RFR: 8292297: Fix up loading of override java.security properties file

Sean Coffey coffeys at openjdk.org
Wed Sep 14 09:20:37 UTC 2022


On Tue, 13 Sep 2022 16:47:09 GMT, Xue-Lei Andrew Fan <xuelei at openjdk.org> wrote:

> Is it a behavioral change that requires CSR approval?

I considered the CSR impact before logging this PR. This issue corrects a bug where security properties had potential to be lost if an incorrect URL/resource was specified for the secondary/override security conf file. The system was already working with bad user config in such a case. Don't think it needs a CSR but open to correction.

-------------

PR: https://git.openjdk.org/jdk/pull/10251



More information about the security-dev mailing list