RFR: 8352728: InternalError loading java.security due to Windows parent folder permissions
Sean Mullan
mullan at openjdk.org
Mon Oct 27 19:41:11 UTC 2025
On Mon, 1 Sep 2025 12:12:51 GMT, Francisco Ferrari Bihurriet <fferrari at openjdk.org> wrote:
>>> @AlanBateman are you ok with letting the original [c6f1d5f](https://github.com/openjdk/jdk/commit/c6f1d5f374bfa9bde75765391d5dae0e8e28b4ab) reviewers know of this fix and take a look? Or do you think further discussion is needed somewhere else?
>>
>> Have you had time to try using the file key to detect the recursive include case?
>
> Hi @AlanBateman, have you had time to review my previous message?
@franferrax Have you tried Alan's suggestion?
Also, since this is a regression, and you think it will take longer to come up with a fix, can I suggest as a temporary fix you revert to using `FileInputStream` to load the security properties file (in the default location or via the -Djava.security.properties system property), and only call `loadFromPath` if an include directive is specified? Is that feasible? If so, you can then address this issue separately. This should at least fix the common case where no include directive is specified. It would be good to get the primary use case fixed in 26.
-------------
PR Comment: https://git.openjdk.org/jdk/pull/24465#issuecomment-3453003241
More information about the security-dev
mailing list