RFR: 8259319: Illegal package access when SunPKCS11 requires SunJCE's classes [v2]
Martin Balao
mbalao at openjdk.java.net
Fri Jan 8 21:30:14 UTC 2021
> As described in JDK-8259319 [1], this fix proposal is to set proper access permissions so the SunPKCS11 provider can create instances of SunJCE classes when a Security Manager is installed and the fallback scheme is used.
>
> No regressions found in jdk/sun/security/pkcs11 tests category.
>
> --
> [1] - https://bugs.openjdk.java.net/browse/JDK-8259319
Martin Balao has updated the pull request incrementally with two additional commits since the last revision:
- Limit P11Util::getProvider privileged access to the required 'accessClassInPackage' RuntimePermission only.
- New line character inserted at the end of IllegalPackageAccess.java test file
-------------
Changes:
- all: https://git.openjdk.java.net/jdk/pull/1961/files
- new: https://git.openjdk.java.net/jdk/pull/1961/files/2fcfa69a..5e1e0a97
Webrevs:
- full: https://webrevs.openjdk.java.net/?repo=jdk&pr=1961&range=01
- incr: https://webrevs.openjdk.java.net/?repo=jdk&pr=1961&range=00-01
Stats: 23 lines in 2 files changed: 10 ins; 0 del; 13 mod
Patch: https://git.openjdk.java.net/jdk/pull/1961.diff
Fetch: git fetch https://git.openjdk.java.net/jdk pull/1961/head:pull/1961
PR: https://git.openjdk.java.net/jdk/pull/1961
More information about the security-dev
mailing list