RFR: 8255255: Update Apache Santuario (XML Signature) to version 2.2.1 [v7]
Weijun Wang
weijun at openjdk.java.net
Sat Mar 6 18:31:43 UTC 2021
> This is a multi-commits PR that upgrades xmldsig to be equivalent to Santuario 2.2.0.
>
> The first step is an auto-import. The JDK implementation is removed first and Santuario code are imported. Some unrelated files (Ex: encryption) are removed, and package names are renamed to be internal. There are also some bulk changes on company name, comment style, and white spaces.
>
> Next steps are patches applied by JDK. Some are old patches before the last import. Some are new.
>
> Several tests need to be updated because of internal method signature changes.
Weijun Wang has refreshed the contents of this pull request, and previous commits have been removed. The incremental views will show differences compared to the previous content of the PR. The pull request contains 14 new commits since the last revision:
- reapply 8259535: ECDSA SignatureValue do not always have the specified length
- No more newInstance calls
- Reapply 8255559: Leak File Descriptors Because of ResolverLocalFilesystem#engineResolveURI()
- Fix test failures
- Supporting named RSASSA-PSS without parameters
- Reapply 8008744: Rework part of fix for JDK-6741606
- Reapply 8151893: Add security property to configure XML Signature secure validation mode
Reapply 8140353: Improve signature checking
- Reapply Reapply 8042967: Add variant of DSA Signature algorithms that do not ASN.1 encode the signature bytes
- Reapply 8038913: Bolster XML support (Init.java part)
- Version, and copyright lines
- ... and 4 more: https://git.openjdk.java.net/jdk/compare/7d18f816...24fb59fe
-------------
Changes:
- all: https://git.openjdk.java.net/jdk/pull/1206/files
- new: https://git.openjdk.java.net/jdk/pull/1206/files/7d18f816..24fb59fe
Webrevs:
- full: https://webrevs.openjdk.java.net/?repo=jdk&pr=1206&range=06
- incr: https://webrevs.openjdk.java.net/?repo=jdk&pr=1206&range=05-06
Stats: 13 lines in 9 files changed: 6 ins; 0 del; 7 mod
Patch: https://git.openjdk.java.net/jdk/pull/1206.diff
Fetch: git fetch https://git.openjdk.java.net/jdk pull/1206/head:pull/1206
PR: https://git.openjdk.java.net/jdk/pull/1206
More information about the security-dev
mailing list