RFR: 8259801: Enable XML Signature secure validation mode by default
Sean Mullan
mullan at openjdk.java.net
Fri Jan 22 17:34:49 UTC 2021
This change enables the XML Signature secure validation mode by default. This will improve out of the box security by restricting signatures that contain potentially unsafe content by default.
Please also review the CSR: https://bugs.openjdk.java.net/browse/JDK-8260154
-------------
Commit messages:
- Minor re-wording of implNote.
- Initial fix.
Changes: https://git.openjdk.java.net/jdk/pull/2197/files
Webrev: https://webrevs.openjdk.java.net/?repo=jdk&pr=2197&range=00
Issue: https://bugs.openjdk.java.net/browse/JDK-8259801
Stats: 55 lines in 3 files changed: 12 ins; 3 del; 40 mod
Patch: https://git.openjdk.java.net/jdk/pull/2197.diff
Fetch: git fetch https://git.openjdk.java.net/jdk pull/2197/head:pull/2197
PR: https://git.openjdk.java.net/jdk/pull/2197
More information about the security-dev
mailing list