransducedAccessor_method_Boolean.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/runtime/reflect/opt/TransducedAccessor_method_Double.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/runtime/reflect/opt/TransducedAccessor_method_Float.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/runtime/reflect/opt/TransducedAccessor_method_Long.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/runtime/reflect/opt/TransducedAccessor_method_Short.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/runtime/unmarshaller/Loader.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/runtime/unmarshaller/Messages.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/runtime/unmarshaller/Messages.properties
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/runtime/unmarshaller/SAXConnector.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/runtime/unmarshaller/UnmarshallingContext.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/runtime/unmarshaller/XsiTypeLoader.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/schemagen/xmlschema/Annotated.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/schemagen/xmlschema/Annotation.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/schemagen/xmlschema/Any.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/schemagen/xmlschema/Appinfo.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/schemagen/xmlschema/AttrDecls.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/schemagen/xmlschema/AttributeType.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/schemagen/xmlschema/ComplexContent.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/schemagen/xmlschema/ComplexExtension.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/schemagen/xmlschema/ComplexRestriction.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/schemagen/xmlschema/ComplexType.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/schemagen/xmlschema/ComplexTypeHost.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/schemagen/xmlschema/ComplexTypeModel.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/schemagen/xmlschema/Documentation.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/schemagen/xmlschema/Element.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/schemagen/xmlschema/ExplicitGroup.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/schemagen/xmlschema/ExtensionType.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/schemagen/xmlschema/FixedOrDefault.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/schemagen/xmlschema/Import.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/schemagen/xmlschema/List.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/schemagen/xmlschema/LocalAttribute.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/schemagen/xmlschema/LocalElement.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/schemagen/xmlschema/NestedParticle.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/schemagen/xmlschema/NoFixedFacet.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/schemagen/xmlschema/Occurs.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/schemagen/xmlschema/Redefinable.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/schemagen/xmlschema/Schema.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/schemagen/xmlschema/SchemaTop.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/schemagen/xmlschema/SimpleContent.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/schemagen/xmlschema/SimpleDerivation.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/schemagen/xmlschema/SimpleExtension.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/schemagen/xmlschema/SimpleRestriction.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/schemagen/xmlschema/SimpleRestrictionModel.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/schemagen/xmlschema/SimpleType.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/schemagen/xmlschema/SimpleTypeHost.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/schemagen/xmlschema/TopLevelAttribute.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/schemagen/xmlschema/TopLevelElement.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/schemagen/xmlschema/TypeDefParticle.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/schemagen/xmlschema/TypeHost.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/schemagen/xmlschema/Union.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/schemagen/xmlschema/Wildcard.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/util/EditDistance.java
! src/share/jaxws_classes/com/sun/xml/internal/bind/v2/util/XmlFactory.java
! src/share/jaxws_classes/com/sun/xml/internal/dtdparser/DTDEventListener.java
! src/share/jaxws_classes/com/sun/xml/internal/dtdparser/DTDHandlerBase.java
! src/share/jaxws_classes/com/sun/xml/internal/dtdparser/DTDParser.java
! src/share/jaxws_classes/com/sun/xml/internal/dtdparser/EndOfInputException.java
! src/share/jaxws_classes/com/sun/xml/internal/dtdparser/EntityDecl.java
! src/share/jaxws_classes/com/sun/xml/internal/dtdparser/ExternalEntity.java
! src/share/jaxws_classes/com/sun/xml/internal/dtdparser/InputEntity.java
! src/share/jaxws_classes/com/sun/xml/internal/dtdparser/InternalEntity.java
! src/share/jaxws_classes/com/sun/xml/internal/dtdparser/MessageCatalog.java
! src/share/jaxws_classes/com/sun/xml/internal/dtdparser/Resolver.java
! src/share/jaxws_classes/com/sun/xml/internal/dtdparser/SimpleHashtable.java
! src/share/jaxws_classes/com/sun/xml/internal/dtdparser/XmlChars.java
! src/share/jaxws_classes/com/sun/xml/internal/dtdparser/XmlNames.java
! src/share/jaxws_classes/com/sun/xml/internal/dtdparser/XmlReader.java
! src/share/jaxws_classes/com/sun/xml/internal/dtdparser/package.html
! src/share/jaxws_classes/com/sun/xml/internal/dtdparser/resources/Messages.properties
! src/share/jaxws_classes/com/sun/xml/internal/stream/buffer/AbstractCreatorProcessor.java
! src/share/jaxws_classes/com/sun/xml/internal/stream/buffer/AbstractProcessor.java
! src/share/jaxws_classes/com/sun/xml/internal/stream/buffer/AttributesHolder.java
! src/share/jaxws_classes/com/sun/xml/internal/stream/buffer/FragmentedArray.java
! src/share/jaxws_classes/com/sun/xml/internal/stream/buffer/MutableXMLStreamBuffer.java
! src/share/jaxws_classes/com/sun/xml/internal/stream/buffer/XMLStreamBuffer.java
! src/share/jaxws_classes/com/sun/xml/internal/stream/buffer/XMLStreamBufferException.java
! src/share/jaxws_classes/com/sun/xml/internal/stream/buffer/XMLStreamBufferMark.java
! src/share/jaxws_classes/com/sun/xml/internal/stream/buffer/XMLStreamBufferResult.java
! src/share/jaxws_classes/com/sun/xml/internal/stream/buffer/XMLStreamBufferSource.java
! src/share/jaxws_classes/com/sun/xml/internal/stream/buffer/sax/DefaultWithLexicalHandler.java
! src/share/jaxws_classes/com/sun/xml/internal/stream/buffer/sax/Features.java
! src/share/jaxws_classes/com/sun/xml/internal/stream/buffer/sax/Properties.java
! src/share/jaxws_classes/com/sun/xml/internal/stream/buffer/sax/SAXBufferCreator.java
! src/share/jaxws_classes/com/sun/xml/internal/stream/buffer/stax/StreamBufferCreator.java
! src/share/jaxws_classes/com/sun/xml/internal/stream/buffer/stax/StreamReaderBufferCreator.java
! src/share/jaxws_classes/com/sun/xml/internal/stream/buffer/stax/StreamReaderBufferProcessor.java
! src/share/jaxws_classes/com/sun/xml/internal/stream/buffer/stax/StreamWriterBufferCreator.java
! src/share/jaxws_classes/com/sun/xml/internal/txw2/output/XMLWriter.java
! src/share/jaxws_classes/com/sun/xml/internal/ws/api/message/Packet.java
! src/share/jaxws_classes/com/sun/xml/internal/ws/api/server/Container.java
! src/share/jaxws_classes/com/sun/xml/internal/ws/api/server/ThreadLocalContainerResolver.java
! src/share/jaxws_classes/com/sun/xml/internal/ws/api/streaming/XMLStreamReaderFactory.java
! src/share/jaxws_classes/com/sun/xml/internal/ws/api/wsdl/writer/WSDLGeneratorExtension.java
! src/share/jaxws_classes/com/sun/xml/internal/ws/commons/xmlutil/Converter.java
! src/share/jaxws_classes/com/sun/xml/internal/ws/encoding/MtomCodec.java
! src/share/jaxws_classes/com/sun/xml/internal/ws/encoding/StreamSOAP11Codec.java
! src/share/jaxws_classes/com/sun/xml/internal/ws/encoding/StreamSOAP12Codec.java
! src/share/jaxws_classes/com/sun/xml/internal/ws/encoding/StreamSOAPCodec.java
! src/share/jaxws_classes/com/sun/xml/internal/ws/encoding/TagInfoset.java
! src/share/jaxws_classes/com/sun/xml/internal/ws/message/AbstractMessageImpl.java
! src/share/jaxws_classes/com/sun/xml/internal/ws/message/jaxb/JAXBHeader.java
! src/share/jaxws_classes/com/sun/xml/internal/ws/message/jaxb/JAXBMessage.java
! src/share/jaxws_classes/com/sun/xml/internal/ws/message/saaj/SAAJMessage.java
! src/share/jaxws_classes/com/sun/xml/internal/ws/message/stream/StreamMessage.java
! src/share/jaxws_classes/com/sun/xml/internal/ws/resources/StreamingMessages.java
! src/share/jaxws_classes/com/sun/xml/internal/ws/resources/streaming.properties
! src/share/jaxws_classes/com/sun/xml/internal/ws/server/SDDocumentImpl.java
! src/share/jaxws_classes/com/sun/xml/internal/ws/spi/db/BindingContext.java
! src/share/jaxws_classes/com/sun/xml/internal/ws/util/pipe/AbstractSchemaValidationTube.java
! src/share/jaxws_classes/com/sun/xml/internal/ws/util/resources/Messages_en.properties
! src/share/jaxws_classes/com/sun/xml/internal/ws/util/version.properties
! src/share/jaxws_classes/com/sun/xml/internal/ws/util/xml/XmlUtil.java
! src/share/jaxws_classes/com/sun/xml/internal/ws/wsdl/writer/WSDLGenerator.java
! src/share/jaxws_classes/com/sun/xml/internal/xsom/impl/parser/Messages.java
! src/share/jaxws_classes/com/sun/xml/internal/xsom/impl/parser/Messages.properties
! src/share/jaxws_classes/com/sun/xml/internal/xsom/impl/parser/SAXParserFactoryAdaptor.java
! src/share/jaxws_classes/com/sun/xml/internal/xsom/impl/parser/state/Schema.java
! src/share/jaxws_classes/com/sun/xml/internal/xsom/impl/parser/state/SimpleType_List.java
! src/share/jaxws_classes/com/sun/xml/internal/xsom/impl/parser/state/SimpleType_Restriction.java
! src/share/jaxws_classes/com/sun/xml/internal/xsom/impl/parser/state/SimpleType_Union.java
! src/share/jaxws_classes/com/sun/xml/internal/xsom/impl/parser/state/annotation.java
! src/share/jaxws_classes/com/sun/xml/internal/xsom/impl/parser/state/attributeDeclBody.java
! src/share/jaxws_classes/com/sun/xml/internal/xsom/impl/parser/state/attributeGroupDecl.java
! src/share/jaxws_classes/com/sun/xml/internal/xsom/impl/parser/state/attributeUses.java
! src/share/jaxws_classes/com/sun/xml/internal/xsom/impl/parser/state/complexType.java
! src/share/jaxws_classes/com/sun/xml/internal/xsom/impl/parser/state/complexType_complexContent_body.java
! src/share/jaxws_classes/com/sun/xml/internal/xsom/impl/parser/state/elementDeclBody.java
! src/share/jaxws_classes/com/sun/xml/internal/xsom/impl/parser/state/erSet.java
! src/share/jaxws_classes/com/sun/xml/internal/xsom/impl/parser/state/ersSet.java
! src/share/jaxws_classes/com/sun/xml/internal/xsom/impl/parser/state/facet.java
! src/share/jaxws_classes/com/sun/xml/internal/xsom/impl/parser/state/group.java
! src/share/jaxws_classes/com/sun/xml/internal/xsom/impl/parser/state/identityConstraint.java
! src/share/jaxws_classes/com/sun/xml/internal/xsom/impl/parser/state/importDecl.java
! src/share/jaxws_classes/com/sun/xml/internal/xsom/impl/parser/state/includeDecl.java
! src/share/jaxws_classes/com/sun/xml/internal/xsom/impl/parser/state/modelGroupBody.java
! src/share/jaxws_classes/com/sun/xml/internal/xsom/impl/parser/state/notation.java
! src/share/jaxws_classes/com/sun/xml/internal/xsom/impl/parser/state/occurs.java
! src/share/jaxws_classes/com/sun/xml/internal/xsom/impl/parser/state/particle.java
! src/share/jaxws_classes/com/sun/xml/internal/xsom/impl/parser/state/qname.java
! src/share/jaxws_classes/com/sun/xml/internal/xsom/impl/parser/state/redefine.java
! src/share/jaxws_classes/com/sun/xml/internal/xsom/impl/parser/state/simpleType.java
! src/share/jaxws_classes/com/sun/xml/internal/xsom/impl/parser/state/wildcardBody.java
! src/share/jaxws_classes/com/sun/xml/internal/xsom/impl/parser/state/xpath.java
! src/share/jaxws_classes/com/sun/xml/internal/xsom/parser/JAXPParser.java
! src/share/jaxws_classes/com/sun/xml/internal/xsom/parser/XSOMParser.java
! src/share/jaxws_classes/com/sun/xml/internal/xsom/util/DomAnnotationParserFactory.java
! src/share/jaxws_classes/javax/xml/bind/Binder.java
! src/share/jaxws_classes/javax/xml/bind/ContextFinder.java
! src/share/jaxws_classes/javax/xml/bind/DataBindingException.java
! src/share/jaxws_classes/javax/xml/bind/DatatypeConverter.java
! src/share/jaxws_classes/javax/xml/bind/DatatypeConverterImpl.java
! src/share/jaxws_classes/javax/xml/bind/DatatypeConverterInterface.java
! src/share/jaxws_classes/javax/xml/bind/Element.java
! src/share/jaxws_classes/javax/xml/bind/GetPropertyAction.java
! src/share/jaxws_classes/javax/xml/bind/JAXB.java
! src/share/jaxws_classes/javax/xml/bind/JAXBContext.java
! src/share/jaxws_classes/javax/xml/bind/JAXBElement.java
! src/share/jaxws_classes/javax/xml/bind/JAXBException.java
! src/share/jaxws_classes/javax/xml/bind/JAXBIntrospector.java
! src/share/jaxws_classes/javax/xml/bind/JAXBPermission.java
! src/share/jaxws_classes/javax/xml/bind/MarshalException.java
! src/share/jaxws_classes/javax/xml/bind/Messages.java
! src/share/jaxws_classes/javax/xml/bind/Messages.properties
! src/share/jaxws_classes/javax/xml/bind/NotIdentifiableEvent.java
! src/share/jaxws_classes/javax/xml/bind/ParseConversionEvent.java
! src/share/jaxws_classes/javax/xml/bind/PrintConversionEvent.java
! src/share/jaxws_classes/javax/xml/bind/PropertyException.java
! src/share/jaxws_classes/javax/xml/bind/SchemaOutputResolver.java
! src/share/jaxws_classes/javax/xml/bind/TypeConstraintException.java
! src/share/jaxws_classes/javax/xml/bind/UnmarshalException.java
! src/share/jaxws_classes/javax/xml/bind/Unmarshaller.java
! src/share/jaxws_classes/javax/xml/bind/UnmarshallerHandler.java
! src/share/jaxws_classes/javax/xml/bind/ValidationEvent.java
! src/share/jaxws_classes/javax/xml/bind/ValidationEventHandler.java
! src/share/jaxws_classes/javax/xml/bind/ValidationEventLocator.java
! src/share/jaxws_classes/javax/xml/bind/ValidationException.java
! src/share/jaxws_classes/javax/xml/bind/Validator.java
! src/share/jaxws_classes/javax/xml/bind/WhiteSpaceProcessor.java
! src/share/jaxws_classes/javax/xml/bind/annotation/DomHandler.java
! src/share/jaxws_classes/javax/xml/bind/annotation/W3CDomHandler.java
! src/share/jaxws_classes/javax/xml/bind/annotation/XmlAccessOrder.java
! src/share/jaxws_classes/javax/xml/bind/annotation/XmlAccessType.java
! src/share/jaxws_classes/javax/xml/bind/annotation/XmlAccessorOrder.java
! src/share/jaxws_classes/javax/xml/bind/annotation/XmlAccessorType.java
! src/share/jaxws_classes/javax/xml/bind/annotation/XmlAnyAttribute.java
! src/share/jaxws_classes/javax/xml/bind/annotation/XmlAnyElement.java
! src/share/jaxws_classes/javax/xml/bind/annotation/XmlAttachmentRef.java
! src/share/jaxws_classes/javax/xml/bind/annotation/XmlAttribute.java
! src/share/jaxws_classes/javax/xml/bind/annotation/XmlElement.java
! src/share/jaxws_classes/javax/xml/bind/annotation/XmlElementDecl.java
! src/share/jaxws_classes/javax/xml/bind/annotation/XmlElementRef.java
! src/share/jaxws_classes/javax/xml/bind/annotation/XmlElementRefs.java
! src/share/jaxws_classes/javax/xml/bind/annotation/XmlElementWrapper.java
! src/share/jaxws_classes/javax/xml/bind/annotation/XmlElements.java
! src/share/jaxws_classes/javax/xml/bind/annotation/XmlEnum.java
! src/share/jaxws_classes/javax/xml/bind/annotation/XmlEnumValue.java
! src/share/jaxws_classes/javax/xml/bind/annotation/XmlID.java
! src/share/jaxws_classes/javax/xml/bind/annotation/XmlIDREF.java
! src/share/jaxws_classes/javax/xml/bind/annotation/XmlList.java
! src/share/jaxws_classes/javax/xml/bind/annotation/XmlMixed.java
! src/share/jaxws_classes/javax/xml/bind/annotation/XmlNs.java
! src/share/jaxws_classes/javax/xml/bind/annotation/XmlNsForm.java
! src/share/jaxws_classes/javax/xml/bind/annotation/XmlRegistry.java
! src/share/jaxws_classes/javax/xml/bind/annotation/XmlRootElement.java
! src/share/jaxws_classes/javax/xml/bind/annotation/XmlSchema.java
! src/share/jaxws_classes/javax/xml/bind/annotation/XmlSchemaType.java
! src/share/jaxws_classes/javax/xml/bind/annotation/XmlSchemaTypes.java
! src/share/jaxws_classes/javax/xml/bind/annotation/XmlSeeAlso.java
! src/share/jaxws_classes/javax/xml/bind/annotation/XmlTransient.java
! src/share/jaxws_classes/javax/xml/bind/annotation/XmlType.java
! src/share/jaxws_classes/javax/xml/bind/annotation/XmlValue.java
! src/share/jaxws_classes/javax/xml/bind/annotation/adapters/CollapsedStringAdapter.java
! src/share/jaxws_classes/javax/xml/bind/annotation/adapters/HexBinaryAdapter.java
! src/share/jaxws_classes/javax/xml/bind/annotation/adapters/NormalizedStringAdapter.java
! src/share/jaxws_classes/javax/xml/bind/annotation/adapters/XmlJavaTypeAdapter.java
! src/share/jaxws_classes/javax/xml/bind/annotation/adapters/XmlJavaTypeAdapters.java
! src/share/jaxws_classes/javax/xml/bind/annotation/adapters/package.html
! src/share/jaxws_classes/javax/xml/bind/annotation/package.html
! src/share/jaxws_classes/javax/xml/bind/attachment/AttachmentMarshaller.java
! src/share/jaxws_classes/javax/xml/bind/attachment/AttachmentUnmarshaller.java
! src/share/jaxws_classes/javax/xml/bind/attachment/package.html
! src/share/jaxws_classes/javax/xml/bind/helpers/AbstractMarshallerImpl.java
! src/share/jaxws_classes/javax/xml/bind/helpers/AbstractUnmarshallerImpl.java
! src/share/jaxws_classes/javax/xml/bind/helpers/DefaultValidationEventHandler.java
! src/share/jaxws_classes/javax/xml/bind/helpers/Messages.java
! src/share/jaxws_classes/javax/xml/bind/helpers/Messages.properties
! src/share/jaxws_classes/javax/xml/bind/helpers/NotIdentifiableEventImpl.java
! src/share/jaxws_classes/javax/xml/bind/helpers/ParseConversionEventImpl.java
! src/share/jaxws_classes/javax/xml/bind/helpers/PrintConversionEventImpl.java
! src/share/jaxws_classes/javax/xml/bind/helpers/ValidationEventImpl.java
! src/share/jaxws_classes/javax/xml/bind/helpers/ValidationEventLocatorImpl.java
! src/share/jaxws_classes/javax/xml/bind/helpers/package.html
! src/share/jaxws_classes/javax/xml/bind/package.html
! src/share/jaxws_classes/javax/xml/bind/util/JAXBResult.java
! src/share/jaxws_classes/javax/xml/bind/util/JAXBSource.java
! src/share/jaxws_classes/javax/xml/bind/util/Messages.java
! src/share/jaxws_classes/javax/xml/bind/util/Messages.properties
! src/share/jaxws_classes/javax/xml/bind/util/ValidationEventCollector.java
! src/share/jaxws_classes/javax/xml/bind/util/package.html
From chris.hegarty at oracle.com Fri Aug 23 10:11:40 2013
From: chris.hegarty at oracle.com (chris.hegarty at oracle.com)
Date: Fri, 23 Aug 2013 10:11:40 +0000
Subject: hg: jdk8/tl/jaxws: 8023636: Missing files from 8022885
Message-ID: <20130823101142.65C0348AF4@hg.openjdk.java.net>
Changeset: d8593d8581df
Author: mkos
Date: 2013-08-23 11:10 +0100
URL: http://hg.openjdk.java.net/jdk8/tl/jaxws/rev/d8593d8581df
8023636: Missing files from 8022885
Reviewed-by: alanb, chegar
+ src/share/jaxws_classes/com/sun/xml/internal/ws/api/message/StreamingSOAP.java
+ src/share/jaxws_classes/com/sun/xml/internal/ws/util/xml/NamespaceContextExAdaper.java
+ src/share/jaxws_classes/com/sun/xml/internal/ws/util/xml/XMLReaderComposite.java
From sundararajan.athijegannathan at oracle.com Fri Aug 23 12:39:40 2013
From: sundararajan.athijegannathan at oracle.com (sundararajan.athijegannathan at oracle.com)
Date: Fri, 23 Aug 2013 12:39:40 +0000
Subject: hg: jdk8/tl/nashorn: 12 new changesets
Message-ID: <20130823123951.C054048AFE@hg.openjdk.java.net>
Changeset: dbb0a20a6f27
Author: attila
Date: 2013-08-21 13:39 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/dbb0a20a6f27
8023373: allow super invocation for adapters
Reviewed-by: lagergren, sundar
! src/jdk/nashorn/internal/runtime/linker/JavaAdapterBytecodeGenerator.java
+ test/script/basic/JDK-8023373.js
+ test/script/basic/JDK-8023373.js.EXPECTED
Changeset: dc322503ce36
Author: attila
Date: 2013-08-21 13:39 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/dc322503ce36
8022903: Enhance for-in and for-each for Lists and Maps
Reviewed-by: lagergren, sundar
! src/jdk/nashorn/internal/runtime/ScriptRuntime.java
+ test/script/basic/JDK-8022903.js
+ test/script/basic/JDK-8022903.js.EXPECTED
Changeset: b7c04b3b01a7
Author: sundar
Date: 2013-08-21 17:28 +0530
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/b7c04b3b01a7
8023368: Instance __proto__ property should exist and be writable.
Reviewed-by: attila, hannesw
! src/jdk/nashorn/api/scripting/ScriptObjectMirror.java
! src/jdk/nashorn/internal/objects/NativeObject.java
! src/jdk/nashorn/internal/runtime/PropertyListener.java
! src/jdk/nashorn/internal/runtime/PropertyListenerManager.java
! src/jdk/nashorn/internal/runtime/PropertyMap.java
! src/jdk/nashorn/internal/runtime/ScriptEnvironment.java
! src/jdk/nashorn/internal/runtime/ScriptObject.java
! src/jdk/nashorn/internal/runtime/resources/Messages.properties
! src/jdk/nashorn/internal/runtime/resources/Options.properties
! src/jdk/nashorn/internal/runtime/resources/mozilla_compat.js
+ test/script/basic/JDK-8023368.js
+ test/script/basic/JDK-8023368.js.EXPECTED
+ test/script/basic/JDK-8023368_2.js
+ test/script/basic/JDK-8023368_2.js.EXPECTED
+ test/script/basic/circular_proto.js
+ test/script/basic/circular_proto.js.EXPECTED
+ test/script/basic/mirror_proto_assign.js
+ test/script/basic/mirror_proto_assign.js.EXPECTED
+ test/script/basic/nonextensible_proto_assign.js
+ test/script/basic/nonextensible_proto_assign.js.EXPECTED
Changeset: 54f60d91024c
Author: sundar
Date: 2013-08-22 18:46 +0530
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/54f60d91024c
8023551: Mirror functions can not be invoked using invokeMethod, invokeFunction
Reviewed-by: attila, jlaskey, lagergren
! src/jdk/nashorn/api/scripting/NashornScriptEngine.java
! src/jdk/nashorn/api/scripting/ScriptObjectMirror.java
+ test/script/basic/JDK-8023551.js
+ test/script/basic/JDK-8023551.js.EXPECTED
! test/src/jdk/nashorn/api/scripting/ScriptEngineTest.java
Changeset: 8ad9bcb04e6d
Author: hannesw
Date: 2013-08-22 17:23 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/8ad9bcb04e6d
8023531: new RegExp('').toString() should return '/(?:)/'
Reviewed-by: sundar, jlaskey
! src/jdk/nashorn/internal/runtime/ScriptObject.java
! src/jdk/nashorn/internal/runtime/WithObject.java
! src/jdk/nashorn/internal/runtime/regexp/RegExp.java
+ test/script/basic/JDK-8023531.js
Changeset: c5c5ab3f420a
Author: jlaskey
Date: 2013-08-22 13:51 -0300
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/c5c5ab3f420a
8023228: Debugger information gather is too slow.
Reviewed-by: sundar, lagergren
Contributed-by: james.laskey at oracle.com
! src/jdk/nashorn/internal/runtime/Context.java
+ src/jdk/nashorn/internal/runtime/DebuggerSupport.java
Changeset: 5a1e07b9a3cd
Author: sundar
Date: 2013-08-22 22:32 +0530
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/5a1e07b9a3cd
8023560: Arbitrary javax.script.Bindings objects as ENGINE_SCOPE objects are not handled as expected.
Reviewed-by: jlaskey, lagergren, hannesw
! src/jdk/nashorn/api/scripting/NashornScriptEngine.java
! src/jdk/nashorn/internal/runtime/ScriptEnvironment.java
! src/jdk/nashorn/internal/runtime/resources/Options.properties
! test/src/jdk/nashorn/api/scripting/ScriptEngineTest.java
! test/src/jdk/nashorn/internal/runtime/TrustedScriptEngineTest.java
Changeset: d82ac93aa55c
Author: sundar
Date: 2013-08-23 16:10 +0530
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/d82ac93aa55c
8023631: engine.js init script should be loaded into every global instance created by engines
Reviewed-by: attila, hannesw
! src/jdk/nashorn/api/scripting/NashornScriptEngine.java
! src/jdk/nashorn/api/scripting/resources/engine.js
+ test/src/jdk/nashorn/api/scripting/InvocableTest.java
+ test/src/jdk/nashorn/api/scripting/ScopeTest.java
! test/src/jdk/nashorn/api/scripting/ScriptEngineTest.java
+ test/src/jdk/nashorn/api/scripting/ScriptObjectMirrorTest.java
Changeset: 6b6a8fc714a9
Author: lagergren
Date: 2013-08-23 12:43 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/6b6a8fc714a9
8023453: --log=attr did not unindent identNodes
Reviewed-by: attila, jlaskey
! src/jdk/nashorn/internal/codegen/Attr.java
Changeset: 4dcd5a22fdd3
Author: lagergren
Date: 2013-08-23 12:44 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/4dcd5a22fdd3
Merge
Changeset: f18f2ce1b2dc
Author: attila
Date: 2013-08-23 13:10 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/f18f2ce1b2dc
8023630: Implement Java.super() as the preferred way to call super methods
Reviewed-by: jlaskey, lagergren, sundar
! src/jdk/nashorn/internal/objects/NativeJava.java
! src/jdk/nashorn/internal/runtime/JSType.java
! src/jdk/nashorn/internal/runtime/linker/Bootstrap.java
! src/jdk/nashorn/internal/runtime/linker/BoundDynamicMethodLinker.java
! src/jdk/nashorn/internal/runtime/linker/JavaAdapterBytecodeGenerator.java
! src/jdk/nashorn/internal/runtime/linker/JavaAdapterClassLoader.java
+ src/jdk/nashorn/internal/runtime/linker/JavaSuperAdapter.java
+ src/jdk/nashorn/internal/runtime/linker/JavaSuperAdapterLinker.java
+ test/script/basic/JDK-8023630.js
+ test/script/basic/JDK-8023630.js.EXPECTED
! test/script/basic/NASHORN-397.js
Changeset: 2ce55025a37d
Author: sundar
Date: 2013-08-23 16:44 +0530
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/2ce55025a37d
Merge
From daniel.fuchs at oracle.com Fri Aug 23 19:02:10 2013
From: daniel.fuchs at oracle.com (daniel.fuchs at oracle.com)
Date: Fri, 23 Aug 2013 19:02:10 +0000
Subject: hg: jdk8/tl/jdk: 8005899: Logger.getLogger(name,
null) should not allow to reset a non-null resource bundle
Message-ID: <20130823190232.AE95C48B16@hg.openjdk.java.net>
Changeset: 4ef82445ea20
Author: dfuchs
Date: 2013-08-23 20:59 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/4ef82445ea20
8005899: Logger.getLogger(name, null) should not allow to reset a non-null resource bundle
Reviewed-by: mchung, lancea
! src/share/classes/java/util/logging/Logger.java
+ test/java/util/logging/Logger/getLogger/TestLogger.java
+ test/java/util/logging/Logger/getLogger/testlogger/MyResource.java
From joe.darcy at oracle.com Fri Aug 23 21:34:18 2013
From: joe.darcy at oracle.com (Joe Darcy)
Date: Fri, 23 Aug 2013 14:34:18 -0700
Subject: RFR JDK 8 doclint fixes in javax.net.ssl
Message-ID: <5217D55A.4090308@oracle.com>
Hello,
Please review the patch below which resolves several doclint issues in
javax.net.ssl.
Thanks,
-Joe
diff -r 4ef82445ea20 src/share/classes/javax/net/ssl/SNIHostName.java
--- a/src/share/classes/javax/net/ssl/SNIHostName.java Fri Aug 23
20:59:34 2013 +0200
+++ b/src/share/classes/javax/net/ssl/SNIHostName.java Fri Aug 23
14:33:44 2013 -0700
@@ -1,5 +1,5 @@
/*
- * Copyright (c) 2012, Oracle and/or its affiliates. All rights reserved.
+ * Copyright (c) 2012, 2013, Oracle and/or its affiliates. All rights
reserved.
* DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
*
* This code is free software; you can redistribute it and/or modify it
@@ -293,6 +293,7 @@
* the
* regular expression pattern
* representing the hostname(s) to match
+ * @return a {@code SNIMatcher} object for {@code SNIHostName}s
* @throws NullPointerException if {@code regex} is
* {@code null}
* @throws java.util.regex.PatternSyntaxException if the regular
expression's
diff -r 4ef82445ea20 src/share/classes/javax/net/ssl/X509KeyManager.java
--- a/src/share/classes/javax/net/ssl/X509KeyManager.java Fri Aug 23
20:59:34 2013 +0200
+++ b/src/share/classes/javax/net/ssl/X509KeyManager.java Fri Aug 23
14:33:44 2013 -0700
@@ -1,5 +1,5 @@
/*
- * Copyright (c) 1999, 2004, Oracle and/or its affiliates. All rights
reserved.
+ * Copyright (c) 1999, 2013, Oracle and/or its affiliates. All rights
reserved.
* DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
*
* This code is free software; you can redistribute it and/or modify it
@@ -40,7 +40,7 @@
*
* determine the set of aliases that are available for negotiations
* based on the criteria presented,
- * select the best alias based on
+ * select the best alias based on
* the criteria presented, and
* obtain the corresponding key material for given aliases.
*
From bradford.wetmore at oracle.com Fri Aug 23 22:09:48 2013
From: bradford.wetmore at oracle.com (Bradford Wetmore)
Date: Fri, 23 Aug 2013 15:09:48 -0700
Subject: RFR JDK 8 doclint fixes in javax.net.ssl
In-Reply-To: <5217D55A.4090308@oracle.com>
References: <5217D55A.4090308@oracle.com>
Message-ID: <5217DDAC.60300@oracle.com>
Looks good to me, but Xuelei (owner) might want to have a quick look.
Brad
On 8/23/2013 2:34 PM, Joe Darcy wrote:
> Hello,
>
> Please review the patch below which resolves several doclint issues in
> javax.net.ssl.
>
> Thanks,
>
> -Joe
>
> diff -r 4ef82445ea20 src/share/classes/javax/net/ssl/SNIHostName.java
> --- a/src/share/classes/javax/net/ssl/SNIHostName.java Fri Aug 23
> 20:59:34 2013 +0200
> +++ b/src/share/classes/javax/net/ssl/SNIHostName.java Fri Aug 23
> 14:33:44 2013 -0700
> @@ -1,5 +1,5 @@
> /*
> - * Copyright (c) 2012, Oracle and/or its affiliates. All rights reserved.
> + * Copyright (c) 2012, 2013, Oracle and/or its affiliates. All rights
> reserved.
> * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
> *
> * This code is free software; you can redistribute it and/or modify it
> @@ -293,6 +293,7 @@
> * the
> * regular expression pattern
> * representing the hostname(s) to match
> + * @return a {@code SNIMatcher} object for {@code SNIHostName}s
> * @throws NullPointerException if {@code regex} is
> * {@code null}
> * @throws java.util.regex.PatternSyntaxException if the regular
> expression's
> diff -r 4ef82445ea20 src/share/classes/javax/net/ssl/X509KeyManager.java
> --- a/src/share/classes/javax/net/ssl/X509KeyManager.java Fri Aug 23
> 20:59:34 2013 +0200
> +++ b/src/share/classes/javax/net/ssl/X509KeyManager.java Fri Aug 23
> 14:33:44 2013 -0700
> @@ -1,5 +1,5 @@
> /*
> - * Copyright (c) 1999, 2004, Oracle and/or its affiliates. All rights
> reserved.
> + * Copyright (c) 1999, 2013, Oracle and/or its affiliates. All rights
> reserved.
> * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
> *
> * This code is free software; you can redistribute it and/or modify it
> @@ -40,7 +40,7 @@
> *
> * determine the set of aliases that are available for negotiations
> * based on the criteria presented,
> - * select the best alias based on
> + * select the best alias based on
> * the criteria presented, and
> * obtain the corresponding key material for given aliases.
> *
>
From Xuelei.Fan at Oracle.Com Fri Aug 23 23:54:00 2013
From: Xuelei.Fan at Oracle.Com (Xuelei Fan)
Date: Sat, 24 Aug 2013 07:54:00 +0800
Subject: RFR JDK 8 doclint fixes in javax.net.ssl
In-Reply-To: <5217DDAC.60300@oracle.com>
References: <5217D55A.4090308@oracle.com> <5217DDAC.60300@oracle.com>
Message-ID:
Looks fine to me, too. Thanks for the update.
xuelei
On Aug 24, 2013, at 6:09, Bradford Wetmore wrote:
> Looks good to me, but Xuelei (owner) might want to have a quick look.
>
> Brad
>
>
>
> On 8/23/2013 2:34 PM, Joe Darcy wrote:
>> Hello,
>>
>> Please review the patch below which resolves several doclint issues in
>> javax.net.ssl.
>>
>> Thanks,
>>
>> -Joe
>>
>> diff -r 4ef82445ea20 src/share/classes/javax/net/ssl/SNIHostName.java
>> --- a/src/share/classes/javax/net/ssl/SNIHostName.java Fri Aug 23
>> 20:59:34 2013 +0200
>> +++ b/src/share/classes/javax/net/ssl/SNIHostName.java Fri Aug 23
>> 14:33:44 2013 -0700
>> @@ -1,5 +1,5 @@
>> /*
>> - * Copyright (c) 2012, Oracle and/or its affiliates. All rights reserved.
>> + * Copyright (c) 2012, 2013, Oracle and/or its affiliates. All rights
>> reserved.
>> * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
>> *
>> * This code is free software; you can redistribute it and/or modify it
>> @@ -293,6 +293,7 @@
>> * the
>> * regular expression pattern
>> * representing the hostname(s) to match
>> + * @return a {@code SNIMatcher} object for {@code SNIHostName}s
>> * @throws NullPointerException if {@code regex} is
>> * {@code null}
>> * @throws java.util.regex.PatternSyntaxException if the regular
>> expression's
>> diff -r 4ef82445ea20 src/share/classes/javax/net/ssl/X509KeyManager.java
>> --- a/src/share/classes/javax/net/ssl/X509KeyManager.java Fri Aug 23
>> 20:59:34 2013 +0200
>> +++ b/src/share/classes/javax/net/ssl/X509KeyManager.java Fri Aug 23
>> 14:33:44 2013 -0700
>> @@ -1,5 +1,5 @@
>> /*
>> - * Copyright (c) 1999, 2004, Oracle and/or its affiliates. All rights
>> reserved.
>> + * Copyright (c) 1999, 2013, Oracle and/or its affiliates. All rights
>> reserved.
>> * DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS FILE HEADER.
>> *
>> * This code is free software; you can redistribute it and/or modify it
>> @@ -40,7 +40,7 @@
>> *
>> * determine the set of aliases that are available for negotiations
>> * based on the criteria presented,
>> - * select the best alias based on
>> + * select the best alias based on
>> * the criteria presented, and
>> * obtain the corresponding key material for given aliases.
>> *
>>
From bradford.wetmore at oracle.com Sat Aug 24 04:48:10 2013
From: bradford.wetmore at oracle.com (Bradford Wetmore)
Date: Fri, 23 Aug 2013 21:48:10 -0700
Subject: Bug in ProcessBuilder.
In-Reply-To:
References:
Message-ID: <52183B0A.3000101@oracle.com>
Martin,
Your fix looks good to me, just need a test case to putback. Should be
pretty straightforward to create a custom SecurityManager that throws a
ACE instead of a SE during a checkRead(), and then link together.
Brad
On 8/21/2013 3:51 PM, Martin Buchholz wrote:
> Adding Alexey Utkin, who appears to be the author of the lines I am
> proposing to modify. Alexey, you are invited to take ownership of this fix.
>
>
> On Wed, Aug 21, 2013 at 3:43 PM, Martin Buchholz > wrote:
>
> Hi security team,
>
> There's some code in ProcessBuilder.java to avoid leaking data in
> case ProcessBuilder.start fails.
> It appears to have an obvious bug, with an obvious fix.
>
> http://cr.openjdk.java.net/~martin/webrevs/openjdk8/ProcessBuilder-checkRead/
>
> checkRead is spec'ed to throw SecurityException, not
> AccessControlException. If checkRead does throw SecurityException,
> then start will throw the wrong exception.
>
> Untested.
>
> @@ -1033,9 +1033,9 @@
> // Can not disclose the fail reason for read-protected files.
> try {
> security.checkRead(prog);
> - } catch (AccessControlException ace) {
> + } catch (SecurityException e) {
> exceptionInfo = "";
> - cause = ace;
> + cause = e;
> }
> }
> // It's much easier for us to create a high-quality error
>
>
From alan.bateman at oracle.com Sat Aug 24 20:11:53 2013
From: alan.bateman at oracle.com (alan.bateman at oracle.com)
Date: Sat, 24 Aug 2013 20:11:53 +0000
Subject: hg: jdk8/tl/jdk: 6378503: In java.math.BigDecimal, division by one
returns zero; ...
Message-ID: <20130824201246.F01CE48B32@hg.openjdk.java.net>
Changeset: 216a4b93cee8
Author: bpb
Date: 2013-08-23 14:15 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/216a4b93cee8
6378503: In java.math.BigDecimal, division by one returns zero
6446965: Using BigDecimal.divideToIntegralValue with extreme scales can lead to an incorrect result
Summary: Fix overflow of ints and ensure appropriate values passed to checkScaleNonZero()
Reviewed-by: darcy, martin
Contributed-by: Brian Burkhalter
! src/share/classes/java/math/BigDecimal.java
! src/share/classes/java/math/BigInteger.java
! test/java/math/BigDecimal/IntegralDivisionTests.java
From weijun.wang at oracle.com Mon Aug 26 03:42:05 2013
From: weijun.wang at oracle.com (Weijun Wang)
Date: Mon, 26 Aug 2013 11:42:05 +0800
Subject: RFR: 8015669: KerberosPrincipal::equals should ignore name-type
Message-ID: <521ACE8D.30400@oracle.com>
Hi Sean
Please look at the webrev at
http://cr.openjdk.java.net/~weijun/8015669/webrev.00/
A new regression test is added.
Thanks
Max
From weijun.wang at oracle.com Mon Aug 26 08:08:43 2013
From: weijun.wang at oracle.com (Weijun Wang)
Date: Mon, 26 Aug 2013 16:08:43 +0800
Subject: RFR 8022761: SQE test regression on wrongly signed indexed jar
file
In-Reply-To: <52121976.60708@oracle.com>
References: <520861FA.4090605@oracle.com> <52121976.60708@oracle.com>
Message-ID: <521B0D0B.2010000@oracle.com>
Ping again.
On 8/19/13 9:11 PM, Weijun Wang wrote:
> Hi Sherman
>
> I try out "jar i" after signing and it puts INDEX.LIST at the very
> beginning of the file. Does this mean INDEX.LIST was actually an
> exception? Or it just "jari" bug?
>
> Anyway, I think I should update the fix for 8021788 and here is the webrev:
>
> http://cr.openjdk.java.net/~weijun/8022761/webrev.00/
>
> Now it also skips INDEX.LIST, i.e. update line 142 to
>
> if (uname.equals(JarFile.MANIFEST_NAME) ||
> uname.equals(JarIndex.INDEX_NAME) ) {
>
> After this change, if INDEX.LIST appears before the MANIFEST and
> signature-related files, it will not be treated as signed. This should
> usually be true because it only happens when you call "jar i" after
> signing a jar which means INDEX.LIST *is* unsigned.
>
> Thanks
> Max
>
> On 8/12/13 12:18 PM, Weijun Wang wrote:
>> Hi Sherman
>>
>> SQE observes a regression in their test suite and
>> the reason is my recent fix for 8021788 at
>>
>> http://hg.openjdk.java.net/jdk8/tl/jdk/rev/758e3117899c
>>
>> The jar file mentioned contains
>>
>> 66 Mon Jun 04 15:42:18 CST 2007 META-INF/INDEX.LIST
>> 323 Sat Apr 01 15:47:28 CST 2000 META-INF/MANIFEST.MF
>> 376 Mon Jun 04 15:41:00 CST 2007 META-INF/MYKEY.SF
>> 972 Sat Apr 01 15:47:38 CST 2000 META-INF/MYKEY.DSA
>> 0 Sat Apr 01 15:46:58 CST 2000 META-INF/
>> 0 Sat Apr 01 15:45:16 CST 2000 test/
>> 21 Sat Apr 01 15:46:24 CST 2000 test/test0
>> 21 Sat Apr 01 15:46:18 CST 2000 test/test1
>> 21 Sat Apr 01 15:46:04 CST 2000 test/test2
>> 21 Sat Apr 01 15:46:10 CST 2000 test/test3
>>
>> After JDK-8021788, the file is regarded as an unsigned jar because the
>> updated JarVerifier goes thru all signature-related files and treats all
>> others not. Here the first one is not signature-related so none is.
>>
>> Is fix for JDK-8021788 wrong? Inside JarVerifier.java, we have
>>
>> * Assumptions:
>> * 1. The manifest should be the first entry in the META-INF directory.
>> * 2. The .SF/.DSA/.EC files follow the manifest, before any normal
>> entries
>>
>> Is this INDEX.LIST an exception?
>>
>> Thanks
>> Max
From alan.bateman at oracle.com Mon Aug 26 09:04:09 2013
From: alan.bateman at oracle.com (alan.bateman at oracle.com)
Date: Mon, 26 Aug 2013 09:04:09 +0000
Subject: hg: jdk8/tl/jdk: 8023139:
java/nio/file/WatchService/SensitivityModifier.java failing
intermittently (win8)
Message-ID: <20130826090449.47C6448B54@hg.openjdk.java.net>
Changeset: 0ee3b995d63b
Author: alanb
Date: 2013-08-26 10:01 +0100
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/0ee3b995d63b
8023139: java/nio/file/WatchService/SensitivityModifier.java failing intermittently (win8)
Reviewed-by: alanb
Contributed-by: yiming.wang at oracle.com
! test/java/nio/file/WatchService/SensitivityModifier.java
From alan.bateman at oracle.com Mon Aug 26 10:35:06 2013
From: alan.bateman at oracle.com (alan.bateman at oracle.com)
Date: Mon, 26 Aug 2013 10:35:06 +0000
Subject: hg: jdk8/tl/jdk: 7129312: BufferedInputStream calculates negative
array size with large streams and mark
Message-ID: <20130826103531.1189748B56@hg.openjdk.java.net>
Changeset: 67a1a031876a
Author: igerasim
Date: 2013-08-25 23:20 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/67a1a031876a
7129312: BufferedInputStream calculates negative array size with large streams and mark
Reviewed-by: alanb
! src/share/classes/java/io/BufferedInputStream.java
+ test/java/io/BufferedInputStream/LargeCopyWithMark.java
From joel.franck at oracle.com Mon Aug 26 11:47:46 2013
From: joel.franck at oracle.com (joel.franck at oracle.com)
Date: Mon, 26 Aug 2013 11:47:46 +0000
Subject: hg: jdk8/tl/jdk: 8022343: j.l.Class.getAnnotatedSuperclass() doesn't
return null in some cases
Message-ID: <20130826114801.4A35F48B59@hg.openjdk.java.net>
Changeset: 6917c114b197
Author: jfranck
Date: 2013-08-26 13:38 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/6917c114b197
8022343: j.l.Class.getAnnotatedSuperclass() doesn't return null in some cases
Reviewed-by: darcy, vromero, psandoz
! src/share/classes/java/lang/Class.java
! test/java/lang/annotation/TypeAnnotationReflection.java
+ test/java/lang/annotation/typeAnnotations/GetAnnotatedSuperclass.java
From paul.sandoz at oracle.com Mon Aug 26 14:20:29 2013
From: paul.sandoz at oracle.com (paul.sandoz at oracle.com)
Date: Mon, 26 Aug 2013 14:20:29 +0000
Subject: hg: jdk8/tl/jdk: 8023234: StampedLock serializes readers on writer
unlock
Message-ID: <20130826142104.159D148B60@hg.openjdk.java.net>
Changeset: 8a36fc7f494c
Author: shade
Date: 2013-08-26 17:50 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/8a36fc7f494c
8023234: StampedLock serializes readers on writer unlock
Summary: Sync-up the fix from jsr166 CVS, signal more readers on writer unlock
Reviewed-by: martin, shade
Contributed-by: Doug Lea
! src/share/classes/java/util/concurrent/locks/StampedLock.java
+ test/java/util/concurrent/locks/StampedLock/ReadersUnlockAfterWriteUnlock.java
From roger.riggs at oracle.com Mon Aug 26 16:00:48 2013
From: roger.riggs at oracle.com (roger.riggs at oracle.com)
Date: Mon, 26 Aug 2013 16:00:48 +0000
Subject: hg: jdk8/tl/jdk: 8011944: Sort fails with
ArrayIndexOutOfBoundsException
Message-ID: <20130826160109.BC73D48B69@hg.openjdk.java.net>
Changeset: 07585a2483fa
Author: rriggs
Date: 2013-08-26 11:46 -0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/07585a2483fa
8011944: Sort fails with ArrayIndexOutOfBoundsException
Summary: Increase the size of pending stack and add test cases
Reviewed-by: alanb
! src/share/classes/java/util/ComparableTimSort.java
! src/share/classes/java/util/TimSort.java
+ test/java/util/Arrays/TimSortStackSize.java
From xueming.shen at oracle.com Mon Aug 26 16:40:10 2013
From: xueming.shen at oracle.com (Xueming Shen)
Date: Mon, 26 Aug 2013 09:40:10 -0700
Subject: RFR 8022761: SQE test regression on wrongly signed indexed jar
file
In-Reply-To: <52121976.60708@oracle.com>
References: <520861FA.4090605@oracle.com> <52121976.60708@oracle.com>
Message-ID: <521B84EA.6050302@oracle.com>
On 08/19/2013 06:11 AM, Weijun Wang wrote:
> Hi Sherman
>
> I try out "jar i" after signing and it puts INDEX.LIST at the very beginning of the file. Does this mean INDEX.LIST was actually an exception? Or it's just a bug?
>
> Anyway, I think I should update the fix for 8021788 and here is the webrev:
>
> http://cr.openjdk.java.net/~weijun/8022761/webrev.00/
>
> Now it also skips INDEX.LIST, i.e. update line 142 to
>
> if (uname.equals(JarFile.MANIFEST_NAME) ||
> uname.equals(JarIndex.INDEX_NAME) ) {
>
> After this change, if INDEX.LIST appears before the MANIFEST and signature-related files, it will not be treated as signed. This should usually be true because it only happens when you call "jar i" after signing a jar which means INDEX.LIST *is* unsigned.
>
> Thanks
> Max
>
> On 8/12/13 12:18 PM, Weijun Wang wrote:
>> Hi Sherman
>>
>> SQE observes a regression in their test suite and
>> the reason is my recent fix for 8021788 at
>>
>> http://hg.openjdk.java.net/jdk8/tl/jdk/rev/758e3117899c
>>
>> The jar file mentioned contains
>>
>> 66 Mon Jun 04 15:42:18 CST 2007 META-INF/INDEX.LIST
>> 323 Sat Apr 01 15:47:28 CST 2000 META-INF/MANIFEST.MF
>> 376 Mon Jun 04 15:41:00 CST 2007 META-INF/MYKEY.SF
>> 972 Sat Apr 01 15:47:38 CST 2000 META-INF/MYKEY.DSA
>> 0 Sat Apr 01 15:46:58 CST 2000 META-INF/
>> 0 Sat Apr 01 15:45:16 CST 2000 test/
>> 21 Sat Apr 01 15:46:24 CST 2000 test/test0
>> 21 Sat Apr 01 15:46:18 CST 2000 test/test1
>> 21 Sat Apr 01 15:46:04 CST 2000 test/test2
>> 21 Sat Apr 01 15:46:10 CST 2000 test/test3
>>
>> After JDK-8021788, the file is regarded as an unsigned jar because the
>> updated JarVerifier goes thru all signature-related files and treats all
>> others not. Here the first one is not signature-related so none is.
>>
>> Is fix for JDK-8021788 wrong? Inside JarVerifier.java, we have
>>
>> * Assumptions:
>> * 1. The manifest should be the first entry in the META-INF directory.
>> * 2. The .SF/.DSA/.EC files follow the manifest, before any normal
>> entries
>>
>> Is this INDEX.LIST an exception?
>>
Hi Max,
The assumption was made probably before the jar index was introduced(1.3?).
Jar spec never assumes the "order" of the files inside the meta-inf directory
(the spec treats the jar/zip file as a file system, the implementation then faces
this issue when the archive is handled in "steam"), but our implementation
does have the assumption. JarInputStream has a similar assumption regarding
the manifest.mf and a workaround for jarindex, if the jarindex is the first one.
I would take it as an implementation details.
The change looks fine.
-Sherman
>> Thanks
>> Max
From sean.mullan at oracle.com Mon Aug 26 17:45:33 2013
From: sean.mullan at oracle.com (Sean Mullan)
Date: Mon, 26 Aug 2013 13:45:33 -0400
Subject: RFR: 8015669: KerberosPrincipal::equals should ignore name-type
In-Reply-To: <521ACE8D.30400@oracle.com>
References: <521ACE8D.30400@oracle.com>
Message-ID: <521B943D.9070900@oracle.com>
Looks fine. A minor suggestion is that the code in equals could be
simplified a little:
if (! (other instanceof KerberosPrincipal)) {
return false;
}
String myFullName = getName();
String otherFullName = ((KerberosPrincipal) other).getName();
return myFullName.equals(otherFullName);
--Sean
On 08/25/2013 11:42 PM, Weijun Wang wrote:
> Hi Sean
>
> Please look at the webrev at
>
> http://cr.openjdk.java.net/~weijun/8015669/webrev.00/
>
> A new regression test is added.
>
> Thanks
> Max
From sean.coffey at oracle.com Mon Aug 26 17:34:36 2013
From: sean.coffey at oracle.com (sean.coffey at oracle.com)
Date: Mon, 26 Aug 2013 17:34:36 +0000
Subject: hg: jdk8/tl/jdk: 8016018: Typo in AbstractStringBuilder#indexOf and
#lastIndexOf descriptions
Message-ID: <20130826173447.BBEA048B6F@hg.openjdk.java.net>
Changeset: 92a66af7f834
Author: igerasim
Date: 2013-08-26 18:26 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/92a66af7f834
8016018: Typo in AbstractStringBuilder#indexOf and #lastIndexOf descriptions
Reviewed-by: alanb, chegar
! src/share/classes/java/lang/AbstractStringBuilder.java
From mike.duigou at oracle.com Mon Aug 26 18:38:22 2013
From: mike.duigou at oracle.com (mike.duigou at oracle.com)
Date: Mon, 26 Aug 2013 18:38:22 +0000
Subject: hg: jdk8/tl: 8023491: Remove target names from test/Makefile and
defer to sub-repo makefiles.
Message-ID: <20130826183822.7C91C48B79@hg.openjdk.java.net>
Changeset: f643fee2b40f
Author: mduigou
Date: 2013-08-26 10:09 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/rev/f643fee2b40f
8023491: Remove target names from test/Makefile and defer to sub-repo makefiles.
Reviewed-by: erikj
! common/makefiles/Main.gmk
! test/Makefile
From jonathan.gibbons at oracle.com Mon Aug 26 18:49:13 2013
From: jonathan.gibbons at oracle.com (jonathan.gibbons at oracle.com)
Date: Mon, 26 Aug 2013 18:49:13 +0000
Subject: hg: jdk8/tl/langtools: 8023701: Fix badly named test
Message-ID: <20130826184916.B9D5B48B7B@hg.openjdk.java.net>
Changeset: 60f156c653d3
Author: jjg
Date: 2013-08-26 11:48 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/60f156c653d3
8023701: Fix badly named test
Reviewed-by: bpatel
- test/com/sun/javadoc/testNavagation/TestNavagation.java
- test/com/sun/javadoc/testNavagation/pkg/A.java
- test/com/sun/javadoc/testNavagation/pkg/C.java
- test/com/sun/javadoc/testNavagation/pkg/E.java
- test/com/sun/javadoc/testNavagation/pkg/I.java
+ test/com/sun/javadoc/testNavigation/TestNavigation.java
+ test/com/sun/javadoc/testNavigation/pkg/A.java
+ test/com/sun/javadoc/testNavigation/pkg/C.java
+ test/com/sun/javadoc/testNavigation/pkg/E.java
+ test/com/sun/javadoc/testNavigation/pkg/I.java
From paul.sandoz at oracle.com Mon Aug 26 20:55:36 2013
From: paul.sandoz at oracle.com (paul.sandoz at oracle.com)
Date: Mon, 26 Aug 2013 20:55:36 +0000
Subject: hg: jdk8/tl/jdk: 8020292: j.u.SplittableRandom
Message-ID: <20130826205600.268B448B83@hg.openjdk.java.net>
Changeset: 5ce9025c9e1a
Author: psandoz
Date: 2013-08-26 22:55 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/5ce9025c9e1a
8020292: j.u.SplittableRandom
Reviewed-by: mduigou
Contributed-by: Guy Steele , Doug Lea , Brian Goetz , Paul Sandoz
+ src/share/classes/java/util/SplittableRandom.java
+ test/java/util/SplittableRandom/SplittableRandomTest.java
+ test/java/util/stream/test/org/openjdk/tests/java/util/SplittableRandomTest.java
From martinrb at google.com Mon Aug 26 22:28:29 2013
From: martinrb at google.com (Martin Buchholz)
Date: Mon, 26 Aug 2013 15:28:29 -0700
Subject: Bug in ProcessBuilder.
In-Reply-To: <52183B0A.3000101@oracle.com>
References:
<52183B0A.3000101@oracle.com>
Message-ID:
Given that my fix is "obviously more correct" and this code is doing
something pretty mysterious that only you guys understand, I'd prefer that
you guys take ownership of this quick fix. The call to checkRead is
troublesome for us, but that's true even after my fix is applied. (We
would prefer the checkRead code be reverted)
On Fri, Aug 23, 2013 at 9:48 PM, Bradford Wetmore <
bradford.wetmore at oracle.com> wrote:
> Martin,
>
> Your fix looks good to me, just need a test case to putback. Should be
> pretty straightforward to create a custom SecurityManager that throws a ACE
> instead of a SE during a checkRead(), and then link together.
>
> Brad
>
>
>
> On 8/21/2013 3:51 PM, Martin Buchholz wrote:
>
>> Adding Alexey Utkin, who appears to be the author of the lines I am
>> proposing to modify. Alexey, you are invited to take ownership of this
>> fix.
>>
>>
>> On Wed, Aug 21, 2013 at 3:43 PM, Martin Buchholz > > wrote:
>>
>> Hi security team,
>>
>> There's some code in ProcessBuilder.java to avoid leaking data in
>> case ProcessBuilder.start fails.
>> It appears to have an obvious bug, with an obvious fix.
>>
>> http://cr.openjdk.java.net/~**martin/webrevs/openjdk8/**
>> ProcessBuilder-checkRead/
>>
>> checkRead is spec'ed to throw SecurityException, not
>> AccessControlException. If checkRead does throw SecurityException,
>> then start will throw the wrong exception.
>>
>> Untested.
>>
>> @@ -1033,9 +1033,9 @@
>> // Can not disclose the fail reason for
>> read-protected files.
>> try {
>> security.checkRead(prog);
>> - } catch (AccessControlException ace) {
>> + } catch (SecurityException e) {
>> exceptionInfo = "";
>> - cause = ace;
>> + cause = e;
>> }
>> }
>> // It's much easier for us to create a high-quality
>> error
>>
>>
>>
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
From jonathan.gibbons at oracle.com Mon Aug 26 22:56:30 2013
From: jonathan.gibbons at oracle.com (jonathan.gibbons at oracle.com)
Date: Mon, 26 Aug 2013 22:56:30 +0000
Subject: hg: jdk8/tl/langtools: 8023768: Use the unannotatedType in cyclicity
checks.
Message-ID: <20130826225633.9D81D48B89@hg.openjdk.java.net>
Changeset: 7bf6313e1ced
Author: jjg
Date: 2013-08-26 15:55 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/7bf6313e1ced
8023768: Use the unannotatedType in cyclicity checks.
Reviewed-by: jjg
Contributed-by: wdietl at gmail.com
! src/share/classes/com/sun/tools/javac/comp/Check.java
+ test/tools/javac/annotations/typeAnnotations/failures/TypeVariableCycleTest.java
From david.holmes at oracle.com Tue Aug 27 00:12:08 2013
From: david.holmes at oracle.com (david.holmes at oracle.com)
Date: Tue, 27 Aug 2013 00:12:08 +0000
Subject: hg: jdk8/tl/jdk: 8014135: The JVMTI specification does not conform to
recent changes in JNI specification
Message-ID: <20130827001233.54B4148B8C@hg.openjdk.java.net>
Changeset: 9586ca82bd8b
Author: bpittore
Date: 2013-08-26 11:27 -0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/9586ca82bd8b
8014135: The JVMTI specification does not conform to recent changes in JNI specification
Summary: Added support for statically linked agents
Reviewed-by: alanb, sspitsyn, bobv, coleenp
! src/share/classes/com/sun/tools/attach/VirtualMachine.java
From lana.steuck at oracle.com Tue Aug 27 05:20:16 2013
From: lana.steuck at oracle.com (lana.steuck at oracle.com)
Date: Tue, 27 Aug 2013 05:20:16 +0000
Subject: hg: jdk8/tl/corba: 2 new changesets
Message-ID: <20130827052022.CF0A448BA2@hg.openjdk.java.net>
Changeset: d411c60a8c2f
Author: cl
Date: 2013-08-15 09:25 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/corba/rev/d411c60a8c2f
Added tag jdk8-b103 for changeset 49c4a777fdfd
! .hgtags
Changeset: 4e38de7c767e
Author: cl
Date: 2013-08-22 09:09 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/corba/rev/4e38de7c767e
Added tag jdk8-b104 for changeset d411c60a8c2f
! .hgtags
From lana.steuck at oracle.com Tue Aug 27 05:20:26 2013
From: lana.steuck at oracle.com (lana.steuck at oracle.com)
Date: Tue, 27 Aug 2013 05:20:26 +0000
Subject: hg: jdk8/tl: 9 new changesets
Message-ID: <20130827052027.B374E48BA3@hg.openjdk.java.net>
Changeset: ceefd94ef326
Author: cl
Date: 2013-08-15 09:25 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/rev/ceefd94ef326
Added tag jdk8-b103 for changeset b7e64be81c8a
! .hgtags
Changeset: 4fb877dfe5c4
Author: erikj
Date: 2013-08-15 17:14 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/rev/4fb877dfe5c4
8020411: lin32 - JDK 8 build for Linux-i586 on Oracle Linux 6.4 64-bit machines does not generate the bundles directory in the build directory
Reviewed-by: tbell
! common/autoconf/generated-configure.sh
! common/autoconf/platform.m4
! common/autoconf/spec.gmk.in
Changeset: f10f673d9b17
Author: igerasim
Date: 2013-08-16 14:43 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/rev/f10f673d9b17
8023156: make dist-clean should remove javacservers directory
Reviewed-by: erikj
! common/makefiles/Main.gmk
Changeset: dadf49495ab4
Author: erikj
Date: 2013-08-19 10:31 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/rev/dadf49495ab4
8021430: 64 bit JDK build fails on windows 7 due to missing corba source files
Reviewed-by: tbell, katleman
! common/makefiles/IdlCompilation.gmk
Changeset: 96c1b9b7524b
Author: katleman
Date: 2013-08-20 15:42 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/rev/96c1b9b7524b
Merge
Changeset: c3b5197f2851
Author: cl
Date: 2013-08-22 09:09 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/rev/c3b5197f2851
Added tag jdk8-b104 for changeset 96c1b9b7524b
! .hgtags
Changeset: e8a3edda1f60
Author: lana
Date: 2013-08-20 17:40 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/rev/e8a3edda1f60
Merge
Changeset: 056398db9dcb
Author: lana
Date: 2013-08-23 14:09 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/rev/056398db9dcb
Merge
! common/autoconf/generated-configure.sh
Changeset: 163091288aeb
Author: lana
Date: 2013-08-26 14:49 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/rev/163091288aeb
Merge
! common/makefiles/Main.gmk
From lana.steuck at oracle.com Tue Aug 27 05:20:31 2013
From: lana.steuck at oracle.com (lana.steuck at oracle.com)
Date: Tue, 27 Aug 2013 05:20:31 +0000
Subject: hg: jdk8/tl/jaxp: 4 new changesets
Message-ID: <20130827052056.027AB48BA4@hg.openjdk.java.net>
Changeset: a22fe9bd01e6
Author: cl
Date: 2013-08-15 09:25 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jaxp/rev/a22fe9bd01e6
Added tag jdk8-b103 for changeset b1ceab582fc6
! .hgtags
Changeset: af28b93bfb6f
Author: cl
Date: 2013-08-22 09:10 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jaxp/rev/af28b93bfb6f
Added tag jdk8-b104 for changeset a22fe9bd01e6
! .hgtags
Changeset: d4d6422ec564
Author: lana
Date: 2013-08-20 17:41 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jaxp/rev/d4d6422ec564
Merge
Changeset: 09a46ec11f88
Author: lana
Date: 2013-08-23 14:09 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jaxp/rev/09a46ec11f88
Merge
From lana.steuck at oracle.com Tue Aug 27 05:20:35 2013
From: lana.steuck at oracle.com (lana.steuck at oracle.com)
Date: Tue, 27 Aug 2013 05:20:35 +0000
Subject: hg: jdk8/tl/jaxws: 3 new changesets
Message-ID: <20130827052056.7DA8C48BA5@hg.openjdk.java.net>
Changeset: 42211ab0ab1c
Author: cl
Date: 2013-08-15 09:25 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jaxws/rev/42211ab0ab1c
Added tag jdk8-b103 for changeset 6cdc6ed98780
! .hgtags
Changeset: 88390df7ed2c
Author: cl
Date: 2013-08-22 09:10 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jaxws/rev/88390df7ed2c
Added tag jdk8-b104 for changeset 42211ab0ab1c
! .hgtags
Changeset: 533c1032337c
Author: lana
Date: 2013-08-26 14:50 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jaxws/rev/533c1032337c
Merge
From lana.steuck at oracle.com Tue Aug 27 05:20:46 2013
From: lana.steuck at oracle.com (lana.steuck at oracle.com)
Date: Tue, 27 Aug 2013 05:20:46 +0000
Subject: hg: jdk8/tl/nashorn: 5 new changesets
Message-ID: <20130827052057.0813148BA6@hg.openjdk.java.net>
Changeset: afc100513451
Author: cl
Date: 2013-08-15 09:26 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/afc100513451
Added tag jdk8-b103 for changeset 414203de4374
! .hgtags
Changeset: 74244f43c577
Author: cl
Date: 2013-08-22 09:10 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/74244f43c577
Added tag jdk8-b104 for changeset afc100513451
! .hgtags
Changeset: 1f2394beecf7
Author: lana
Date: 2013-08-20 17:46 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/1f2394beecf7
Merge
- src/jdk/internal/dynalink/support/Backport.java
- src/jdk/nashorn/internal/runtime/arrays/ArrayIterator.java
- src/jdk/nashorn/internal/runtime/arrays/MapIterator.java
- src/jdk/nashorn/internal/runtime/arrays/ReverseArrayIterator.java
- src/jdk/nashorn/internal/runtime/arrays/ReverseMapIterator.java
Changeset: f484bfb624dd
Author: lana
Date: 2013-08-23 14:18 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/f484bfb624dd
Merge
- src/jdk/internal/dynalink/support/Backport.java
- src/jdk/nashorn/internal/runtime/arrays/ArrayIterator.java
- src/jdk/nashorn/internal/runtime/arrays/MapIterator.java
- src/jdk/nashorn/internal/runtime/arrays/ReverseArrayIterator.java
- src/jdk/nashorn/internal/runtime/arrays/ReverseMapIterator.java
Changeset: a18f92a0a910
Author: lana
Date: 2013-08-26 14:54 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/a18f92a0a910
Merge
From lana.steuck at oracle.com Tue Aug 27 05:20:47 2013
From: lana.steuck at oracle.com (lana.steuck at oracle.com)
Date: Tue, 27 Aug 2013 05:20:47 +0000
Subject: hg: jdk8/tl/langtools: 6 new changesets
Message-ID: <20130827052114.E6B9448BA7@hg.openjdk.java.net>
Changeset: dd4a00c220c6
Author: cl
Date: 2013-08-15 09:26 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/dd4a00c220c6
Added tag jdk8-b103 for changeset 76cfe7c61f25
! .hgtags
Changeset: f2ee3a4e7927
Author: cl
Date: 2013-08-22 09:10 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/f2ee3a4e7927
Added tag jdk8-b104 for changeset dd4a00c220c6
! .hgtags
Changeset: b59a0b4675c9
Author: lana
Date: 2013-08-20 17:46 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/b59a0b4675c9
Merge
- test/tools/javac/defaultMethods/defaultMethodExecution/DefaultMethodRegressionTests.java
- test/tools/javac/diags/examples/IncompatibleThrownTypesInLambda.java
Changeset: 375834b5cf08
Author: lana
Date: 2013-08-23 14:17 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/375834b5cf08
Merge
- test/tools/javac/defaultMethods/defaultMethodExecution/DefaultMethodRegressionTests.java
- test/tools/javac/diags/examples/IncompatibleThrownTypesInLambda.java
Changeset: 00ca54ceca1b
Author: lana
Date: 2013-08-26 14:54 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/00ca54ceca1b
Merge
Changeset: cc3fb73f5e08
Author: lana
Date: 2013-08-26 22:18 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/cc3fb73f5e08
Merge
From lana.steuck at oracle.com Tue Aug 27 05:20:56 2013
From: lana.steuck at oracle.com (lana.steuck at oracle.com)
Date: Tue, 27 Aug 2013 05:20:56 +0000
Subject: hg: jdk8/tl/hotspot: 32 new changesets
Message-ID: <20130827052233.5940E48BA8@hg.openjdk.java.net>
Changeset: 0bbd1c775bef
Author: cl
Date: 2013-08-15 09:25 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/0bbd1c775bef
Added tag jdk8-b103 for changeset 6f9be7f87b96
! .hgtags
Changeset: 39127bb12d32
Author: amurillo
Date: 2013-08-09 01:39 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/39127bb12d32
8022688: new hotspot build - hs25-b46
Reviewed-by: jcoomes
! make/hotspot_version
Changeset: ca0165daa6ec
Author: sspitsyn
Date: 2013-08-06 16:33 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/ca0165daa6ec
7187554: JSR 292: JVMTI PopFrame needs to handle appendix arguments
Summary: Restore the appendix argument after PopFrame() call
Reviewed-by: twisti, coleenp
Contributed-by: serguei.spitsyn at oracle.com
! src/cpu/sparc/vm/templateInterpreter_sparc.cpp
! src/cpu/x86/vm/templateInterpreter_x86_32.cpp
! src/cpu/x86/vm/templateInterpreter_x86_64.cpp
! src/share/vm/classfile/javaClasses.cpp
! src/share/vm/classfile/javaClasses.hpp
! src/share/vm/classfile/systemDictionary.hpp
! src/share/vm/classfile/vmSymbols.hpp
! src/share/vm/interpreter/interpreterRuntime.cpp
! src/share/vm/interpreter/interpreterRuntime.hpp
Changeset: c54a3122f9c8
Author: omajid
Date: 2013-08-06 12:28 -0400
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/c54a3122f9c8
8022188: Make zero compile after 8016131 and 8016697
Reviewed-by: dholmes, twisti
! src/cpu/zero/vm/entryFrame_zero.hpp
! src/cpu/zero/vm/frame_zero.inline.hpp
! src/cpu/zero/vm/stubGenerator_zero.cpp
! src/os_cpu/linux_zero/vm/os_linux_zero.cpp
Changeset: 196aa14f9f29
Author: dholmes
Date: 2013-08-06 21:06 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/196aa14f9f29
Merge
Changeset: 195ff07bc7f6
Author: dsamersoff
Date: 2013-08-07 19:02 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/195ff07bc7f6
8021771: warning stat64 is deprecated - when building on OSX 10.7.5
Summary: stat64 have to be replaced with stat
Reviewed-by: dholmes, kmo
Contributed-by: rednaxelafx at gmail.com
! src/os/bsd/vm/attachListener_bsd.cpp
Changeset: 31f3b1e1c5e5
Author: dcubed
Date: 2013-08-08 09:21 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/31f3b1e1c5e5
8016601: Unable to build hsx24 on Windows using project creator and Visual Studio
Summary: ProjectCreator tool is modified to support two new options: '-relativeAltSrcInclude' and '-altRelativeInclude' which prevents IDE linker errors. Also fixed some cmd line build linker warnings. Misc cleanups.
Reviewed-by: rdurbin, coleenp
! make/windows/create.bat
! make/windows/create_obj_files.sh
! make/windows/makefiles/projectcreator.make
! make/windows/makefiles/trace.make
! make/windows/makefiles/vm.make
! src/share/tools/ProjectCreator/BuildConfig.java
! src/share/tools/ProjectCreator/FileTreeCreatorVC10.java
! src/share/tools/ProjectCreator/ProjectCreator.java
! src/share/tools/ProjectCreator/WinGammaPlatform.java
! src/share/tools/ProjectCreator/WinGammaPlatformVC10.java
Changeset: c661fa2e5189
Author: iklam
Date: 2013-08-08 14:45 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/c661fa2e5189
8022093: syntax error near "umpiconninfo_t" -- when building on Solaris 10
Summary: Added extra help message in make/solaris/makefiles/dtrace.make
Reviewed-by: dholmes, sspitsyn
! make/solaris/makefiles/dtrace.make
Changeset: 57ac7245594c
Author: minqi
Date: 2013-08-08 15:19 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/57ac7245594c
8019583: [TESTBUG] runtime/7107135 always passes
Summary: If java test return none zero, the value will be override by 'if' statement, the exit value will always '0' and pass. Fix by recording the result in a variable.
Reviewed-by: coleenp, dholmes, iklam
Contributed-by: yumin.qi at oracle.com
! test/runtime/7107135/Test7107135.sh
Changeset: 6222a021d582
Author: minqi
Date: 2013-08-08 20:13 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/6222a021d582
Merge
Changeset: 98aa538fd97e
Author: mikael
Date: 2013-08-09 09:51 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/98aa538fd97e
8022452: Hotspot needs to know about Windows 8.1 and Windows Server 2012 R2
Summary: Add support for recognizing Windows 8.1 and Server 2012 R2 and minor cleanup
Reviewed-by: coleenp, dsamersoff
! src/os/windows/vm/os_windows.cpp
Changeset: ed7c17e7d45b
Author: dcubed
Date: 2013-08-09 13:19 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/ed7c17e7d45b
Merge
Changeset: 7b03590c334b
Author: dcubed
Date: 2013-08-09 15:36 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/7b03590c334b
Merge
Changeset: bd0e82136b03
Author: iklam
Date: 2013-08-10 10:56 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/bd0e82136b03
8022740: Visual 2008 IDE build is broken
Summary: Fixed project generation code, and added warning to upgrade to VS 2008 SP1.
Reviewed-by: dcubed, ccheung
! make/windows/projectfiles/common/Makefile
! src/share/tools/ProjectCreator/FileTreeCreator.java
! src/share/tools/ProjectCreator/FileTreeCreatorVC10.java
! src/share/tools/ProjectCreator/FileTreeCreatorVC7.java
! src/share/tools/ProjectCreator/WinGammaPlatformVC7.java
Changeset: 85147f28faba
Author: coleenp
Date: 2013-08-12 17:24 -0400
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/85147f28faba
8009728: nsk/jvmti/AttachOnDemand/attach030 crashes on Win32
Summary: ActiveMethodOopsCache was used to keep track of old versions of some methods that are cached in Universe but is buggy with permgen removal and not needed anymore
Reviewed-by: sspitsyn, dcubed, mseledtsov
! src/share/vm/memory/universe.cpp
! src/share/vm/memory/universe.hpp
! src/share/vm/oops/method.cpp
! src/share/vm/prims/jvmtiRedefineClasses.cpp
! test/runtime/RedefineObject/Agent.java
! test/runtime/RedefineObject/TestRedefineObject.java
+ test/runtime/RedefineObject/WalkThroughInvoke.java
Changeset: d1034bd8cefc
Author: adlertz
Date: 2013-08-07 17:56 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/d1034bd8cefc
8022284: Hide internal data structure in PhaseCFG
Summary: Hide private node to block mapping using public interface
Reviewed-by: kvn, roland
! agent/src/share/classes/sun/jvm/hotspot/opto/PhaseCFG.java
! src/share/vm/opto/block.cpp
! src/share/vm/opto/block.hpp
! src/share/vm/opto/buildOopMap.cpp
! src/share/vm/opto/chaitin.cpp
! src/share/vm/opto/coalesce.cpp
! src/share/vm/opto/compile.cpp
! src/share/vm/opto/domgraph.cpp
! src/share/vm/opto/gcm.cpp
! src/share/vm/opto/idealGraphPrinter.cpp
! src/share/vm/opto/ifg.cpp
! src/share/vm/opto/lcm.cpp
! src/share/vm/opto/live.cpp
! src/share/vm/opto/node.hpp
! src/share/vm/opto/output.cpp
! src/share/vm/opto/output.hpp
! src/share/vm/opto/postaloc.cpp
! src/share/vm/opto/reg_split.cpp
! src/share/vm/runtime/vmStructs.cpp
Changeset: ce8969c36762
Author: adlertz
Date: 2013-08-07 18:04 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/ce8969c36762
8022475: Remove unneeded ad-files
Summary: Remove .ad files that are not used
Reviewed-by: kvn
! make/bsd/makefiles/adlc.make
! make/linux/makefiles/adlc.make
! make/solaris/makefiles/adlc.make
! make/windows/makefiles/adlc.make
- src/os_cpu/bsd_x86/vm/bsd_x86_32.ad
- src/os_cpu/bsd_x86/vm/bsd_x86_64.ad
- src/os_cpu/linux_x86/vm/linux_x86_32.ad
- src/os_cpu/linux_x86/vm/linux_x86_64.ad
- src/os_cpu/solaris_sparc/vm/solaris_sparc.ad
- src/os_cpu/solaris_x86/vm/solaris_x86_32.ad
- src/os_cpu/solaris_x86/vm/solaris_x86_64.ad
- src/os_cpu/windows_x86/vm/windows_x86_32.ad
- src/os_cpu/windows_x86/vm/windows_x86_64.ad
Changeset: 5394ec69f112
Author: rbackman
Date: 2013-08-09 18:05 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/5394ec69f112
Merge
- src/os_cpu/bsd_x86/vm/bsd_x86_32.ad
- src/os_cpu/bsd_x86/vm/bsd_x86_64.ad
- src/os_cpu/linux_x86/vm/linux_x86_32.ad
- src/os_cpu/linux_x86/vm/linux_x86_64.ad
- src/os_cpu/solaris_sparc/vm/solaris_sparc.ad
- src/os_cpu/solaris_x86/vm/solaris_x86_32.ad
- src/os_cpu/solaris_x86/vm/solaris_x86_64.ad
- src/os_cpu/windows_x86/vm/windows_x86_32.ad
- src/os_cpu/windows_x86/vm/windows_x86_64.ad
Changeset: 11237ee74aae
Author: iignatyev
Date: 2013-08-10 10:01 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/11237ee74aae
8019915: whitebox testClearMethodStateTest fails with tiered on sparc
Summary: 'compileonly' directive has beens added to each 'compiler/whitebox' test
Reviewed-by: kvn
! test/compiler/whitebox/ClearMethodStateTest.java
! test/compiler/whitebox/CompilerWhiteBoxTest.java
! test/compiler/whitebox/DeoptimizeAllTest.java
! test/compiler/whitebox/DeoptimizeMethodTest.java
! test/compiler/whitebox/EnqueueMethodForCompilationTest.java
! test/compiler/whitebox/IsMethodCompilableTest.java
! test/compiler/whitebox/MakeMethodNotCompilableTest.java
! test/compiler/whitebox/SetDontInlineMethodTest.java
! test/compiler/whitebox/SetForceInlineMethodTest.java
Changeset: bcc4f6f54d83
Author: kvn
Date: 2013-08-14 10:21 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/bcc4f6f54d83
8022993: Convert MAX_UNROLL constant to LoopMaxUnroll C2 flag
Summary: Replace MAX_UNROLL constant with new C2 LoopMaxUnroll flag.
Reviewed-by: roland
! src/share/vm/opto/c2_globals.hpp
! src/share/vm/opto/loopTransform.cpp
Changeset: 56b94e55267a
Author: rbackman
Date: 2013-08-15 15:26 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/56b94e55267a
Merge
- src/os_cpu/bsd_x86/vm/bsd_x86_32.ad
- src/os_cpu/bsd_x86/vm/bsd_x86_64.ad
- src/os_cpu/linux_x86/vm/linux_x86_32.ad
- src/os_cpu/linux_x86/vm/linux_x86_64.ad
- src/os_cpu/solaris_sparc/vm/solaris_sparc.ad
- src/os_cpu/solaris_x86/vm/solaris_x86_32.ad
- src/os_cpu/solaris_x86/vm/solaris_x86_64.ad
- src/os_cpu/windows_x86/vm/windows_x86_32.ad
- src/os_cpu/windows_x86/vm/windows_x86_64.ad
Changeset: 9766f73e770d
Author: stefank
Date: 2013-05-31 14:32 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/9766f73e770d
8022880: False sharing between PSPromotionManager instances
Summary: Pad the PSPromotionManager instances in the manager array.
Reviewed-by: brutisso, jmasa
! src/share/vm/gc_implementation/concurrentMarkSweep/concurrentMarkSweepGeneration.cpp
! src/share/vm/gc_implementation/parNew/parNewGeneration.hpp
! src/share/vm/gc_implementation/parNew/parOopClosures.hpp
! src/share/vm/gc_implementation/parallelScavenge/psPromotionManager.cpp
! src/share/vm/gc_implementation/parallelScavenge/psPromotionManager.hpp
! src/share/vm/gc_implementation/parallelScavenge/psPromotionManager.inline.hpp
+ src/share/vm/memory/padded.hpp
+ src/share/vm/memory/padded.inline.hpp
! src/share/vm/utilities/debug.hpp
! src/share/vm/utilities/globalDefinitions.hpp
Changeset: 330dfb0476f4
Author: brutisso
Date: 2013-08-14 09:02 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/330dfb0476f4
8022800: Use specific generations rather than generation iteration
Reviewed-by: jmasa, ehelin
! src/share/vm/gc_implementation/parNew/parNewGeneration.cpp
! src/share/vm/memory/cardTableRS.cpp
! src/share/vm/memory/cardTableRS.hpp
! src/share/vm/memory/defNewGeneration.cpp
! src/share/vm/memory/genCollectedHeap.cpp
! src/share/vm/memory/genCollectedHeap.hpp
! src/share/vm/memory/genMarkSweep.cpp
! src/share/vm/memory/genRemSet.hpp
Changeset: 3f22cbf5275d
Author: brutisso
Date: 2013-08-14 10:55 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/3f22cbf5275d
Merge
Changeset: 5d9995d16b26
Author: ehelin
Date: 2013-08-14 13:49 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/5d9995d16b26
8022899: SunStudio compiler can not handle EXCEPTION_MARK and inlining
Reviewed-by: coleenp, mgerdin
! src/share/vm/utilities/exceptions.hpp
Changeset: bd902affe102
Author: brutisso
Date: 2013-08-15 10:05 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/bd902affe102
8023021: Unnecessary clearing of the card table introduced by the fix for JDK-8023013
Reviewed-by: stefank, ehelin
! src/share/vm/memory/cardTableRS.cpp
! src/share/vm/memory/cardTableRS.hpp
! src/share/vm/memory/genMarkSweep.cpp
! src/share/vm/memory/genRemSet.hpp
Changeset: 274ce305e5b9
Author: ehelin
Date: 2013-08-13 18:16 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/274ce305e5b9
8020598: ObjectCountEventSender::send needs INCLUDE_TRACE guards when building OpenJDK with INCLUDE_TRACE=0
Reviewed-by: stefank, brutisso, sjohanss
! src/share/vm/gc_implementation/shared/objectCountEventSender.cpp
Changeset: 33d39b75663f
Author: ehelin
Date: 2013-08-15 06:20 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/33d39b75663f
Merge
Changeset: 5a62937e55b3
Author: brutisso
Date: 2013-08-16 09:02 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/5a62937e55b3
Merge
- src/os_cpu/bsd_x86/vm/bsd_x86_32.ad
- src/os_cpu/bsd_x86/vm/bsd_x86_64.ad
- src/os_cpu/linux_x86/vm/linux_x86_32.ad
- src/os_cpu/linux_x86/vm/linux_x86_64.ad
- src/os_cpu/solaris_sparc/vm/solaris_sparc.ad
- src/os_cpu/solaris_x86/vm/solaris_x86_32.ad
- src/os_cpu/solaris_x86/vm/solaris_x86_64.ad
- src/os_cpu/windows_x86/vm/windows_x86_32.ad
- src/os_cpu/windows_x86/vm/windows_x86_64.ad
Changeset: 580430d131cc
Author: amurillo
Date: 2013-08-16 04:14 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/580430d131cc
Merge
- src/os_cpu/bsd_x86/vm/bsd_x86_32.ad
- src/os_cpu/bsd_x86/vm/bsd_x86_64.ad
- src/os_cpu/linux_x86/vm/linux_x86_32.ad
- src/os_cpu/linux_x86/vm/linux_x86_64.ad
- src/os_cpu/solaris_sparc/vm/solaris_sparc.ad
- src/os_cpu/solaris_x86/vm/solaris_x86_32.ad
- src/os_cpu/solaris_x86/vm/solaris_x86_64.ad
- src/os_cpu/windows_x86/vm/windows_x86_32.ad
- src/os_cpu/windows_x86/vm/windows_x86_64.ad
Changeset: 104743074675
Author: amurillo
Date: 2013-08-16 04:14 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/104743074675
Added tag hs25-b46 for changeset 580430d131cc
! .hgtags
Changeset: c93e0a210e1b
Author: cl
Date: 2013-08-22 09:10 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/hotspot/rev/c93e0a210e1b
Added tag jdk8-b104 for changeset 104743074675
! .hgtags
From lana.steuck at oracle.com Tue Aug 27 05:22:10 2013
From: lana.steuck at oracle.com (lana.steuck at oracle.com)
Date: Tue, 27 Aug 2013 05:22:10 +0000
Subject: hg: jdk8/tl/jdk: 23 new changesets
Message-ID: <20130827052721.2B1BC48BA9@hg.openjdk.java.net>
Changeset: f1d8d15bfcb5
Author: cl
Date: 2013-08-15 09:25 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/f1d8d15bfcb5
Added tag jdk8-b103 for changeset e0f6039c0290
! .hgtags
Changeset: c982f579b67e
Author: cl
Date: 2013-08-22 09:10 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/c982f579b67e
Added tag jdk8-b104 for changeset f1d8d15bfcb5
! .hgtags
Changeset: 2722f4000b65
Author: jgodinez
Date: 2013-08-15 11:56 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/2722f4000b65
8023045: [MacOSX] PrinterIOException when printing a JComponent
Reviewed-by: bae, jchen
! src/share/classes/sun/print/PSPrinterJob.java
Changeset: b44ce67c0565
Author: vadim
Date: 2013-08-16 15:57 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/b44ce67c0565
8013446: [parfait] Memory leak in jdk/src/windows/native/sun/java2d/opengl/WGLSurfaceData.c
Reviewed-by: bae, prr
! src/windows/native/sun/java2d/opengl/WGLSurfaceData.c
Changeset: dadd43e02a79
Author: prr
Date: 2013-08-19 03:58 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/dadd43e02a79
8017580: Crash in font loading code on Linux (due to use of reflection)
Reviewed-by: bae, vadim
! src/share/native/sun/font/sunFont.c
! src/share/native/sun/font/sunfontids.h
Changeset: 0c950b2be7ab
Author: jgodinez
Date: 2013-08-19 11:21 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/0c950b2be7ab
8022241: [macosx] [PIT] lookupPrintServices() returns one too long array
Reviewed-by: prr, jchen
! src/solaris/classes/sun/print/UnixPrintServiceLookup.java
Changeset: 64be71ae6185
Author: lana
Date: 2013-08-20 17:35 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/64be71ae6185
Merge
Changeset: 903a279f1fce
Author: ant
Date: 2013-08-09 05:20 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/903a279f1fce
8013611: Modal dialog fails to obtain keyboard focus
Reviewed-by: leonidr
! src/share/classes/java/awt/KeyboardFocusManager.java
+ test/java/awt/Focus/8013611/JDK8013611.java
Changeset: 2cd1a041381b
Author: alexsch
Date: 2013-08-09 14:16 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/2cd1a041381b
7121409: Two conformance tests for AccessibleText.getCharacterBounds(int i) fail
Reviewed-by: serb
! src/share/classes/javax/swing/JLabel.java
Changeset: 4702ab74b70a
Author: serb
Date: 2013-08-13 15:41 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/4702ab74b70a
7027045: (doc) java/awt/Window.java has several typos in javadoc
Reviewed-by: art, serb
Contributed-by: konstantin.perikov at gmail.com
! src/share/classes/java/awt/Window.java
Changeset: 149bf2400fa1
Author: lana
Date: 2013-08-13 15:49 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/149bf2400fa1
Merge
- test/java/lang/System/MacJNUEncoding/ExpectedEncoding.java
- test/java/lang/System/MacJNUEncoding/MacJNUEncoding.sh
Changeset: c5db3ec83cba
Author: pchelko
Date: 2013-08-14 16:17 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/c5db3ec83cba
8013454: [parfait] Memory leak in jdk/src/windows/native/sun/windows/awt_Cursor.cpp
8012079: [parfait] possible null pointer dereference in jdk/src/windows/native/sun/windows/awt_Font.cpp
Reviewed-by: art, serb
! src/windows/native/sun/windows/awt_Cursor.cpp
! src/windows/native/sun/windows/awt_Font.cpp
Changeset: 1d6ce0070fd3
Author: pchelko
Date: 2013-08-14 17:20 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/1d6ce0070fd3
7173464: Clipboard.getAvailableDataFlavors: Comparison method violates contract
Reviewed-by: anthony, art, serb
! src/share/classes/sun/awt/datatransfer/ClipboardTransferable.java
! src/share/classes/sun/awt/datatransfer/DataTransferer.java
+ test/sun/awt/datatransfer/DataFlavorComparatorTest.java
Changeset: 3930a827160a
Author: leonidr
Date: 2013-08-15 01:17 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/3930a827160a
8022997: [macosx] Remaining duplicated key events
Reviewed-by: anthony, serb
! src/macosx/native/sun/awt/CMenuItem.m
! test/javax/swing/JMenuItem/ActionListenerCalledTwice/ActionListenerCalledTwiceTest.java
Changeset: d7a34d7e7f22
Author: alitvinov
Date: 2013-08-15 14:20 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/d7a34d7e7f22
7191018: Manual test closed/java/awt/JAWT causes JVM to crash starting from JDK 5
Reviewed-by: anthony, serb
! src/solaris/native/sun/awt/awt_DrawingSurface.c
Changeset: c089e93e6444
Author: serb
Date: 2013-08-16 16:52 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/c089e93e6444
8020051: [TEST_BUG] Testcase for 8004859 has a typo
Reviewed-by: anthony
! test/java/awt/Graphics2D/Test8004859/Test8004859.java
Changeset: e3316cd6ca47
Author: serb
Date: 2013-08-16 20:56 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/e3316cd6ca47
8006085: [findbugs] a warning on javax.sound.sampled.DataLine$Info constructor
Reviewed-by: art, prr
! src/share/classes/javax/sound/sampled/DataLine.java
Changeset: 64dc24e0d577
Author: serb
Date: 2013-08-16 21:18 +0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/64dc24e0d577
8005980: [findbugs] More com.sun.media.sound.* warnings
Reviewed-by: art, prr
! src/share/classes/com/sun/media/sound/DataPusher.java
! src/share/classes/com/sun/media/sound/ModelStandardDirector.java
! src/share/classes/com/sun/media/sound/ModelStandardIndexedDirector.java
! src/share/classes/com/sun/media/sound/SoftMixingClip.java
! src/share/classes/sun/audio/AudioData.java
Changeset: fefa29e15a14
Author: lana
Date: 2013-08-20 17:38 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/fefa29e15a14
Merge
Changeset: a79fcf53195f
Author: lana
Date: 2013-08-20 17:44 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/a79fcf53195f
Merge
- src/share/classes/com/sun/security/auth/PolicyParser.java
- src/share/classes/com/sun/security/auth/SubjectCodeSource.java
- src/share/classes/java/util/jar/UnsupportedProfileException.java
- src/share/classes/sun/security/provider/ConfigSpiFile.java
- test/java/net/URLClassLoader/profiles/Basic.java
- test/java/net/URLClassLoader/profiles/Lib.java
- test/java/net/URLClassLoader/profiles/basic.sh
- test/tools/jar/AddAndUpdateProfile.java
- test/tools/launcher/profiles/Basic.java
- test/tools/launcher/profiles/Logging.java
- test/tools/launcher/profiles/Main.java
- test/tools/launcher/profiles/VersionCheck.java
Changeset: 9626ba160e3d
Author: lana
Date: 2013-08-23 14:14 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/9626ba160e3d
Merge
- src/share/classes/com/sun/security/auth/PolicyParser.java
- src/share/classes/com/sun/security/auth/SubjectCodeSource.java
- src/share/classes/java/util/jar/UnsupportedProfileException.java
- src/share/classes/sun/security/provider/ConfigSpiFile.java
- test/java/net/URLClassLoader/profiles/Basic.java
- test/java/net/URLClassLoader/profiles/Lib.java
- test/java/net/URLClassLoader/profiles/basic.sh
- test/tools/jar/AddAndUpdateProfile.java
- test/tools/launcher/profiles/Basic.java
- test/tools/launcher/profiles/Logging.java
- test/tools/launcher/profiles/Main.java
- test/tools/launcher/profiles/VersionCheck.java
Changeset: c58e39bb5d62
Author: lana
Date: 2013-08-26 14:53 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/c58e39bb5d62
Merge
Changeset: 6cdc679e3412
Author: lana
Date: 2013-08-26 22:18 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/6cdc679e3412
Merge
From weijun.wang at oracle.com Tue Aug 27 09:51:22 2013
From: weijun.wang at oracle.com (weijun.wang at oracle.com)
Date: Tue, 27 Aug 2013 09:51:22 +0000
Subject: hg: jdk8/tl/jdk: 2 new changesets
Message-ID: <20130827095225.1083C48BB4@hg.openjdk.java.net>
Changeset: ca53110f1c74
Author: weijun
Date: 2013-08-27 17:50 +0800
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/ca53110f1c74
8015669: KerberosPrincipal::equals should ignore name-type
Reviewed-by: mullan
! src/share/classes/javax/security/auth/kerberos/KerberosPrincipal.java
+ test/sun/security/krb5/auto/KPEquals.java
Changeset: 4bddc344848e
Author: weijun
Date: 2013-08-27 17:50 +0800
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/4bddc344848e
8022761: regression: SecurityException is NOT thrown while trying to pack a wrongly signed Indexed Jar file
Reviewed-by: sherman
! src/share/classes/java/util/jar/JarVerifier.java
+ test/sun/security/tools/jarsigner/jvindex.sh
From sean.mullan at oracle.com Tue Aug 27 13:34:05 2013
From: sean.mullan at oracle.com (Sean Mullan)
Date: Tue, 27 Aug 2013 09:34:05 -0400
Subject: [8] Request for review: 8019830: Add com.sun.media.sound to the list
of restricted packages
Message-ID: <521CAACD.1030709@oracle.com>
Hi,
Could you please review my fix for 8019830:
webrev: http://cr.openjdk.java.net/~mullan/webrevs/8019830/webrev.00/
The bug is not yet available on bugs.sun.com, so here is the description
of the bug:
com.sun.media.sound should be added to the list of restricted packages
in JDK 8. This means applications running under a SecurityManager will
not be able to access classes in this package hierarchy unless granted
explicit permission. com.sun.media.sound is an internal, unsupported
package and is not meant to be used by external applications.
Thanks,
Sean
From sean.mullan at oracle.com Tue Aug 27 14:01:12 2013
From: sean.mullan at oracle.com (Sean Mullan)
Date: Tue, 27 Aug 2013 10:01:12 -0400
Subject: [8] Request for review: 8023769: JDK-8016850 broke the old build
Message-ID: <521CB128.8040807@oracle.com>
Hi,
Could you please review my fix for 8023769:
webrev: http://cr.openjdk.java.net/~mullan/webrevs/8023769/webrev.00/
The bug is not yet available on bugs.sun.com, but basically the fix for
JDK-8016850 moved/removed 2 files and the corresponding Makefile was not
updated which broke the old build. Old builds are still needed for
certain components such as JCE and deploy.
Thanks,
Sean
From vincent.x.ryan at oracle.com Tue Aug 27 14:05:46 2013
From: vincent.x.ryan at oracle.com (Vincent Ryan)
Date: Tue, 27 Aug 2013 15:05:46 +0100
Subject: [8] Request for review: 8019830: Add com.sun.media.sound to the
list of restricted packages
In-Reply-To: <521CAACD.1030709@oracle.com>
References: <521CAACD.1030709@oracle.com>
Message-ID:
Those changes look fine to me.
On 27 Aug 2013, at 14:34, Sean Mullan wrote:
> Hi,
>
> Could you please review my fix for 8019830:
>
> webrev: http://cr.openjdk.java.net/~mullan/webrevs/8019830/webrev.00/
>
> The bug is not yet available on bugs.sun.com, so here is the description of the bug:
>
> com.sun.media.sound should be added to the list of restricted packages in JDK 8. This means applications running under a SecurityManager will not be able to access classes in this package hierarchy unless granted explicit permission. com.sun.media.sound is an internal, unsupported package and is not meant to be used by external applications.
>
> Thanks,
> Sean
From chris.hegarty at oracle.com Tue Aug 27 14:20:03 2013
From: chris.hegarty at oracle.com (Chris Hegarty)
Date: Tue, 27 Aug 2013 15:20:03 +0100
Subject: [8] Request for review: 8023769: JDK-8016850 broke the old build
In-Reply-To: <521CB128.8040807@oracle.com>
References: <521CB128.8040807@oracle.com>
Message-ID: <521CB593.9010000@oracle.com>
Looks fine Sean.
I'll refrain from making the obvious comment on the old build ;-)
-Chris.
On 27/08/2013 15:01, Sean Mullan wrote:
> Hi,
>
> Could you please review my fix for 8023769:
>
> webrev: http://cr.openjdk.java.net/~mullan/webrevs/8023769/webrev.00/
>
> The bug is not yet available on bugs.sun.com, but basically the fix for
> JDK-8016850 moved/removed 2 files and the corresponding Makefile was not
> updated which broke the old build. Old builds are still needed for
> certain components such as JCE and deploy.
>
> Thanks,
> Sean
From sundararajan.athijegannathan at oracle.com Tue Aug 27 14:22:31 2013
From: sundararajan.athijegannathan at oracle.com (sundararajan.athijegannathan at oracle.com)
Date: Tue, 27 Aug 2013 14:22:31 +0000
Subject: hg: jdk8/tl/nashorn: 10 new changesets
Message-ID: <20130827142242.4903548BC2@hg.openjdk.java.net>
Changeset: badc919cd621
Author: lagergren
Date: 2013-08-23 14:16 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/badc919cd621
8023550: -d option was broken for any dir but '.'. Fixed Java warnings.
Reviewed-by: jlaskey, sundar
! buildtools/nasgen/src/jdk/nashorn/internal/tools/nasgen/ConstructorGenerator.java
! buildtools/nasgen/src/jdk/nashorn/internal/tools/nasgen/ScriptClassInstrumentor.java
! src/jdk/internal/dynalink/ChainedCallSite.java
! src/jdk/internal/dynalink/DefaultBootstrapper.java
! src/jdk/internal/dynalink/beans/AbstractJavaLinker.java
! src/jdk/internal/dynalink/beans/OverloadedDynamicMethod.java
! src/jdk/nashorn/api/scripting/NashornScriptEngine.java
! src/jdk/nashorn/internal/codegen/CompilationPhase.java
! src/jdk/nashorn/internal/objects/NativeArray.java
! src/jdk/nashorn/internal/objects/NativeRegExp.java
! src/jdk/nashorn/internal/runtime/Context.java
! src/jdk/nashorn/internal/runtime/DebuggerSupport.java
! src/jdk/nashorn/internal/runtime/ScriptObject.java
! src/jdk/nashorn/internal/runtime/regexp/joni/ArrayCompiler.java
! src/jdk/nashorn/internal/runtime/regexp/joni/BitSet.java
! src/jdk/nashorn/internal/runtime/regexp/joni/ByteCodeMachine.java
! src/jdk/nashorn/internal/runtime/regexp/joni/CodeRangeBuffer.java
! src/jdk/nashorn/internal/runtime/regexp/joni/Lexer.java
! src/jdk/nashorn/internal/runtime/regexp/joni/Parser.java
! src/jdk/nashorn/internal/runtime/regexp/joni/Region.java
! src/jdk/nashorn/internal/runtime/regexp/joni/ScannerSupport.java
! src/jdk/nashorn/internal/runtime/regexp/joni/SearchAlgorithm.java
! src/jdk/nashorn/internal/runtime/regexp/joni/StackMachine.java
! src/jdk/nashorn/internal/runtime/regexp/joni/WarnCallback.java
! src/jdk/nashorn/internal/runtime/regexp/joni/ast/EncloseNode.java
! src/jdk/nashorn/internal/runtime/regexp/joni/ast/Node.java
! src/jdk/nashorn/internal/runtime/regexp/joni/ast/QuantifierNode.java
! src/jdk/nashorn/internal/runtime/regexp/joni/exception/ErrorMessages.java
! tools/fxshell/jdk/nashorn/tools/FXShell.java
Changeset: e2d94d032760
Author: jlaskey
Date: 2013-08-23 09:56 -0300
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/e2d94d032760
8020946: TokenType#toString returned null
Reviewed-by: hannesw, lagergren
Contributed-by: james.laskey at oracle.com
! src/jdk/nashorn/internal/parser/TokenType.java
Changeset: eb7b8340ce3a
Author: lagergren
Date: 2013-08-23 15:46 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/eb7b8340ce3a
8023454: Updated DEVELOPER_README and command line flags, ensuring that undocumented flags that aren't guaranteed to work (disabled by default) and that are work in progress show up with an EXPERIMENTAL tag.
Reviewed-by: attila, jlaskey
! docs/DEVELOPER_README
! src/jdk/nashorn/internal/runtime/resources/Options.properties
Changeset: 12820c8d0a5d
Author: jlaskey
Date: 2013-08-23 12:20 -0300
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/12820c8d0a5d
8019987: String trimRight and trimLeft could be defined
Reviewed-by: sundar
Contributed-by: james.laskey at oracle.com
! src/jdk/nashorn/internal/objects/NativeString.java
+ test/script/basic/JDK-8019987.js
Changeset: c19c66e661a9
Author: hannesw
Date: 2013-08-26 15:59 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/c19c66e661a9
8023650: Regexp m flag does not recognize CRNL or CR
Reviewed-by: jlaskey, lagergren
! src/jdk/nashorn/internal/runtime/regexp/joni/ByteCodeMachine.java
! src/jdk/nashorn/internal/runtime/regexp/joni/Config.java
! src/jdk/nashorn/internal/runtime/regexp/joni/EncodingHelper.java
! src/jdk/nashorn/internal/runtime/regexp/joni/Lexer.java
! src/jdk/nashorn/internal/runtime/regexp/joni/Matcher.java
! src/jdk/nashorn/tools/Shell.java
+ test/script/basic/JDK-8023650.js
Changeset: 99e48c76d11f
Author: jlaskey
Date: 2013-08-26 15:33 -0300
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/99e48c76d11f
8023721: Simplify eval in DebuggerSupport.
Reviewed-by: sundar, lagergren, hannesw
Contributed-by: james.laskey at oracle.com
! src/jdk/nashorn/internal/runtime/DebuggerSupport.java
Changeset: 3bd077423a08
Author: sundar
Date: 2013-08-27 15:54 +0530
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/3bd077423a08
8022773: ScriptEngineTest.printManyTest fails
Reviewed-by: lagergren, attila
! test/src/jdk/nashorn/api/scripting/ScriptEngineTest.java
Changeset: 47f0a4c4b729
Author: attila
Date: 2013-08-27 13:17 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/47f0a4c4b729
8023780: Gracefully handle @CS methods while binding bean properties
Reviewed-by: jlaskey, lagergren, sundar
! src/jdk/nashorn/internal/objects/NativeObject.java
+ test/script/basic/JDK-8023780.js
+ test/script/basic/JDK-8023780.js.EXPECTED
Changeset: bda0e89f88ae
Author: sundar
Date: 2013-08-27 18:57 +0530
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/bda0e89f88ae
8023784: Object.prototype.toString should contain the class name for all instances
Reviewed-by: lagergren, jlaskey
! src/jdk/nashorn/api/scripting/ScriptObjectMirror.java
! src/jdk/nashorn/internal/objects/NativeArrayBuffer.java
! src/jdk/nashorn/internal/objects/NativeFloat32Array.java
! src/jdk/nashorn/internal/objects/NativeFloat64Array.java
! src/jdk/nashorn/internal/objects/NativeInt16Array.java
! src/jdk/nashorn/internal/objects/NativeInt32Array.java
! src/jdk/nashorn/internal/objects/NativeInt8Array.java
! src/jdk/nashorn/internal/objects/NativeUint16Array.java
! src/jdk/nashorn/internal/objects/NativeUint32Array.java
! src/jdk/nashorn/internal/objects/NativeUint8Array.java
! src/jdk/nashorn/internal/objects/NativeUint8ClampedArray.java
! src/jdk/nashorn/internal/runtime/ScriptRuntime.java
+ test/script/basic/JDK-8023784.js
+ test/script/basic/JDK-8023784.js.EXPECTED
! test/script/basic/NASHORN-377.js.EXPECTED
Changeset: 101606d3eb84
Author: sundar
Date: 2013-08-27 19:26 +0530
URL: http://hg.openjdk.java.net/jdk8/tl/nashorn/rev/101606d3eb84
Merge
From Xuelei.Fan at Oracle.Com Tue Aug 27 14:25:07 2013
From: Xuelei.Fan at Oracle.Com (Xuelei Fan)
Date: Tue, 27 Aug 2013 22:25:07 +0800
Subject: [8] Request for review: 8023769: JDK-8016850 broke the old build
In-Reply-To: <521CB128.8040807@oracle.com>
References: <521CB128.8040807@oracle.com>
Message-ID: <0F4F7A0F-E901-4DB4-8057-6006E3E6A2B5@Oracle.Com>
Looks fine to me.
Xuelei
On Aug 27, 2013, at 22:01, Sean Mullan wrote:
> Hi,
>
> Could you please review my fix for 8023769:
>
> webrev: http://cr.openjdk.java.net/~mullan/webrevs/8023769/webrev.00/
>
> The bug is not yet available on bugs.sun.com, but basically the fix for JDK-8016850 moved/removed 2 files and the corresponding Makefile was not updated which broke the old build. Old builds are still needed for certain components such as JCE and deploy.
>
> Thanks,
> Sean
From sean.mullan at oracle.com Tue Aug 27 14:47:34 2013
From: sean.mullan at oracle.com (sean.mullan at oracle.com)
Date: Tue, 27 Aug 2013 14:47:34 +0000
Subject: hg: jdk8/tl/jdk: 8023769: JDK-8016850 broke the old build
Message-ID: <20130827144802.7A91E48BC4@hg.openjdk.java.net>
Changeset: 134283a88499
Author: mullan
Date: 2013-08-27 10:46 -0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/134283a88499
8023769: JDK-8016850 broke the old build
Summary: remove files that were moved/removed from com/sun/security/auth/FILES_java.gmk
Reviewed-by: chegar, xuelei
! make/com/sun/security/auth/FILES_java.gmk
From sean.mullan at oracle.com Tue Aug 27 17:00:32 2013
From: sean.mullan at oracle.com (sean.mullan at oracle.com)
Date: Tue, 27 Aug 2013 17:00:32 +0000
Subject: hg: jdk8/tl/jdk: 2 new changesets
Message-ID: <20130827170114.3E4EF48BD4@hg.openjdk.java.net>
Changeset: 6a1bfcde4d4d
Author: mullan
Date: 2013-08-27 12:04 -0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/6a1bfcde4d4d
8019830: Add com.sun.media.sound to the list of restricted package
Reviewed-by: vinnie
! src/share/lib/security/java.security-linux
! src/share/lib/security/java.security-macosx
! src/share/lib/security/java.security-solaris
! src/share/lib/security/java.security-windows
! test/java/lang/SecurityManager/CheckPackageAccess.java
Changeset: 3575263eefab
Author: mullan
Date: 2013-08-27 12:27 -0400
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/3575263eefab
Merge
- src/share/classes/com/sun/security/auth/PolicyParser.java
- src/share/classes/com/sun/security/auth/SubjectCodeSource.java
- src/share/classes/sun/misc/Compare.java
- src/share/classes/sun/misc/Sort.java
From henry.jen at oracle.com Mon Aug 26 22:20:16 2013
From: henry.jen at oracle.com (henry.jen at oracle.com)
Date: Mon, 26 Aug 2013 22:20:16 +0000
Subject: hg: jdk8/tl/jdk: 8023681: Fix raw type warning caused by Sink
Message-ID: <20130826222042.C71A848B87@hg.openjdk.java.net>
Changeset: 35c1609d9488
Author: henryjen
Date: 2013-08-09 09:05 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/35c1609d9488
8023681: Fix raw type warning caused by Sink
Reviewed-by: mduigou, briangoetz
! src/share/classes/java/util/stream/Collectors.java
! src/share/classes/java/util/stream/DistinctOps.java
! src/share/classes/java/util/stream/DoublePipeline.java
! src/share/classes/java/util/stream/IntPipeline.java
! src/share/classes/java/util/stream/LongPipeline.java
! src/share/classes/java/util/stream/ReferencePipeline.java
! src/share/classes/java/util/stream/Sink.java
! src/share/classes/java/util/stream/SliceOps.java
! src/share/classes/java/util/stream/SortedOps.java
From joe.darcy at oracle.com Tue Aug 27 18:46:44 2013
From: joe.darcy at oracle.com (joe.darcy at oracle.com)
Date: Tue, 27 Aug 2013 18:46:44 +0000
Subject: hg: jdk8/tl/jdk: 8023827: Fix doclint issues in javax.net.ssl
Message-ID: <20130827184707.54C9948BE2@hg.openjdk.java.net>
Changeset: 51151b440e95
Author: darcy
Date: 2013-08-27 11:46 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/51151b440e95
8023827: Fix doclint issues in javax.net.ssl
Reviewed-by: wetmore, xuelei
! src/share/classes/javax/net/ssl/SNIHostName.java
! src/share/classes/javax/net/ssl/X509KeyManager.java
From bhavesh.x.patel at oracle.com Tue Aug 27 18:42:23 2013
From: bhavesh.x.patel at oracle.com (bhavesh.x.patel at oracle.com)
Date: Tue, 27 Aug 2013 18:42:23 +0000
Subject: hg: jdk8/tl/langtools: 7052170: javadoc -charset option generates
wrong meta tag
Message-ID: <20130827184229.9910448BE1@hg.openjdk.java.net>
Changeset: 7fb27bc201cc
Author: bpatel
Date: 2013-08-27 11:41 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/7fb27bc201cc
7052170: javadoc -charset option generates wrong meta tag
Reviewed-by: jjg
! src/share/classes/com/sun/tools/doclets/formats/html/HtmlDocletWriter.java
! src/share/classes/com/sun/tools/doclets/formats/html/markup/HtmlAttr.java
! src/share/classes/com/sun/tools/doclets/formats/html/markup/HtmlDocWriter.java
! src/share/classes/com/sun/tools/doclets/formats/html/markup/HtmlTree.java
+ test/com/sun/javadoc/testCharset/TestCharset.java
+ test/com/sun/javadoc/testCharset/pkg/Foo.java
From joe.darcy at oracle.com Tue Aug 27 18:59:39 2013
From: joe.darcy at oracle.com (joe.darcy at oracle.com)
Date: Tue, 27 Aug 2013 18:59:39 +0000
Subject: hg: jdk8/tl/langtools: 8023826: Typo in warning about obsolete source
/ target values
Message-ID: <20130827185942.4591C48BE3@hg.openjdk.java.net>
Changeset: 662a5188bded
Author: darcy
Date: 2013-08-27 11:58 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/662a5188bded
8023826: Typo in warning about obsolete source / target values
Reviewed-by: jjg, wmdietl
! src/share/classes/com/sun/tools/javac/main/JavaCompiler.java
From xueming.shen at oracle.com Tue Aug 27 19:51:41 2013
From: xueming.shen at oracle.com (xueming.shen at oracle.com)
Date: Tue, 27 Aug 2013 19:51:41 +0000
Subject: hg: jdk8/tl/jdk: 8023647: "abc1c".matches("(\\w)+1\\1")) returns false
Message-ID: <20130827195214.B335F48BEF@hg.openjdk.java.net>
Changeset: 3f6777cbfe69
Author: sherman
Date: 2013-08-27 12:54 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/3f6777cbfe69
8023647: "abc1c".matches("(\\w)+1\\1")) returns false
Summary: to correct the wrong GroupCurly group index backoff code
Reviewed-by: alanb
! src/share/classes/java/util/regex/Pattern.java
! test/java/util/regex/RegExTest.java
From xuelei.fan at oracle.com Wed Aug 28 09:02:06 2013
From: xuelei.fan at oracle.com (Xuelei Fan)
Date: Wed, 28 Aug 2013 17:02:06 +0800
Subject: [JDK 8] Code review request 7188657, There should be a way to reorder
the JSSE ciphers
Message-ID: <521DBC8E.6060300@oracle.com>
Hi,
Please review this update to support cipher suites reorder:
webrev: http://cr.openjdk.java.net/~xuelei/7188657/webrev.00/
Two new methods are added to SSLParameters:
public final void setUseCipherSuitesOrder(boolean honorOrder);
public final boolean getUseCipherSuitesOrder();
If SSLParameters.getUseCipherSuitesOrder() return true, the local cipher
suites order returned in SSLParameters.getCipherSuites() should be
honored during SSL/TLS handshaking.
Considering the potential compatibility issues of third party's
implementation, I won't define the behaviors if
SSLParameters.getUseCipherSuitesOrder() return false. For Oracle
provider, SunJSSE, if getUseCipherSuitesOrder() returns false, the order
of SSLParameters.getCipherSuites() is honored in client side, and the
order of the requested cipher suites in client handshake message is
honored in server side.
Thanks,
Xuelei
From fweimer at redhat.com Wed Aug 28 09:57:56 2013
From: fweimer at redhat.com (Florian Weimer)
Date: Wed, 28 Aug 2013 11:57:56 +0200
Subject: [JDK 8] Code review request 7188657, There should be a way to
reorder the JSSE ciphers
In-Reply-To: <521DBC8E.6060300@oracle.com>
References: <521DBC8E.6060300@oracle.com>
Message-ID: <521DC9A4.20809@redhat.com>
On 08/28/2013 11:02 AM, Xuelei Fan wrote:
> Hi,
>
> Please review this update to support cipher suites reorder:
>
> webrev: http://cr.openjdk.java.net/~xuelei/7188657/webrev.00/
>
> Two new methods are added to SSLParameters:
> public final void setUseCipherSuitesOrder(boolean honorOrder);
> public final boolean getUseCipherSuitesOrder();
>
> If SSLParameters.getUseCipherSuitesOrder() return true, the local cipher
> suites order returned in SSLParameters.getCipherSuites() should be
> honored during SSL/TLS handshaking.
The documentation should say this parameter only applies to the server
side because that's the party that picks the cipher suite.
I wonder if an enum (with members LOCAL and PEER, and perhaps
UNSPECIFIED) would be more appropriate than a boolean flag.
--
Florian Weimer / Red Hat Product Security Team
From xuelei.fan at oracle.com Wed Aug 28 10:43:06 2013
From: xuelei.fan at oracle.com (Xuelei Fan)
Date: Wed, 28 Aug 2013 18:43:06 +0800
Subject: [JDK 8] Code review request 7188657, There should be a way to
reorder the JSSE ciphers
In-Reply-To: <521DC9A4.20809@redhat.com>
References: <521DBC8E.6060300@oracle.com> <521DC9A4.20809@redhat.com>
Message-ID: <521DD43A.9000700@oracle.com>
On 8/28/2013 5:57 PM, Florian Weimer wrote:
> On 08/28/2013 11:02 AM, Xuelei Fan wrote:
>> Hi,
>>
>> Please review this update to support cipher suites reorder:
>>
>> webrev: http://cr.openjdk.java.net/~xuelei/7188657/webrev.00/
>>
>> Two new methods are added to SSLParameters:
>> public final void setUseCipherSuitesOrder(boolean honorOrder);
>> public final boolean getUseCipherSuitesOrder();
>>
>> If SSLParameters.getUseCipherSuitesOrder() return true, the local cipher
>> suites order returned in SSLParameters.getCipherSuites() should be
>> honored during SSL/TLS handshaking.
>
> The documentation should say this parameter only applies to the server
> side because that's the party that picks the cipher suite.
>
It is the initial motivation to update the behavior of server cipher
suite selection. However, we noted that we never specify the ordering
of cipher suites in ClientHello message. Although Oracle provider honor
the order of SSLParameters.getCipherSuites() for year, but we never say
how actually do it. It's good time to specify the ordering in client
side also in this update.
This API will not impact client behavior of Oracle provider. However,
it can be an instinctive guide for third party's provider
implementation, and a clear spec for application to enforce the cipher
suites ordering.
> I wonder if an enum (with members LOCAL and PEER, and perhaps
> UNSPECIFIED) would be more appropriate than a boolean flag.
I understand your concerns. It's pretty confusing when one think
SSLParameters in both client and server sides. The confusing happens
not only on this pair of methods, but also on some old methods, for
example s/getProtocols().
But I think if we think the method from one side, client or server, each
time, the meaning may be easy to understand. In client side,
setUseCipherSuitesOrder() means to honor the local/client cipher suites
order; In server side, setUseCipherSuitesOrder() means to honor the
local/server cipher suites order.
Per your suggestion, as PEER cannot apply to client side, it might be a
little confusing for client side application developers.
Thanks for the support!
Regards,
Xuelei
From alan.bateman at oracle.com Wed Aug 28 14:33:51 2013
From: alan.bateman at oracle.com (alan.bateman at oracle.com)
Date: Wed, 28 Aug 2013 14:33:51 +0000
Subject: hg: jdk8/tl/jdk: 8023717: (process) ProcessBuilder should catch
SecurityException rather than AccessControlException
Message-ID: <20130828143416.D038248C29@hg.openjdk.java.net>
Changeset: 2efa310226f7
Author: alanb
Date: 2013-08-28 14:07 +0100
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/2efa310226f7
8023717: (process) ProcessBuilder should catch SecurityException rather than AccessControlException
Reviewed-by: wetmore, alanb
Contributed-by: martinrb at google.com
! src/share/classes/java/lang/ProcessBuilder.java
From alan.bateman at oracle.com Wed Aug 28 14:53:08 2013
From: alan.bateman at oracle.com (alan.bateman at oracle.com)
Date: Wed, 28 Aug 2013 14:53:08 +0000
Subject: hg: jdk8/tl/jdk: 8022594: Potential deadlock in of
sun.nio.ch.Util/IOUtil
Message-ID: <20130828145330.265AB48C2B@hg.openjdk.java.net>
Changeset: 378acd4d03c8
Author: alanb
Date: 2013-08-28 15:50 +0100
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/378acd4d03c8
8022594: Potential deadlock in of sun.nio.ch.Util/IOUtil
Reviewed-by: chegar
! src/macosx/classes/sun/nio/ch/KQueueArrayWrapper.java
! src/macosx/classes/sun/nio/ch/KQueueSelectorImpl.java
! src/share/classes/sun/nio/ch/AbstractPollSelectorImpl.java
! src/share/classes/sun/nio/ch/DatagramChannelImpl.java
! src/share/classes/sun/nio/ch/FileChannelImpl.java
! src/share/classes/sun/nio/ch/IOUtil.java
! src/share/classes/sun/nio/ch/Net.java
! src/share/classes/sun/nio/ch/ServerSocketChannelImpl.java
! src/share/classes/sun/nio/ch/SocketChannelImpl.java
! src/share/classes/sun/nio/ch/Util.java
! src/solaris/classes/sun/nio/ch/DatagramDispatcher.java
! src/solaris/classes/sun/nio/ch/DevPollArrayWrapper.java
! src/solaris/classes/sun/nio/ch/DevPollSelectorImpl.java
! src/solaris/classes/sun/nio/ch/EPoll.java
! src/solaris/classes/sun/nio/ch/EPollArrayWrapper.java
! src/solaris/classes/sun/nio/ch/EPollPort.java
! src/solaris/classes/sun/nio/ch/EPollSelectorImpl.java
! src/solaris/classes/sun/nio/ch/FileDispatcherImpl.java
! src/solaris/classes/sun/nio/ch/InheritedChannel.java
! src/solaris/classes/sun/nio/ch/KQueue.java
! src/solaris/classes/sun/nio/ch/KQueuePort.java
! src/solaris/classes/sun/nio/ch/NativeThread.java
! src/solaris/classes/sun/nio/ch/PollArrayWrapper.java
! src/solaris/classes/sun/nio/ch/SinkChannelImpl.java
! src/solaris/classes/sun/nio/ch/SolarisEventPort.java
! src/solaris/classes/sun/nio/ch/SourceChannelImpl.java
! src/solaris/classes/sun/nio/ch/UnixAsynchronousServerSocketChannelImpl.java
! src/solaris/classes/sun/nio/ch/UnixAsynchronousSocketChannelImpl.java
! src/solaris/classes/sun/nio/ch/sctp/SctpChannelImpl.java
! src/solaris/classes/sun/nio/ch/sctp/SctpMultiChannelImpl.java
! src/solaris/classes/sun/nio/ch/sctp/SctpServerChannelImpl.java
! src/windows/classes/sun/nio/ch/DatagramDispatcher.java
! src/windows/classes/sun/nio/ch/FileDispatcherImpl.java
! src/windows/classes/sun/nio/ch/FileKey.java
! src/windows/classes/sun/nio/ch/Iocp.java
! src/windows/classes/sun/nio/ch/PipeImpl.java
! src/windows/classes/sun/nio/ch/SocketDispatcher.java
! src/windows/classes/sun/nio/ch/WindowsAsynchronousFileChannelImpl.java
! src/windows/classes/sun/nio/ch/WindowsAsynchronousServerSocketChannelImpl.java
! src/windows/classes/sun/nio/ch/WindowsAsynchronousSocketChannelImpl.java
! src/windows/classes/sun/nio/ch/WindowsSelectorImpl.java
From xueming.shen at oracle.com Wed Aug 28 16:43:58 2013
From: xueming.shen at oracle.com (xueming.shen at oracle.com)
Date: Wed, 28 Aug 2013 16:43:58 +0000
Subject: hg: jdk8/tl/jdk: 8023713: ZipFileSystem crashes on old zip file
Message-ID: <20130828164438.79F9A6236B@hg.openjdk.java.net>
Changeset: 690b2931baef
Author: sherman
Date: 2013-08-28 09:46 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/690b2931baef
8023713: ZipFileSystem crashes on old zip file
Summary: to handle extra data field copy correctly even the extra data does not follow the spec
Reviewed-by: alanb, martin, chegar
! src/share/classes/java/util/zip/ZipOutputStream.java
! test/java/util/zip/TestExtraTime.java
From henry.jen at oracle.com Tue Aug 27 19:08:23 2013
From: henry.jen at oracle.com (henry.jen at oracle.com)
Date: Tue, 27 Aug 2013 19:08:23 +0000
Subject: hg: jdk8/tl/jdk: 8023275: Wrapping collections should override
default methods
Message-ID: <20130827190924.2BB8348BE8@hg.openjdk.java.net>
Changeset: ade440668f94
Author: henryjen
Date: 2013-08-26 22:32 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/ade440668f94
8023275: Wrapping collections should override default methods
Reviewed-by: mduigou, psandoz
! src/share/classes/java/util/Collections.java
+ test/java/util/Collections/Wrappers.java
From henry.jen at oracle.com Wed Aug 28 04:24:49 2013
From: henry.jen at oracle.com (henry.jen at oracle.com)
Date: Wed, 28 Aug 2013 04:24:49 +0000
Subject: hg: jdk8/tl/jdk: 8023528: Rename Comparator combinators to
disambiguate overloading methods
Message-ID: <20130828042521.5AB2A48C07@hg.openjdk.java.net>
Changeset: be2d25a277a7
Author: henryjen
Date: 2013-08-21 20:41 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/be2d25a277a7
8023528: Rename Comparator combinators to disambiguate overloading methods
Reviewed-by: mduigou, smarks
! src/share/classes/java/util/Comparator.java
! test/java/util/Comparator/BasicTest.java
! test/java/util/Map/EntryComparators.java
! test/java/util/function/BinaryOperator/BasicTest.java
From hartmans-ietf at mit.edu Wed Aug 28 14:47:53 2013
From: hartmans-ietf at mit.edu (Sam Hartman)
Date: Wed, 28 Aug 2013 10:47:53 -0400
Subject: [kitten] Fwd: Kitten Digest, Vol 104, Issue 14
In-Reply-To:
(Mayank Upadhyay's message of "Thu, 18 Jul 2013 22:34:04 -0700")
References:
Message-ID:
>>>>> "Mayank" == Mayank Upadhyay writes:
Mayank> Hi Weijun, You point out a legitimate problem, but I want
Mayank> to understand a couple of assumptions: 1. Why allow only
Mayank> initSecContext() and acceptSecContext() to have this new
Mayank> behavior? Imagine a mechanism built on top of TLS which is
Mayank> renegotiating the session intermixed with actual payload,
Mayank> and had some error it wanted to communicate to the peer
Mayank> (e.g., a TLS Alert). Is there any particular reason you'd
Mayank> like to avoid that scenario? 2. I didn't quite follow the
Hi.
RFC 2743 doesn't allow the abstract wrap or getmic apis to generate an
error token.
I'd object to adding that behavior to the java bindings without adding
it to the abstract API.
So, for the current abstract API, only initSecContext and
acceptSecContext can have this issue.
From henry.jen at oracle.com Wed Aug 28 17:17:30 2013
From: henry.jen at oracle.com (henry.jen at oracle.com)
Date: Wed, 28 Aug 2013 17:17:30 +0000
Subject: hg: jdk8/tl/langtools: 8014566: Remove @ignore tags from
MethodReference66 and InInterface when 8013875 is fixed
Message-ID: <20130828171737.A464F62371@hg.openjdk.java.net>
Changeset: 7de7100c30ce
Author: henryjen
Date: 2013-08-28 10:17 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/7de7100c30ce
8014566: Remove @ignore tags from MethodReference66 and InInterface when 8013875 is fixed
Reviewed-by: briangoetz, jjg
! test/tools/javac/lambda/MethodReference66.java
! test/tools/javac/lambda/lambdaExecution/InInterface.java
From paul.sandoz at oracle.com Wed Aug 28 20:13:49 2013
From: paul.sandoz at oracle.com (paul.sandoz at oracle.com)
Date: Wed, 28 Aug 2013 20:13:49 +0000
Subject: hg: jdk8/tl/jdk: 8023155: Ensure functional consistency across Random,
ThreadLocalRandom, SplittableRandom
Message-ID: <20130828201419.3B4096237E@hg.openjdk.java.net>
Changeset: b1f41565b806
Author: psandoz
Date: 2013-08-28 22:11 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/b1f41565b806
8023155: Ensure functional consistency across Random, ThreadLocalRandom, SplittableRandom
Reviewed-by: mduigou
Contributed-by: Doug Lea , Paul Sandoz
! src/share/classes/java/util/Random.java
! src/share/classes/java/util/concurrent/ThreadLocalRandom.java
! test/java/util/Random/RandomStreamTest.java
+ test/java/util/Random/RandomTest.java
! test/java/util/SplittableRandom/SplittableRandomTest.java
+ test/java/util/concurrent/ThreadLocalRandom/ThreadLocalRandomTest.java
From jonathan.gibbons at oracle.com Wed Aug 28 22:41:21 2013
From: jonathan.gibbons at oracle.com (jonathan.gibbons at oracle.com)
Date: Wed, 28 Aug 2013 22:41:21 +0000
Subject: hg: jdk8/tl/langtools: 8010310: [javadoc] Error processing sources
with -private
Message-ID: <20130828224126.38AC562385@hg.openjdk.java.net>
Changeset: 189942cdf585
Author: jjg
Date: 2013-08-28 15:40 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/189942cdf585
8010310: [javadoc] Error processing sources with -private
Reviewed-by: vromero, mcimadamore
! src/share/classes/com/sun/tools/javac/code/Symbol.java
! src/share/classes/com/sun/tools/javadoc/JavadocMemberEnter.java
+ test/tools/javadoc/nonConstExprs/Test.java
From hbhotz at lavenderwine.com Wed Aug 28 19:04:59 2013
From: hbhotz at lavenderwine.com (Henry B. Hotz)
Date: Wed, 28 Aug 2013 12:04:59 -0700
Subject: Code review request: 8012615: Realm.getRealmsList returns realms
list in wrong
In-Reply-To: <51F631CE.7080502@oracle.com>
References: <51F631CE.7080502@oracle.com>
Message-ID: <33B997A0-F339-4A41-A4FC-85D8B16D2FF2@lavenderwine.com>
I can't speak to the code, but your description of what *should* happen is correct.
I have no experience with complex X-relam setups (which have security issues even if the code is correct), but I do know that the MIT code does not "nest" its processing of the capath configuration which causes some non-intuitive behavior.
I expect that Heimdal does the same thing as MIT, but if you have time it might be nice to confirm that. If there are differences, I would welcome a discussion on the Heimdal list.
On Jul 29, 2013, at 2:11 AM, Weijun Wang wrote:
> Hi Valerie
>
> Please review the capaths code change at
>
> http://cr.openjdk.java.net/~weijun/8012615/webrev.01/
>
> It includes:
>
> Config.java
> ===========
>
> Add method to check if a sub-stanza exists.
>
> Realm.java
> ==========
>
> Rewrite reading cross-realm path for both [capaths] and hierarchy. The [capaths] part implements the chaining process.
>
> CredentialsUtils.java
> =====================
>
> When reading cross-realm TGT for a path A->B->C->D->SERVERREALM, the current impl first gets krbtgt/SERVERREALM at A, and then fallback to krbtgt/D at A, krbtgt/C at A and krbtgt/B at A. In fact, since the capath is already there, krbtgt/B at A should be the first to check. I don't know about the history of this code and dare not change much. But I at least reverse the order of the fallback (what the code calls inner loop) to try krbtgt/B at A first.
>
> Tried on a local setup of 5 MIT KDC realms configured with a one-direction cross-auth from K1 to K5. The MIT kvno command starts with kinit in K1 and goes thru krbtgt/K2 at K1, krbtgt/K3 at K2, krbtgt/K4 at K3, krbtgt/K5 at K4 and finally get service ticket to host/host.k5 at K5. Now Java can do the same with the same krb5.conf.
>
> Thanks
> Max
From valerie.peng at oracle.com Thu Aug 29 02:37:03 2013
From: valerie.peng at oracle.com (Valerie (Yu-Ching) Peng)
Date: Wed, 28 Aug 2013 19:37:03 -0700
Subject: Code review request: 8012615: Realm.getRealmsList returns realms
list in wrong
In-Reply-To: <5216EB3E.2020608@oracle.com>
References: <51F631CE.7080502@oracle.com> <5216CB52.3010304@oracle.com>
<5216EB3E.2020608@oracle.com>
Message-ID: <521EB3CF.1080509@oracle.com>
Thanks for the clarification on MIT's result on the test cases.
So, for majority of the test cases inside the regression test, we return
different results from what MIT returns? That's a little unsettling. How
about for the more complicated valid capaths definition? We for sure
will return the same results as MIT's, right?
It seems strange/confusing to have all these invalid capaths definition
as regression test.
I can see the value of the infinite-loop case to ensure that no OOME
occurs. But why should we care about the rest?
I hope that we won't be bound by these "non-interoperable" (or
vendor-specific) interpretation in the future.
As for your "learning from MIT" comment, if I understand it correctly,
it means that we will no longer treating the missing definition as "=."
but rather go hierarchy, right?
Valerie
On 08/22/13 21:55, Weijun Wang wrote:
>
> On 8/23/13 10:39 AM, Valerie (Yu-Ching) Peng wrote:
>>
>>
>> 1. Line 255, "returns if keys exists" should be "returns true if key
>> exists".
>> 2. Line 257, "@see get" should be "@see get0"?
>
> I meant looking at the how IAE is thrown in get. Updated to
>
> * @throws IllegalArgumentException if any of the keys is illegal
> * (See {@link #get})
>
>> 3. You may want to add the following to the public getAll(String...
>> keys) method.
>>
>> @throws IllegalArgumentException ...
>
> Yes.
>
>>
>> looks fine
>>
>> Before I looked at Realm.java, I looked at the test first to understand
>> the expected realm list result.
>>
>> Well, judging from the test, I feel the parsing of these CA path
>> settings are too relaxed.
>> You are allowing all sorts of short cuts and user errors. When has
>> capaths been implemented?
>>
>> I wonder what happens when MIT implementation run into these invalid
>> capath settings.
>> Is their implementation also interpret them like what you have here?
>
> Below are all differences using the krb5.conf in test
>
> --------- 1 ----------
> TIVOLI.COM = {
> IBM.COM = IBM_LDAPCENTRAL.COM MOONLITE.ORG
> IBM_LDAPCENTRAL.COM = LDAPCENTRAL.NET
> LDAPCENTRAL.NET = .
> }
>
> TIVOLI.COM -> IBM.COM
> MIT: [TIVOLI.COM, IBM_LDAPCENTRAL.COM]
> java: [TIVOLI.COM, LDAPCENTRAL.NET, IBM_LDAPCENTRAL.COM,
> MOONLITE.ORG]
>
> Here, the value for IBM.COM is two values on the same line, this is no
> legal in MIT. It simply read the first one. Java reads both and
> combines it with another value
Hmm, interesting.
> ---------- 2 -----------
> B1.COM = {
> B2.COM = .
> B3.COM = B2.COM
> B4.COM = B3.COM
> }
>
> B1.COM -> B4.COM
> MIT : [B1.COM, B3.COM]
> java: [B1.COM, B2.COM, B3.COM]
>
> Java combines 2 values
> ----------- 3 -----------
> C1.COM = {
> C3.COM = C2.COM
> }
>
> C1.COM -> C2.COM
> MIT : [C1.COM, COM]
> java: [C1.COM]
>
> When MIT cannot find the sRealm as key, it goes hierarchy. Java only
> does this when there is no cRealm sub-section
> ------------ 4 -----------
> D1.COM = {
> D2.COM=D1.COM
> }
>
> D1.COM -> D2.COM
> MIT : [D1.COM, D1.COM]
> java: [D1.COM]
>
> MIT returns dup realms
> ----------- 5 -------------
> E1.COM = {
> E2.COM = E2.COM
> E3.COM = E4.COM
> E3.COM = .
> }
>
> E1.COM -> E2.COM
> MIT : [E1.COM, E2.COM]
> java: [E1.COM]
>
> MIT returns dup realms (please remember path does not include last realm)
>
> E1.COM -> E3.COM
> MIT : [E1.COM, E4.COM, .]
> java: [E1.COM, E4.COM]
>
> "." should only appear as single value for one key. MIT does not
> notice it and blindly returns
> ----------- 6 ----------------
> A9.PRAGUE.XXX.CZ = {
> PRAGUE.XXX.CZ = .
> ROOT.XXX.CZ = PRAGUE.XXX.CZ
> SERVIS.XXX.CZ = ROOT.XXX.CZ
> }
>
> A9.PRAGUE.XXX.CZ -> SERVIS.XXX.CZ
> MIT : [A9.PRAGUE.XXX.CZ, ROOT.XXX.CZ]
> java: [A9.PRAGUE.XXX.CZ, PRAGUE.XXX.CZ, ROOT.XXX.CZ]
>
> Java combines 2 values
> ----------------------------
>
> For 1, 2, 6, Java combines and MIT reads single key. Since we decided
> to do this, it's OK.
>
> 4, 5, wrong config, Java manages to return a path as leasts look
> normal, MIT returns ugly path.
>
> 3, This is probably something we can learn from MIT. If you agree,
> I'll update webrev.
>
>>
>> I think your new comment on line 71 is more confusing.
>> Can you just say "D2=D1 is the same as D2=."?
>
> Yes. D1 should not appear as a target when it is the client realm. So
> "D2=D1" is just ignored, which is the same as "D2=.".
>
> As said above, if we decide to choose MIT's way to require a sRealm
> key to use capaths, "D2=D1" will still be regarded the same as "D2=.",
> but it will be different from no D2 line at all.
>
>>
>> What happens for the infinite loop case, i.e. G?
>> What should (G1, G2) returns? G1 G3?
>
> Yes. I first find G3, and look at G3=G2. Any realm that is either
> client, or target, or has appeared in the path is ignored.
>
> In this case, the config itself has a problem so there is no correct
> answer. Just want to make sure the search does not leads to a real
> infinite loop and then OOME.
>
> Thanks
> Max
>
>> Thanks,
>> Valerie
>>
>> On 07/29/13 02:11, Weijun Wang wrote:
>>> Hi Valerie
>>>
>>> Please review the capaths code change at
>>>
>>> http://cr.openjdk.java.net/~weijun/8012615/webrev.01/
>>>
>>> It includes:
>>>
>>> Config.java
>>> ===========
>>>
>>> Add method to check if a sub-stanza exists.
>>>
>>> Realm.java
>>> ==========
>>>
>>> Rewrite reading cross-realm path for both [capaths] and hierarchy. The
>>> [capaths] part implements the chaining process.
>>>
>>> CredentialsUtils.java
>>> =====================
>>>
>>> When reading cross-realm TGT for a path A->B->C->D->SERVERREALM, the
>>> current impl first gets krbtgt/SERVERREALM at A, and then fallback to
>>> krbtgt/D at A, krbtgt/C at A and krbtgt/B at A. In fact, since the capath is
>>> already there, krbtgt/B at A should be the first to check. I don't know
>>> about the history of this code and dare not change much. But I at
>>> least reverse the order of the fallback (what the code calls inner
>>> loop) to try krbtgt/B at A first.
>>>
>>> Tried on a local setup of 5 MIT KDC realms configured with a
>>> one-direction cross-auth from K1 to K5. The MIT kvno command starts
>>> with kinit in K1 and goes thru krbtgt/K2 at K1, krbtgt/K3 at K2,
>>> krbtgt/K4 at K3, krbtgt/K5 at K4 and finally get service ticket to
>>> host/host.k5 at K5. Now Java can do the same with the same krb5.conf.
>>>
>>> Thanks
>>> Max
>>
From weijun.wang at oracle.com Thu Aug 29 05:52:43 2013
From: weijun.wang at oracle.com (Weijun Wang)
Date: Thu, 29 Aug 2013 13:52:43 +0800
Subject: Code review request: 8012615: Realm.getRealmsList returns realms
list in wrong
In-Reply-To: <521EB3CF.1080509@oracle.com>
References: <51F631CE.7080502@oracle.com> <5216CB52.3010304@oracle.com>
<5216EB3E.2020608@oracle.com> <521EB3CF.1080509@oracle.com>
Message-ID: <521EE1AB.7000304@oracle.com>
On 8/29/13 10:37 AM, Valerie (Yu-Ching) Peng wrote:
>
> Thanks for the clarification on MIT's result on the test cases.
>
> So, for majority of the test cases inside the regression test, we return
> different results from what MIT returns? That's a little unsettling.
Well that's about the chaining Java does. Since that's the harder part
to implement, I add more tests for it.
> How about for the more complicated valid capaths definition?
Yes I can. However, since the MIT style just reads one value, I doubt it
can be more complicated. It can be longer of course.
> We for sure will return the same results as MIT's, right?
I think so. At least for the first 4 cases in the test, which is from
MIT's own krb5.conf example, the results are the same.
>
> It seems strange/confusing to have all these invalid capaths definition
> as regression test.
> I can see the value of the infinite-loop case to ensure that no OOME
> occurs. But why should we care about the rest?
Yes, I believe there is no right answer to an invalid capaths. But since
we had to deal with them anyway, I'd like to keep these test cases to
make sure the implementation is consistent.
> I hope that we won't be bound by these "non-interoperable" (or
> vendor-specific) interpretation in the future.
>
> As for your "learning from MIT" comment, if I understand it correctly,
> it means that we will no longer treating the missing definition as "=."
> but rather go hierarchy, right?
Correct.
Thanks
Max
> Valerie
>
> On 08/22/13 21:55, Weijun Wang wrote:
>>
>> On 8/23/13 10:39 AM, Valerie (Yu-Ching) Peng wrote:
>>>
>>>
>>> 1. Line 255, "returns if keys exists" should be "returns true if key
>>> exists".
>>> 2. Line 257, "@see get" should be "@see get0"?
>>
>> I meant looking at the how IAE is thrown in get. Updated to
>>
>> * @throws IllegalArgumentException if any of the keys is illegal
>> * (See {@link #get})
>>
>>> 3. You may want to add the following to the public getAll(String...
>>> keys) method.
>>>
>>> @throws IllegalArgumentException ...
>>
>> Yes.
>>
>>>
>>> looks fine
>>>
>>> Before I looked at Realm.java, I looked at the test first to understand
>>> the expected realm list result.
>>>
>>> Well, judging from the test, I feel the parsing of these CA path
>>> settings are too relaxed.
>>> You are allowing all sorts of short cuts and user errors. When has
>>> capaths been implemented?
>>>
>>> I wonder what happens when MIT implementation run into these invalid
>>> capath settings.
>>> Is their implementation also interpret them like what you have here?
>>
>> Below are all differences using the krb5.conf in test
>>
>> --------- 1 ----------
>> TIVOLI.COM = {
>> IBM.COM = IBM_LDAPCENTRAL.COM MOONLITE.ORG
>> IBM_LDAPCENTRAL.COM = LDAPCENTRAL.NET
>> LDAPCENTRAL.NET = .
>> }
>>
>> TIVOLI.COM -> IBM.COM
>> MIT: [TIVOLI.COM, IBM_LDAPCENTRAL.COM]
>> java: [TIVOLI.COM, LDAPCENTRAL.NET, IBM_LDAPCENTRAL.COM,
>> MOONLITE.ORG]
>>
>> Here, the value for IBM.COM is two values on the same line, this is no
>> legal in MIT. It simply read the first one. Java reads both and
>> combines it with another value
> Hmm, interesting.
>
>
>> ---------- 2 -----------
>> B1.COM = {
>> B2.COM = .
>> B3.COM = B2.COM
>> B4.COM = B3.COM
>> }
>>
>> B1.COM -> B4.COM
>> MIT : [B1.COM, B3.COM]
>> java: [B1.COM, B2.COM, B3.COM]
>>
>> Java combines 2 values
>> ----------- 3 -----------
>> C1.COM = {
>> C3.COM = C2.COM
>> }
>>
>> C1.COM -> C2.COM
>> MIT : [C1.COM, COM]
>> java: [C1.COM]
>>
>> When MIT cannot find the sRealm as key, it goes hierarchy. Java only
>> does this when there is no cRealm sub-section
>> ------------ 4 -----------
>> D1.COM = {
>> D2.COM=D1.COM
>> }
>>
>> D1.COM -> D2.COM
>> MIT : [D1.COM, D1.COM]
>> java: [D1.COM]
>>
>> MIT returns dup realms
>> ----------- 5 -------------
>> E1.COM = {
>> E2.COM = E2.COM
>> E3.COM = E4.COM
>> E3.COM = .
>> }
>>
>> E1.COM -> E2.COM
>> MIT : [E1.COM, E2.COM]
>> java: [E1.COM]
>>
>> MIT returns dup realms (please remember path does not include last realm)
>>
>> E1.COM -> E3.COM
>> MIT : [E1.COM, E4.COM, .]
>> java: [E1.COM, E4.COM]
>>
>> "." should only appear as single value for one key. MIT does not
>> notice it and blindly returns
>> ----------- 6 ----------------
>> A9.PRAGUE.XXX.CZ = {
>> PRAGUE.XXX.CZ = .
>> ROOT.XXX.CZ = PRAGUE.XXX.CZ
>> SERVIS.XXX.CZ = ROOT.XXX.CZ
>> }
>>
>> A9.PRAGUE.XXX.CZ -> SERVIS.XXX.CZ
>> MIT : [A9.PRAGUE.XXX.CZ, ROOT.XXX.CZ]
>> java: [A9.PRAGUE.XXX.CZ, PRAGUE.XXX.CZ, ROOT.XXX.CZ]
>>
>> Java combines 2 values
>> ----------------------------
>>
>> For 1, 2, 6, Java combines and MIT reads single key. Since we decided
>> to do this, it's OK.
>>
>> 4, 5, wrong config, Java manages to return a path as leasts look
>> normal, MIT returns ugly path.
>>
>> 3, This is probably something we can learn from MIT. If you agree,
>> I'll update webrev.
>>
>>>
>>> I think your new comment on line 71 is more confusing.
>>> Can you just say "D2=D1 is the same as D2=."?
>>
>> Yes. D1 should not appear as a target when it is the client realm. So
>> "D2=D1" is just ignored, which is the same as "D2=.".
>>
>> As said above, if we decide to choose MIT's way to require a sRealm
>> key to use capaths, "D2=D1" will still be regarded the same as "D2=.",
>> but it will be different from no D2 line at all.
>>
>>>
>>> What happens for the infinite loop case, i.e. G?
>>> What should (G1, G2) returns? G1 G3?
>>
>> Yes. I first find G3, and look at G3=G2. Any realm that is either
>> client, or target, or has appeared in the path is ignored.
>>
>> In this case, the config itself has a problem so there is no correct
>> answer. Just want to make sure the search does not leads to a real
>> infinite loop and then OOME.
>>
>> Thanks
>> Max
>>
>>> Thanks,
>>> Valerie
>>>
>>> On 07/29/13 02:11, Weijun Wang wrote:
>>>> Hi Valerie
>>>>
>>>> Please review the capaths code change at
>>>>
>>>> http://cr.openjdk.java.net/~weijun/8012615/webrev.01/
>>>>
>>>> It includes:
>>>>
>>>> Config.java
>>>> ===========
>>>>
>>>> Add method to check if a sub-stanza exists.
>>>>
>>>> Realm.java
>>>> ==========
>>>>
>>>> Rewrite reading cross-realm path for both [capaths] and hierarchy. The
>>>> [capaths] part implements the chaining process.
>>>>
>>>> CredentialsUtils.java
>>>> =====================
>>>>
>>>> When reading cross-realm TGT for a path A->B->C->D->SERVERREALM, the
>>>> current impl first gets krbtgt/SERVERREALM at A, and then fallback to
>>>> krbtgt/D at A, krbtgt/C at A and krbtgt/B at A. In fact, since the capath is
>>>> already there, krbtgt/B at A should be the first to check. I don't know
>>>> about the history of this code and dare not change much. But I at
>>>> least reverse the order of the fallback (what the code calls inner
>>>> loop) to try krbtgt/B at A first.
>>>>
>>>> Tried on a local setup of 5 MIT KDC realms configured with a
>>>> one-direction cross-auth from K1 to K5. The MIT kvno command starts
>>>> with kinit in K1 and goes thru krbtgt/K2 at K1, krbtgt/K3 at K2,
>>>> krbtgt/K4 at K3, krbtgt/K5 at K4 and finally get service ticket to
>>>> host/host.k5 at K5. Now Java can do the same with the same krb5.conf.
>>>>
>>>> Thanks
>>>> Max
>>>
>
From staffan.larsen at oracle.com Thu Aug 29 09:26:05 2013
From: staffan.larsen at oracle.com (staffan.larsen at oracle.com)
Date: Thu, 29 Aug 2013 09:26:05 +0000
Subject: hg: jdk8/tl/jdk: 8023786: (jdk) setjmp/longjmp changes the process
signal mask on OS X
Message-ID: <20130829093110.91F276239C@hg.openjdk.java.net>
Changeset: 779ff9f3b2e3
Author: sla
Date: 2013-08-29 11:22 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/779ff9f3b2e3
8023786: (jdk) setjmp/longjmp changes the process signal mask on OS X
Reviewed-by: dholmes
! src/share/back/SDE.c
! src/share/native/common/check_code.c
From dan.xu at oracle.com Thu Aug 29 17:44:20 2013
From: dan.xu at oracle.com (dan.xu at oracle.com)
Date: Thu, 29 Aug 2013 17:44:20 +0000
Subject: hg: jdk8/tl/jdk: 4792059: test/java/io/pathNames/GeneralSolaris.java
fails on symbolic links
Message-ID: <20130829174445.5008B623C7@hg.openjdk.java.net>
Changeset: 5bf4f2eeee85
Author: dxu
Date: 2013-08-29 10:43 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/5bf4f2eeee85
4792059: test/java/io/pathNames/GeneralSolaris.java fails on symbolic links
Summary: Exclude the possible usage of linked files or directories in the test
Reviewed-by: alanb
! test/java/io/pathNames/General.java
From jonathan.gibbons at oracle.com Thu Aug 29 18:42:43 2013
From: jonathan.gibbons at oracle.com (jonathan.gibbons at oracle.com)
Date: Thu, 29 Aug 2013 18:42:43 +0000
Subject: hg: jdk8/tl/langtools: 8001669: javadoc internal DocletAbortException
should set cause when appropriate
Message-ID: <20130829184250.9071D623CF@hg.openjdk.java.net>
Changeset: 0e6577980181
Author: jjg
Date: 2013-08-29 11:41 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/0e6577980181
8001669: javadoc internal DocletAbortException should set cause when appropriate
Reviewed-by: darcy
! src/share/classes/com/sun/tools/doclets/formats/html/AllClassesFrameWriter.java
! src/share/classes/com/sun/tools/doclets/formats/html/AnnotationTypeWriterImpl.java
! src/share/classes/com/sun/tools/doclets/formats/html/ClassUseWriter.java
! src/share/classes/com/sun/tools/doclets/formats/html/ClassWriterImpl.java
! src/share/classes/com/sun/tools/doclets/formats/html/DeprecatedListWriter.java
! src/share/classes/com/sun/tools/doclets/formats/html/FrameOutputWriter.java
! src/share/classes/com/sun/tools/doclets/formats/html/HelpWriter.java
! src/share/classes/com/sun/tools/doclets/formats/html/HtmlDoclet.java
! src/share/classes/com/sun/tools/doclets/formats/html/PackageFrameWriter.java
! src/share/classes/com/sun/tools/doclets/formats/html/PackageIndexFrameWriter.java
! src/share/classes/com/sun/tools/doclets/formats/html/PackageIndexWriter.java
! src/share/classes/com/sun/tools/doclets/formats/html/PackageTreeWriter.java
! src/share/classes/com/sun/tools/doclets/formats/html/PackageUseWriter.java
! src/share/classes/com/sun/tools/doclets/formats/html/ProfileIndexFrameWriter.java
! src/share/classes/com/sun/tools/doclets/formats/html/ProfilePackageFrameWriter.java
! src/share/classes/com/sun/tools/doclets/formats/html/ProfilePackageIndexFrameWriter.java
! src/share/classes/com/sun/tools/doclets/formats/html/SingleIndexWriter.java
! src/share/classes/com/sun/tools/doclets/formats/html/SplitIndexWriter.java
! src/share/classes/com/sun/tools/doclets/formats/html/TreeWriter.java
! src/share/classes/com/sun/tools/doclets/formats/html/markup/Comment.java
! src/share/classes/com/sun/tools/doclets/formats/html/markup/DocType.java
! src/share/classes/com/sun/tools/doclets/formats/html/markup/HtmlDocument.java
! src/share/classes/com/sun/tools/doclets/formats/html/markup/RawHtml.java
! src/share/classes/com/sun/tools/doclets/formats/html/markup/StringContent.java
! src/share/classes/com/sun/tools/doclets/internal/toolkit/Configuration.java
! src/share/classes/com/sun/tools/doclets/internal/toolkit/Content.java
! src/share/classes/com/sun/tools/doclets/internal/toolkit/builders/AbstractBuilder.java
! src/share/classes/com/sun/tools/doclets/internal/toolkit/builders/AbstractMemberBuilder.java
! src/share/classes/com/sun/tools/doclets/internal/toolkit/builders/LayoutParser.java
! src/share/classes/com/sun/tools/doclets/internal/toolkit/builders/SerializedFormBuilder.java
! src/share/classes/com/sun/tools/doclets/internal/toolkit/taglets/ValueTaglet.java
! src/share/classes/com/sun/tools/doclets/internal/toolkit/util/ClassUseMapper.java
! src/share/classes/com/sun/tools/doclets/internal/toolkit/util/DocFile.java
! src/share/classes/com/sun/tools/doclets/internal/toolkit/util/DocletAbortException.java
! src/share/classes/com/sun/tools/doclets/internal/toolkit/util/PackageListWriter.java
! src/share/classes/com/sun/tools/doclets/internal/toolkit/util/PathDocFileFactory.java
! src/share/classes/com/sun/tools/doclets/internal/toolkit/util/SimpleDocFileFactory.java
! src/share/classes/com/sun/tools/doclets/internal/toolkit/util/StandardDocFileFactory.java
! src/share/classes/com/sun/tools/doclets/internal/toolkit/util/Util.java
From jonathan.gibbons at oracle.com Thu Aug 29 18:58:03 2013
From: jonathan.gibbons at oracle.com (jonathan.gibbons at oracle.com)
Date: Thu, 29 Aug 2013 18:58:03 +0000
Subject: hg: jdk8/tl/langtools: 8023522:
tools/javac/tree/TypeAnnotationsPretty.java test cases with @TA
newline fail on windows only
Message-ID: <20130829185809.5FF98623D3@hg.openjdk.java.net>
Changeset: b0b25c1f6cbd
Author: jjg
Date: 2013-08-29 11:57 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/b0b25c1f6cbd
8023522: tools/javac/tree/TypeAnnotationsPretty.java test cases with @TA newline fail on windows only
Reviewed-by: darcy
! test/tools/javac/tree/TypeAnnotationsPretty.java
From jonathan.gibbons at oracle.com Thu Aug 29 19:04:23 2013
From: jonathan.gibbons at oracle.com (jonathan.gibbons at oracle.com)
Date: Thu, 29 Aug 2013 19:04:23 +0000
Subject: hg: jdk8/tl/langtools: 8013384: Potential infinite loop in javadoc
Message-ID: <20130829190432.B1D57623D8@hg.openjdk.java.net>
Changeset: 9c0e192c0926
Author: jjg
Date: 2013-08-29 12:03 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/9c0e192c0926
8013384: Potential infinite loop in javadoc
Reviewed-by: darcy
! src/share/classes/com/sun/tools/javadoc/ClassDocImpl.java
From jonathan.gibbons at oracle.com Thu Aug 29 19:12:25 2013
From: jonathan.gibbons at oracle.com (jonathan.gibbons at oracle.com)
Date: Thu, 29 Aug 2013 19:12:25 +0000
Subject: hg: jdk8/tl/langtools: 8022744: javac -Xpkginfo command's
documentation is sparse
Message-ID: <20130829191232.EF632623DA@hg.openjdk.java.net>
Changeset: 96b6865eda94
Author: jjg
Date: 2013-08-29 12:11 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/96b6865eda94
8022744: javac -Xpkginfo command's documentation is sparse
Reviewed-by: darcy
! src/share/classes/com/sun/tools/javac/main/Option.java
From mike.duigou at oracle.com Thu Aug 29 23:05:12 2013
From: mike.duigou at oracle.com (mike.duigou at oracle.com)
Date: Thu, 29 Aug 2013 23:05:12 +0000
Subject: hg: jdk8/tl: 8023892: test/Makefile shouldn't try to tell
langtools/test/Makefile where to put output.
Message-ID: <20130829230512.8E950623FC@hg.openjdk.java.net>
Changeset: 51a61778a99d
Author: mduigou
Date: 2013-08-29 16:04 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/rev/51a61778a99d
8023892: test/Makefile shouldn't try to tell langtools/test/Makefile where to put output.
Reviewed-by: erikj, vromero, henryjen
! test/Makefile
From jonathan.gibbons at oracle.com Fri Aug 30 02:20:32 2013
From: jonathan.gibbons at oracle.com (jonathan.gibbons at oracle.com)
Date: Fri, 30 Aug 2013 02:20:32 +0000
Subject: hg: jdk8/tl/langtools: 8023833: Replace direct use of AnnotatedType
in javadoc code
Message-ID: <20130830022040.35E3D62403@hg.openjdk.java.net>
Changeset: 23f0f3c9c44a
Author: jjg
Date: 2013-08-29 19:19 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/23f0f3c9c44a
8023833: Replace direct use of AnnotatedType in javadoc code
Reviewed-by: darcy
! src/share/classes/com/sun/tools/javadoc/AnnotatedTypeImpl.java
! src/share/classes/com/sun/tools/javadoc/TypeMaker.java
! src/share/classes/com/sun/tools/javadoc/TypeVariableImpl.java
From xuelei.fan at oracle.com Fri Aug 30 01:59:41 2013
From: xuelei.fan at oracle.com (xuelei.fan at oracle.com)
Date: Fri, 30 Aug 2013 01:59:41 +0000
Subject: hg: jdk8/tl/jdk: 8023881: IDN.USE_STD3_ASCII_RULES option is too
strict to use Unicode in IDN.toASCII
Message-ID: <20130830015953.C9E4362401@hg.openjdk.java.net>
Changeset: cdf68747b0fb
Author: xuelei
Date: 2013-08-29 18:58 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/cdf68747b0fb
8023881: IDN.USE_STD3_ASCII_RULES option is too strict to use Unicode in IDN.toASCII
Reviewed-by: michaelm
! src/share/classes/java/net/IDN.java
+ test/java/net/IDN/UseSTD3ASCIIRules.java
From anthony.scarpino at oracle.com Fri Aug 30 03:09:53 2013
From: anthony.scarpino at oracle.com (Anthony Scarpino)
Date: Thu, 29 Aug 2013 20:09:53 -0700
Subject: Code review request: 8009438 sun/security/pkcs11/Secmod tests failing
on Ubuntu 12.04
Message-ID: <52200D01.9010501@oracle.com>
Hi,
I need a review of the below webrev for 8009438
sun/security/pkcs11/Secmod tests failing on Ubuntu 12.04
http://cr.openjdk.java.net/~ascarpino/8009438/
No additional tests are needed as this change makes existing test work
properly on NSS v3.14
thanks
Tony
From fweimer at redhat.com Fri Aug 30 07:52:09 2013
From: fweimer at redhat.com (Florian Weimer)
Date: Fri, 30 Aug 2013 09:52:09 +0200
Subject: [JDK 8] Code review request 7188657, There should be a way to
reorder the JSSE ciphers
In-Reply-To: <521DD43A.9000700@oracle.com>
References: <521DBC8E.6060300@oracle.com> <521DC9A4.20809@redhat.com>
<521DD43A.9000700@oracle.com>
Message-ID: <52204F29.8070402@redhat.com>
On 08/28/2013 12:43 PM, Xuelei Fan wrote:
> It is the initial motivation to update the behavior of server cipher
> suite selection. However, we noted that we never specify the ordering
> of cipher suites in ClientHello message. Although Oracle provider honor
> the order of SSLParameters.getCipherSuites() for year, but we never say
> how actually do it. It's good time to specify the ordering in client
> side also in this update.
>
> This API will not impact client behavior of Oracle provider. However,
> it can be an instinctive guide for third party's provider
> implementation, and a clear spec for application to enforce the cipher
> suites ordering.
Ah, so for clients, there are two or three unknowns affecting the cipher
suite selection: the JSSE provider might reorder the suites prior to
transmission, the server might not support the requested algorithms with
the highest priority, or it might prioritize its choice of algorithm not
based on the order of received cipher suites, but some other criterion.
On the server side, the JSSE provider might ignore the new parameter.
Is it possible to include this information in the Javadoc, without
making it part of the specification? This looks like useful information
to me.
--
Florian Weimer / Red Hat Product Security Team
From vincent.x.ryan at oracle.com Fri Aug 30 07:55:29 2013
From: vincent.x.ryan at oracle.com (Vincent Ryan)
Date: Fri, 30 Aug 2013 08:55:29 +0100
Subject: Code review request: 8009438 sun/security/pkcs11/Secmod tests
failing on Ubuntu 12.04
In-Reply-To: <52200D01.9010501@oracle.com>
References: <52200D01.9010501@oracle.com>
Message-ID: <135B2354-1337-4464-9142-BA8A477FBA51@oracle.com>
Your fix looks good Tony.
Thanks.
On 30 Aug 2013, at 04:09, Anthony Scarpino wrote:
> Hi,
>
> I need a review of the below webrev for 8009438 sun/security/pkcs11/Secmod tests failing on Ubuntu 12.04
>
> http://cr.openjdk.java.net/~ascarpino/8009438/
>
> No additional tests are needed as this change makes existing test work properly on NSS v3.14
>
> thanks
>
> Tony
From xuelei.fan at oracle.com Fri Aug 30 08:04:05 2013
From: xuelei.fan at oracle.com (Xuelei Fan)
Date: Fri, 30 Aug 2013 16:04:05 +0800
Subject: [JDK 8] Code review request 7188657, There should be a way to
reorder the JSSE ciphers
In-Reply-To: <52204F29.8070402@redhat.com>
References: <521DBC8E.6060300@oracle.com> <521DC9A4.20809@redhat.com>
<521DD43A.9000700@oracle.com> <52204F29.8070402@redhat.com>
Message-ID: <522051F5.9060806@oracle.com>
On 8/30/2013 3:52 PM, Florian Weimer wrote:
> On 08/28/2013 12:43 PM, Xuelei Fan wrote:
>
>> It is the initial motivation to update the behavior of server cipher
>> suite selection. However, we noted that we never specify the ordering
>> of cipher suites in ClientHello message. Although Oracle provider honor
>> the order of SSLParameters.getCipherSuites() for year, but we never say
>> how actually do it. It's good time to specify the ordering in client
>> side also in this update.
>>
>> This API will not impact client behavior of Oracle provider. However,
>> it can be an instinctive guide for third party's provider
>> implementation, and a clear spec for application to enforce the cipher
>> suites ordering.
>
> Ah, so for clients, there are two or three unknowns affecting the cipher
> suite selection: the JSSE provider might reorder the suites prior to
> transmission, the server might not support the requested algorithms with
> the highest priority, or it might prioritize its choice of algorithm not
> based on the order of received cipher suites, but some other criterion.
>
True. Anyway, the server cannot select a cipher suite out of the
requested list.
> On the server side, the JSSE provider might ignore the new parameter.
>
> Is it possible to include this information in the Javadoc, without
> making it part of the specification? This looks like useful information
> to me.
>
Yes, should have a section in JSSE Reference Guide to describe the
impact of this parameter.
Thanks,
Xuelei
From jonathan.gibbons at oracle.com Fri Aug 30 18:50:05 2013
From: jonathan.gibbons at oracle.com (jonathan.gibbons at oracle.com)
Date: Fri, 30 Aug 2013 18:50:05 +0000
Subject: hg: jdk8/tl/langtools: 8023700: Use non breaking space in various
labels
Message-ID: <20130830185013.C200E6243A@hg.openjdk.java.net>
Changeset: 240f424cc0d5
Author: jjg
Date: 2013-08-30 11:48 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/240f424cc0d5
8023700: Use non breaking space in various labels
Reviewed-by: bpatel
! src/share/classes/com/sun/tools/doclets/formats/html/AnnotationTypeWriterImpl.java
! src/share/classes/com/sun/tools/doclets/formats/html/ClassWriterImpl.java
! src/share/classes/com/sun/tools/doclets/formats/html/markup/HtmlWriter.java
! test/com/sun/javadoc/testNavigation/TestNavigation.java
! test/com/sun/javadoc/testProfiles/TestProfiles.java
From jonathan.gibbons at oracle.com Fri Aug 30 22:16:09 2013
From: jonathan.gibbons at oracle.com (jonathan.gibbons at oracle.com)
Date: Fri, 30 Aug 2013 22:16:09 +0000
Subject: hg: jdk8/tl/langtools: 8024093: Two *.rej files checked in to
langtools/test directory
Message-ID: <20130830221612.C01AF62443@hg.openjdk.java.net>
Changeset: 3dd40e5715fb
Author: jjg
Date: 2013-08-30 15:14 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/3dd40e5715fb
8024093: Two *.rej files checked in to langtools/test directory
Reviewed-by: mchung
- test/tools/javac/diags/examples/MrefStat.java.rej
- test/tools/javac/diags/examples/MrefStat1.java.rej
From jonathan.gibbons at oracle.com Fri Aug 30 23:27:42 2013
From: jonathan.gibbons at oracle.com (jonathan.gibbons at oracle.com)
Date: Fri, 30 Aug 2013 23:27:42 +0000
Subject: hg: jdk8/tl/langtools: 8008367: Sub-packages missing from Profiles
javadoc
Message-ID: <20130830232747.8DC6E6244C@hg.openjdk.java.net>
Changeset: f050c714b556
Author: jjg
Date: 2013-08-30 16:27 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/f050c714b556
8008367: Sub-packages missing from Profiles javadoc
Reviewed-by: bpatel
! src/share/classes/com/sun/tools/doclets/internal/toolkit/Configuration.java
From jonathan.gibbons at oracle.com Sat Aug 31 00:37:22 2013
From: jonathan.gibbons at oracle.com (jonathan.gibbons at oracle.com)
Date: Sat, 31 Aug 2013 00:37:22 +0000
Subject: hg: jdk8/tl/langtools: 8015663: Need to supply tests to provide
javadoc for profiles support code coverage
Message-ID: <20130831003729.303AE62453@hg.openjdk.java.net>
Changeset: 7993cfab8610
Author: jjg
Date: 2013-08-30 17:36 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/7993cfab8610
8015663: Need to supply tests to provide javadoc for profiles support code coverage
Reviewed-by: jjg
Contributed-by: evgeniya.stepanova at oracle.com
! test/com/sun/javadoc/testProfiles/TestProfiles.java
+ test/com/sun/javadoc/testProfiles/TestProfilesConfiguration.java
! test/com/sun/javadoc/testProfiles/pkg2/Class1Pkg2.java
+ test/com/sun/javadoc/testProfiles/pkg2/ClassError.java
+ test/com/sun/javadoc/testProfiles/pkg2/ClassException.java
+ test/com/sun/javadoc/testProfiles/pkgDeprecated/Class1PkgDeprecated.java
+ test/com/sun/javadoc/testProfiles/pkgDeprecated/package-info.java
! test/com/sun/javadoc/testProfiles/profile-rtjar-includes.txt
From dan.xu at oracle.com Fri Aug 30 23:46:11 2013
From: dan.xu at oracle.com (dan.xu at oracle.com)
Date: Fri, 30 Aug 2013 23:46:11 +0000
Subject: hg: jdk8/tl/jdk: 8023765: Improve MaxPathLength.java testcase and
reduce its test load; ...
Message-ID: <20130830234645.ED4336244F@hg.openjdk.java.net>
Changeset: 5b01c851bb1d
Author: dxu
Date: 2013-08-30 16:45 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/5b01c851bb1d
8023765: Improve MaxPathLength.java testcase and reduce its test load
7160013: java/io/File/MaxPathLength.java fails
Reviewed-by: alanb
! test/ProblemList.txt
! test/java/io/File/MaxPathLength.java
From shanliang.jiang at oracle.com Fri Aug 30 11:16:26 2013
From: shanliang.jiang at oracle.com (shanliang.jiang at oracle.com)
Date: Fri, 30 Aug 2013 11:16:26 +0000
Subject: hg: jdk8/tl/jdk: 6566891: RMIConnector: map value referencing map key
in WeakHashMap prevents map entry to be removed
Message-ID: <20130830111652.648B762418@hg.openjdk.java.net>
Changeset: 2d51653d9b4b
Author: sjiang
Date: 2013-08-30 12:49 +0200
URL: http://hg.openjdk.java.net/jdk8/tl/jdk/rev/2d51653d9b4b
6566891: RMIConnector: map value referencing map key in WeakHashMap prevents map entry to be removed
Reviewed-by: egahlin, jbachorik, dfuchs, dholmes
! src/share/classes/javax/management/remote/rmi/RMIConnector.java
+ test/javax/management/remote/mandatory/connection/RMIConnectorInternalMapTest.java
+ test/javax/management/remote/mandatory/connection/RMIConnectorNullSubjectConnTest.java
From bhavesh.x.patel at oracle.com Fri Aug 30 23:00:17 2013
From: bhavesh.x.patel at oracle.com (bhavesh.x.patel at oracle.com)
Date: Fri, 30 Aug 2013 23:00:17 +0000
Subject: hg: jdk8/tl/langtools: 7198273: RFE : Javadoc Accessibility :
Hyperlinks should contain text or an image with alt text
Message-ID: <20130830230023.2444562447@hg.openjdk.java.net>
Changeset: dd64288f5659
Author: bpatel
Date: 2013-08-30 15:59 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/dd64288f5659
7198273: RFE : Javadoc Accessibility : Hyperlinks should contain text or an image with alt text
Reviewed-by: jjg
! src/share/classes/com/sun/tools/doclets/formats/html/HtmlDocletWriter.java
! src/share/classes/com/sun/tools/doclets/formats/html/markup/HtmlStyle.java
! src/share/classes/com/sun/tools/doclets/internal/toolkit/resources/stylesheet.css
! test/com/sun/javadoc/AccessSkipNav/AccessSkipNav.java
! test/com/sun/javadoc/testNavigation/TestNavigation.java
From bhavesh.x.patel at oracle.com Fri Aug 30 23:18:07 2013
From: bhavesh.x.patel at oracle.com (bhavesh.x.patel at oracle.com)
Date: Fri, 30 Aug 2013 23:18:07 +0000
Subject: hg: jdk8/tl/langtools: 8015882: Javadoc prints NPE when using Taglet
Message-ID: <20130830231814.D085462448@hg.openjdk.java.net>
Changeset: 7a2fe98cb0e6
Author: bpatel
Date: 2013-08-30 16:16 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/7a2fe98cb0e6
8015882: Javadoc prints NPE when using Taglet
Reviewed-by: jjg
! src/share/classes/com/sun/tools/doclets/internal/toolkit/taglets/LegacyTaglet.java
! test/com/sun/javadoc/testLegacyTaglet/C.java
+ test/com/sun/javadoc/testLegacyTaglet/Check.java
! test/com/sun/javadoc/testLegacyTaglet/TestLegacyTaglet.java
From bhavesh.x.patel at oracle.com Fri Aug 30 23:40:18 2013
From: bhavesh.x.patel at oracle.com (bhavesh.x.patel at oracle.com)
Date: Fri, 30 Aug 2013 23:40:18 +0000
Subject: hg: jdk8/tl/langtools: 8022738: doclet should only generate
functional interface text if source >= 8
Message-ID: <20130830234023.0A39A6244D@hg.openjdk.java.net>
Changeset: b25e387481dc
Author: bpatel
Date: 2013-08-30 16:38 -0700
URL: http://hg.openjdk.java.net/jdk8/tl/langtools/rev/b25e387481dc
8022738: doclet should only generate functional interface text if source >= 8
Reviewed-by: jjg
! src/share/classes/com/sun/tools/javadoc/ClassDocImpl.java
! src/share/classes/com/sun/tools/javadoc/DocEnv.java
! test/com/sun/javadoc/testLambdaFeature/TestLambdaFeature.java
+ test/com/sun/javadoc/testLambdaFeature/pkg1/FuncInf.java