From mpowers at openjdk.org Thu Sep 1 02:26:48 2022 From: mpowers at openjdk.org (Mark Powers) Date: Thu, 1 Sep 2022 02:26:48 GMT Subject: RFR: JDK-8291509 Minor cleanup could be done in sun.security [v4] In-Reply-To: <7_dH-nuIf3G8tvAD5dACQhKlTuQ0PsWmgIxoQZdSwko=.4c5fa745-a0dd-40c4-a62e-10aeaf7c7788@github.com> References: <7_dH-nuIf3G8tvAD5dACQhKlTuQ0PsWmgIxoQZdSwko=.4c5fa745-a0dd-40c4-a62e-10aeaf7c7788@github.com> Message-ID: > https://bugs.openjdk.org/browse/JDK-8291509 Mark Powers has updated the pull request incrementally with one additional commit since the last revision: comments from Sean and Max ------------- Changes: - all: https://git.openjdk.org/jdk/pull/9972/files - new: https://git.openjdk.org/jdk/pull/9972/files/4157f2a9..5e354828 Webrevs: - full: https://webrevs.openjdk.org/?repo=jdk&pr=9972&range=03 - incr: https://webrevs.openjdk.org/?repo=jdk&pr=9972&range=02-03 Stats: 56 lines in 11 files changed: 7 ins; 12 del; 37 mod Patch: https://git.openjdk.org/jdk/pull/9972.diff Fetch: git fetch https://git.openjdk.org/jdk pull/9972/head:pull/9972 PR: https://git.openjdk.org/jdk/pull/9972 From weijun at openjdk.org Thu Sep 1 02:54:31 2022 From: weijun at openjdk.org (Weijun Wang) Date: Thu, 1 Sep 2022 02:54:31 GMT Subject: RFR: JDK-8291509 Minor cleanup could be done in sun.security [v3] In-Reply-To: References: <7_dH-nuIf3G8tvAD5dACQhKlTuQ0PsWmgIxoQZdSwko=.4c5fa745-a0dd-40c4-a62e-10aeaf7c7788@github.com>

Message-ID: On Tue, 30 Aug 2022 22:53:31 GMT, Mark Powers wrote: >> http://cr.openjdk.java.net/~alundblad/styleguide/index-v6.html#toc-constants > > Can't argue with that. Normally we use `SHA2_GROUP`. There are underscores between the words. ------------- PR: https://git.openjdk.org/jdk/pull/9972 From weijun at openjdk.org Thu Sep 1 02:54:31 2022 From: weijun at openjdk.org (Weijun Wang) Date: Thu, 1 Sep 2022 02:54:31 GMT Subject: RFR: JDK-8291509 Minor cleanup could be done in sun.security [v4] In-Reply-To: References: <7_dH-nuIf3G8tvAD5dACQhKlTuQ0PsWmgIxoQZdSwko=.4c5fa745-a0dd-40c4-a62e-10aeaf7c7788@github.com>

Message-ID: On Wed, 31 Aug 2022 04:22:15 GMT, Mark Powers wrote: >> src/java.base/share/classes/sun/security/pkcs12/MacData.java line 47: >> >>> 45: >>> 46: private String digestAlgorithmName; >>> 47: private AlgorithmParameters digestAlgorithmParams; >> >> Yes, this field is not used now. But one day we might see one that has parameters. I'd rather keep them and maybe fix `getEncoded` by then. > > I put the field back. There are altogether 3 places where this field was assigned. Make sure to add back all of them. ------------- PR: https://git.openjdk.org/jdk/pull/9972 From weijun at openjdk.org Thu Sep 1 03:29:22 2022 From: weijun at openjdk.org (Weijun Wang) Date: Thu, 1 Sep 2022 03:29:22 GMT Subject: RFR: JDK-8291509 Minor cleanup could be done in sun.security [v4] In-Reply-To: References: <7_dH-nuIf3G8tvAD5dACQhKlTuQ0PsWmgIxoQZdSwko=.4c5fa745-a0dd-40c4-a62e-10aeaf7c7788@github.com> Message-ID: On Thu, 1 Sep 2022 02:26:48 GMT, Mark Powers wrote: >> https://bugs.openjdk.org/browse/JDK-8291509 > > Mark Powers has updated the pull request incrementally with one additional commit since the last revision: > > comments from Sean and Max This includes all in `sun.security.provider.certpath`. BTW, sometimes some fields are final and some are not, is it better to put the final ones together? src/java.base/share/classes/sun/security/provider/certpath/BasicChecker.java line 105: > 103: prevPubKey = trustedPubKey; > 104: if (PKIX.isDSAPublicKeyWithoutParams(prevPubKey)) { > 105: // If TrustAnchor is a DSA public key, and it has no params, it Not a native English speaker, but I found the sentence more fluent without the comma. src/java.base/share/classes/sun/security/provider/certpath/BuildStep.java line 192: > 190: String resultString; > 191: switch (res) { > 192: case POSSIBLE: `case` should be indented here. See http://cr.openjdk.java.net/~alundblad/styleguide/index-v6.html#toc-indentation. That said, I think this is a good chance to use the switch expressions syntax, i.e `return switch (res)...`. src/java.base/share/classes/sun/security/provider/certpath/DistributionPointFetcher.java line 339: > 337: idpExt.get > 338: (IssuingDistributionPointExtension.INDIRECT_CRL).equals > 339: (Boolean.FALSE)) { There are only 2 `Boolean` values, so it's safe to use `==`. Also, I'd like idpExt.get(IssuingDistributionPointExtension.INDIRECT_CRL) == Boolean.FALSE src/java.base/share/classes/sun/security/provider/certpath/DistributionPointFetcher.java line 572: > 570: if (interimReasonsMask[i] && > 571: !(i < reasonsMask.length && reasonsMask[i])) > 572: { More brace to previous line. src/java.base/share/classes/sun/security/provider/certpath/ForwardBuilder.java line 544: > 542: if (distanceTto1 == distanceTto2) { > 543: return -1; > 544: } else if (distanceTto1 > 0 && distanceTto2 <= 0) { I feel there is no need for `distanceTto1 > 0 &&` in the above line. src/java.base/share/classes/sun/security/provider/certpath/OCSPResponse.java line 703: > 701: * > 702: * @return the {@code ResponderId} from this response or {@code null} > 703: * if no responder ID is in the body of the response e.g. a I'd rather add a closed parenthesis at the end, or at least add a comma before `e.g.` src/java.base/share/classes/sun/security/provider/certpath/PolicyNodeImpl.java line 95: > 93: mChildren = new HashSet<>(); > 94: > 95: mValidPolicy = Objects.requireNonNullElse(validPolicy, ""); I prefer `?:`. src/java.base/share/classes/sun/security/provider/certpath/RevocationChecker.java line 479: > 477: > 478: switch (type) { > 479: case "LDAP": `case` lines should be indented. ------------- PR: https://git.openjdk.org/jdk/pull/9972 From weijun at openjdk.org Thu Sep 1 03:47:16 2022 From: weijun at openjdk.org (Weijun Wang) Date: Thu, 1 Sep 2022 03:47:16 GMT Subject: RFR: JDK-8291509 Minor cleanup could be done in sun.security [v4] In-Reply-To: References: <7_dH-nuIf3G8tvAD5dACQhKlTuQ0PsWmgIxoQZdSwko=.4c5fa745-a0dd-40c4-a62e-10aeaf7c7788@github.com> Message-ID: On Thu, 1 Sep 2022 02:26:48 GMT, Mark Powers wrote: >> https://bugs.openjdk.org/browse/JDK-8291509 > > Mark Powers has updated the pull request incrementally with one additional commit since the last revision: > > comments from Sean and Max More comments. Haven't read `ssl`, `util`, and `x509` yet. src/java.base/share/classes/sun/security/rsa/RSAPadding.java line 335: > 333: private byte[] unpadV15(byte[] padded) throws BadPaddingException { > 334: int k = 0; > 335: boolean bp = padded[k++] != 0; The original code looks more clear. src/java.base/share/classes/sun/security/tools/PathList.java line 69: > 67: while (st.hasMoreTokens()) { > 68: URL url = fileToURL(new File(st.nextToken())); > 69: urls[count++] = url; Please update the javadoc of `fileToURL` to remove `or null if unknown` in `@return`. src/java.base/share/classes/sun/security/tools/keytool/Main.java line 183: > 181: private List weakWarnings = new ArrayList<>(); > 182: > 183: private Set trustedCerts = new HashSet<>(); Put all these `final`s in one group. src/java.base/share/classes/sun/security/tools/keytool/Main.java line 3534: > 3532: Object[] source = {alias}; > 3533: if (otherKeyPass != null) { > 3534: System.err.println(form.format(source)); You can move the line above out as well. It's also the same. ------------- PR: https://git.openjdk.org/jdk/pull/9972 From aturbanov at openjdk.org Thu Sep 1 06:24:58 2022 From: aturbanov at openjdk.org (Andrey Turbanov) Date: Thu, 1 Sep 2022 06:24:58 GMT Subject: RFR: 8293197: Avoid double racy reads from non-volatile fields in SharedSecrets Message-ID: After integration of [JDK-8259021](https://bugs.openjdk.org/browse/JDK-8259021) a few more fields were added to `SharedSecrets` class. It make sense to update their reading code to use the same idiom. ------------- Commit messages: - [PATCH] SharedSecrets should avoid double racy reads from non-volatile fields - [PATCH] SharedSecrets should avoid double racy reads from non-volatile fields Changes: https://git.openjdk.org/jdk/pull/10076/files Webrev: https://webrevs.openjdk.org/?repo=jdk&pr=10076&range=00 Issue: https://bugs.openjdk.org/browse/JDK-8293197 Stats: 16 lines in 1 file changed: 8 ins; 0 del; 8 mod Patch: https://git.openjdk.org/jdk/pull/10076.diff Fetch: git fetch https://git.openjdk.org/jdk pull/10076/head:pull/10076 PR: https://git.openjdk.org/jdk/pull/10076 From ecki at zusammenkunft.net Thu Sep 1 09:54:46 2022 From: ecki at zusammenkunft.net (Bernd Eckenfels) Date: Thu, 1 Sep 2022 09:54:46 +0000 Subject: RFR: 8293197: Avoid double racy reads from non-volatile fields in SharedSecrets In-Reply-To: References: Message-ID: BTW, after then ensures it looks like a good candidate for a system-assert for not-null for all of those fields, right? Gruss Bernd -- http://bernd.eckenfels.net ________________________________ Von: core-libs-dev im Auftrag von Andrey Turbanov Gesendet: Thursday, September 1, 2022 8:24:58 AM An: core-libs-dev at openjdk.org ; security-dev at openjdk.org Betreff: RFR: 8293197: Avoid double racy reads from non-volatile fields in SharedSecrets After integration of [JDK-8259021](https://bugs.openjdk.org/browse/JDK-8259021) a few more fields were added to `SharedSecrets` class. It make sense to update their reading code to use the same idiom. ------------- Commit messages: - [PATCH] SharedSecrets should avoid double racy reads from non-volatile fields - [PATCH] SharedSecrets should avoid double racy reads from non-volatile fields Changes: https://git.openjdk.org/jdk/pull/10076/files Webrev: https://webrevs.openjdk.org/?repo=jdk&pr=10076&range=00 Issue: https://bugs.openjdk.org/browse/JDK-8293197 Stats: 16 lines in 1 file changed: 8 ins; 0 del; 8 mod Patch: https://git.openjdk.org/jdk/pull/10076.diff Fetch: git fetch https://git.openjdk.org/jdk pull/10076/head:pull/10076 PR: https://git.openjdk.org/jdk/pull/10076 -------------- next part -------------- An HTML attachment was scrubbed... URL: From weijun at openjdk.org Thu Sep 1 14:28:49 2022 From: weijun at openjdk.org (Weijun Wang) Date: Thu, 1 Sep 2022 14:28:49 GMT Subject: RFR: JDK-8291509 Minor cleanup could be done in sun.security [v4] In-Reply-To: References: <7_dH-nuIf3G8tvAD5dACQhKlTuQ0PsWmgIxoQZdSwko=.4c5fa745-a0dd-40c4-a62e-10aeaf7c7788@github.com> Message-ID: <_kZKVYr79h-OFJ9t6NkpGXnGmY4tFyv6GcFxjvWUj0s=.24c1b9d9-1174-4ab0-a0e6-5ae80911c3bd@github.com> On Thu, 1 Sep 2022 02:26:48 GMT, Mark Powers wrote: >> https://bugs.openjdk.org/browse/JDK-8291509 > > Mark Powers has updated the pull request incrementally with one additional commit since the last revision: > > comments from Sean and Max More comments. `x509` and `ssl` not reviewed yet. src/java.base/share/classes/sun/security/util/AlgorithmDecomposer.java line 110: > 108: !elements.contains(e.getKey())) { > 109: elements.add(e.getKey()); > 110: } else if (elements.contains(e.getKey())) { I assume this means that the `add()` method will behave the same anyway, but the original code does seem more clear to me. src/java.base/share/classes/sun/security/util/DerInputStream.java line 292: > 290: * a later call to reset will return here. > 291: * The {@code readAheadLimit} is useless here because > 292: * all data is available, and we can go to anywhere at will. I'd rather add a comma before `because`. The sentence means `because (A && B)` and I don't want it look like `because (A) && B`. src/java.base/share/classes/sun/security/util/HexDumpEncoder.java line 157: > 155: int j; > 156: int numBytes; > 157: byte[] tmpbuffer = new byte[bytesPerLine()]; Add one space in between. src/java.base/share/classes/sun/security/util/HexDumpEncoder.java line 268: > 266: int j; > 267: int numBytes; > 268: byte[] tmpbuffer = new byte[bytesPerLine()]; Add one space in between. Or, is my GitHub view distorted? src/java.base/share/classes/sun/security/validator/PKIXValidator.java line 177: > 175: private void setDefaultParameters(String variant) { > 176: if ((Objects.equals(variant, Validator.VAR_TLS_SERVER)) || > 177: (Objects.equals(variant, Validator.VAR_TLS_CLIENT))) { I think the original code is OK. We only use string literals for variants. That said, maybe it's better to use an enum. src/java.base/share/classes/sun/security/validator/Validator.java line 268: > 266: // redundant. > 267: boolean checkUnresolvedCritExts = > 268: !Objects.equals(type, TYPE_PKIX); Same as above. We only use literals. ------------- PR: https://git.openjdk.org/jdk/pull/9972 From mpowers at openjdk.org Thu Sep 1 16:05:36 2022 From: mpowers at openjdk.org (Mark Powers) Date: Thu, 1 Sep 2022 16:05:36 GMT Subject: RFR: JDK-8291509 Minor cleanup could be done in sun.security [v4] In-Reply-To: <_kZKVYr79h-OFJ9t6NkpGXnGmY4tFyv6GcFxjvWUj0s=.24c1b9d9-1174-4ab0-a0e6-5ae80911c3bd@github.com> References: <7_dH-nuIf3G8tvAD5dACQhKlTuQ0PsWmgIxoQZdSwko=.4c5fa745-a0dd-40c4-a62e-10aeaf7c7788@github.com> <_kZKVYr79h-OFJ9t6NkpGXnGmY4tFyv6GcFxjvWUj0s=.24c1b9d9-1174-4ab0-a0e6-5ae80911c3bd@github.com> Message-ID: On Thu, 1 Sep 2022 13:57:38 GMT, Weijun Wang wrote: >> Mark Powers has updated the pull request incrementally with one additional commit since the last revision: >> >> comments from Sean and Max > > src/java.base/share/classes/sun/security/util/AlgorithmDecomposer.java line 110: > >> 108: !elements.contains(e.getKey())) { >> 109: elements.add(e.getKey()); >> 110: } else if (elements.contains(e.getKey())) { > > I assume this means that the `add()` method will behave the same anyway, but the original code does seem more clear to me. I'll keep the original code. ------------- PR: https://git.openjdk.org/jdk/pull/9972 From prr at openjdk.org Thu Sep 1 16:22:19 2022 From: prr at openjdk.org (Phil Race) Date: Thu, 1 Sep 2022 16:22:19 GMT Subject: RFR: 8293088: Fix compilation with the new Visual Studio preprocessor In-Reply-To: References: Message-ID: On Tue, 30 Aug 2022 12:08:09 GMT, Daniel Jeli?ski wrote: > Fix compilation with Zc:preprocessor enabled. > > The flag itself will be enabled in [JDK-8247283](https://bugs.openjdk.org/browse/JDK-8247283); I enabled the flag using instructions found in Magnus's comment on that issue. > > Windows 10 SDK version 2104 (10.0.20348.0) is required for successful compilation. Compilation fails with a warning (treated as error by default) with older versions of Windows 10 SDK. > > I verified that the compilation completes successfully with this patch, both in debug and in release mode, both with and without Zc:preprocessor. Fixing the compilation is one thing. But did you verify that it actually works as intended ? ------------- PR: https://git.openjdk.org/jdk/pull/10080 From weijun at openjdk.org Thu Sep 1 16:34:34 2022 From: weijun at openjdk.org (Weijun Wang) Date: Thu, 1 Sep 2022 16:34:34 GMT Subject: RFR: JDK-8291509 Minor cleanup could be done in sun.security [v4] In-Reply-To: References: <7_dH-nuIf3G8tvAD5dACQhKlTuQ0PsWmgIxoQZdSwko=.4c5fa745-a0dd-40c4-a62e-10aeaf7c7788@github.com> Message-ID: On Thu, 1 Sep 2022 02:26:48 GMT, Mark Powers wrote: >> https://bugs.openjdk.org/browse/JDK-8291509 > > Mark Powers has updated the pull request incrementally with one additional commit since the last revision: > > comments from Sean and Max More comments. `ssl` not read yet. src/java.base/share/classes/sun/security/x509/AVA.java line 446: > 444: if (embeddedHex.size() > 0) { > 445: // add space(s) before embedded hex bytes > 446: temp.append(" ".repeat(Math.max(0, spaceCount))); `spaceCount` is never negative. src/java.base/share/classes/sun/security/x509/AVA.java line 462: > 460: } else { > 461: // add space(s) > 462: temp.append(" ".repeat(Math.max(0, spaceCount))); `spaceCount` is never negative. src/java.base/share/classes/sun/security/x509/AlgIdDSA.java line 50: > 48: * operations. The following is an example of how this may be done assuming > 49: * that we have a certificate called currentCert which doesn't > 50: * contain DSS/DSA parameters, and we need to derive DSS/DSA parameters Comma seems misleading. This is all about "an example". src/java.base/share/classes/sun/security/x509/AlgorithmId.java line 311: > 309: } else { > 310: String n = aliasOidsTable().get(oidStr); > 311: return Objects.requireNonNullElseGet(n, () -> algid.toString()); Maybe `?:`. src/java.base/share/classes/sun/security/x509/CertificateExtensions.java line 266: > 264: public Map getUnparseableExtensions() { > 265: return Objects.requireNonNullElse(unparseableExtensions, > 266: Collections.emptyMap()); `?:` src/java.base/share/classes/sun/security/x509/IPAddressName.java line 214: > 212: > 213: // copy mask bytes into mask portion of address > 214: System.arraycopy(maskArray, 0, address, 16, MASKSIZE); Please use `MASKSIZE` instead of `16`. src/java.base/share/classes/sun/security/x509/IssuingDistributionPointExtension.java line 143: > 141: > 142: if (hasOnlyUserCerts && (hasOnlyCACerts || hasOnlyAttributeCerts) || > 143: hasOnlyCACerts && hasOnlyAttributeCerts) { Honestly I don't understand the new check. The original one seems more clear. src/java.base/share/classes/sun/security/x509/X509CertImpl.java line 700: > 698: > 699: if (id.equalsIgnoreCase(INFO)) { > 700: //reset this as certificate data has changed Duplicated? ------------- PR: https://git.openjdk.org/jdk/pull/9972 From duke at openjdk.org Thu Sep 1 17:35:53 2022 From: duke at openjdk.org (zzambers) Date: Thu, 1 Sep 2022 17:35:53 GMT Subject: RFR: 8293232: Fix race condition in pkcs11 SessionManager Message-ID: There is a race condition in JDK's SessionManager, which can lead to random exceptions. **Exception:** javax.net.ssl.SSLException: Internal error: close session with active objects at java.base/sun.security.ssl.Alert.createSSLException(Alert.java:133) at java.base/sun.security.ssl.TransportContext.fatal(TransportContext.java:371) at java.base/sun.security.ssl.TransportContext.fatal(TransportContext.java:314) at java.base/sun.security.ssl.TransportContext.fatal(TransportContext.java:309) at java.base/sun.security.ssl.SSLSocketImpl.handleException(SSLSocketImpl.java:1707) at java.base/sun.security.ssl.SSLSocketImpl$AppInputStream.read(SSLSocketImpl.java:1080) at java.base/sun.security.ssl.SSLSocketImpl$AppInputStream.read(SSLSocketImpl.java:971) at SSLSocketServer.serverLoop(SSLSocketServer.java:133) at SSLSocketServer$1.run(SSLSocketServer.java:75) at java.base/java.lang.Thread.run(Thread.java:833) Caused by: java.security.ProviderException: Internal error: close session with active objects at jdk.crypto.cryptoki/sun.security.pkcs11.Session.close(Session.java:127) at jdk.crypto.cryptoki/sun.security.pkcs11.Session.close(Session.java:114) at jdk.crypto.cryptoki/sun.security.pkcs11.SessionManager.closeSession(SessionManager.java:237) at jdk.crypto.cryptoki/sun.security.pkcs11.SessionManager$Pool.release(SessionManager.java:270) at jdk.crypto.cryptoki/sun.security.pkcs11.SessionManager.demoteObjSession(SessionManager.java:210) at jdk.crypto.cryptoki/sun.security.pkcs11.Session.removeObject(Session.java:101) at jdk.crypto.cryptoki/sun.security.pkcs11.SessionKeyRef.updateNativeKey(P11Key.java:1396) at jdk.crypto.cryptoki/sun.security.pkcs11.SessionKeyRef.removeNativeKey(P11Key.java:1377) at jdk.crypto.cryptoki/sun.security.pkcs11.NativeKeyHolder.releaseKeyID(P11Key.java:1329) at jdk.crypto.cryptoki/sun.security.pkcs11.P11Key.releaseKeyID(P11Key.java:156) at jdk.crypto.cryptoki/sun.security.pkcs11.P11AEADCipher.reset(P11AEADCipher.java:529) at jdk.crypto.cryptoki/sun.security.pkcs11.P11AEADCipher.ensureInitialized(P11AEADCipher.java:436) at jdk.crypto.cryptoki/sun.security.pkcs11.P11AEADCipher.implDoFinal(P11AEADCipher.java:732) at jdk.crypto.cryptoki/sun.security.pkcs11.P11AEADCipher.engineDoFinal(P11AEADCipher.java:624) at java.base/javax.crypto.Cipher.doFinal(Cipher.java:2500) at java.base/sun.security.ssl.SSLCipher$T12GcmReadCipherGenerator$GcmReadCipher.decrypt(SSLCipher.java:1659) at java.base/sun.security.ssl.SSLSocketInputRecord.decodeInputRecord(SSLSocketInputRecord.java:260) at java.base/sun.security.ssl.SSLSocketInputRecord.decode(SSLSocketInputRecord.java:181) at java.base/sun.security.ssl.SSLTransport.decode(SSLTransport.java:111) at java.base/sun.security.ssl.SSLSocketImpl.decode(SSLSocketImpl.java:1508) at java.base/sun.security.ssl.SSLSocketImpl.readApplicationRecord(SSLSocketImpl.java:1479) at java.base/sun.security.ssl.SSLSocketImpl$AppInputStream.read(SSLSocketImpl.java:1064) ... 4 more **Reproducibility:** I started getting this exception quite reliably on JDK17 on my machine with one particular test setup using ssl-tests testsuite. Unfortunately setup itself needed some RH specific patches and also ability to reproduce depends on other factors such number keys in keystore, machine where testing was performed... I tried a bit to create some reproducer, but I couldn't find a way to easily reproduce this issue :( **Problem:** SunPKCS11 provider does session pooling. This is done in SessionManager [1] (one per SunPKCS11 provider). Released sessions are kept by SessionManager for a while, for reuse (in limited number). This however is a bit complicated as some sessions can own objects (e.g. keys). So there are actually 2 pools. One for sessions with objects ("objSessions") and one for sessions without objects ("opSessions"). This is because sessions without objects, which are not being used, can be safely closed (SessionManager only keeps around limited amount of these), while sessions with objects cannot be safely closed (until all objects are removed from them). Session manager has methods for getting Session for given purpose (object creation or just doing other operations), prioritizing appropriate pool. Each session has counter (called "createdObjects") to track how many objects it owns. When session is being returned to pool this counter is checked and session is placed to appropriate pool. Also when counter for some Session in "objSessions" pool reaches zero it is moved ("demoted") to "opSessions" pool. And here comes complicated part. As far as I understand it, Session.addObject() [2] (which increases "createdObjects" counter) is always being called by thread "holding" session which owns the created object. (That is: thread gets a session, uses it to create an object and calls Session.addObject() on that session to increase the counter, before returning the session to pool. See e.g.: [3]) However this is not true for Session.removeObject() [4]. (That is: thread gets session, which is not necessary the same one owning object being removed, performs object removal, but then calls Session.removeObject() on session which owned that object. See e.g.: [5]) That is Session.removeObject() can be called on Session which is in "objSessions" pool or which is being used be other thread. (object removal can happen as result of releasing key, either explicitly or as result of GC etc..). And finally, there is a problem in code handling object removal from a session. Session.removeObject() [4] first checks if "createdObjects" counter reached zero. If so, it calls SessionManager.demoteObjSession(this) [6], which attempts to remove Session from objSessions pool, if session is successfully removed from there, meaning no other thread "holds" this session, session is put to opSessions pool, if not (meaning other thread "holds" it), method just returns, since that other thread puts this session to appropriate pool, when it is done with it by calling SessionManager.releaseSession(session). There is race condition here. Consider following scenario: // Thread T1 runs: Session.removeObject() // [4] createdObjects.decrementAndGet() // returns zero // Thread T2 steps in (operating on the same session instance): Session.addObject() // increases "createdObjects" counter [2] SessionManager.releaseSession(session) // releases session to objSessions pool // Thread T1 continues: SessionManager.demoteObjSession(this) // [6] objSessions.remove(session) // returns true opSessions.release(session) // puts session (with objects!) to opSessions pool // if opSessions is already full, close of session with objects is attempted throwing Exception.. **Fix:** SessionManager.demoteObjSession [6] method was changed, so that check for objects is done once again if session was successfully removed from "objSessions" pool (now that it is out of pool and other threads should not be adding objects to it). Based on this check session is either released to "opSessions" pool or returned to "objSessions" pool. This can be achieved by calling releaseSession(session) instead of opSessions.release(session). **Testing:** jdk_security tests passed for me locally with this change. I have also tested this change on top of custom JDK17 build which allows scenario, where I can reproduce this issue. Problem got fixed. ------------- Commit messages: - Fix race condition in pkcs11 SessionManager Changes: https://git.openjdk.org/jdk/pull/10125/files Webrev: https://webrevs.openjdk.org/?repo=jdk&pr=10125&range=00 Issue: https://bugs.openjdk.org/browse/JDK-8293232 Stats: 1 line in 1 file changed: 0 ins; 0 del; 1 mod Patch: https://git.openjdk.org/jdk/pull/10125.diff Fetch: git fetch https://git.openjdk.org/jdk pull/10125/head:pull/10125 PR: https://git.openjdk.org/jdk/pull/10125 From mpowers at openjdk.org Thu Sep 1 19:35:50 2022 From: mpowers at openjdk.org (Mark Powers) Date: Thu, 1 Sep 2022 19:35:50 GMT Subject: RFR: JDK-8291509 Minor cleanup could be done in sun.security [v4] In-Reply-To: <_kZKVYr79h-OFJ9t6NkpGXnGmY4tFyv6GcFxjvWUj0s=.24c1b9d9-1174-4ab0-a0e6-5ae80911c3bd@github.com> References: <7_dH-nuIf3G8tvAD5dACQhKlTuQ0PsWmgIxoQZdSwko=.4c5fa745-a0dd-40c4-a62e-10aeaf7c7788@github.com> <_kZKVYr79h-OFJ9t6NkpGXnGmY4tFyv6GcFxjvWUj0s=.24c1b9d9-1174-4ab0-a0e6-5ae80911c3bd@github.com> Message-ID: On Thu, 1 Sep 2022 14:09:42 GMT, Weijun Wang wrote: >> Mark Powers has updated the pull request incrementally with one additional commit since the last revision: >> >> comments from Sean and Max > > src/java.base/share/classes/sun/security/util/DerInputStream.java line 292: > >> 290: * a later call to reset will return here. >> 291: * The {@code readAheadLimit} is useless here because >> 292: * all data is available, and we can go to anywhere at will. > > I'd rather add a comma before `because`. The sentence means `because (A && B)` and I don't want it look like `because (A) && B`. Added comma. > src/java.base/share/classes/sun/security/util/HexDumpEncoder.java line 157: > >> 155: int j; >> 156: int numBytes; >> 157: byte[] tmpbuffer = new byte[bytesPerLine()]; > > Add one space in between. Fixed. > src/java.base/share/classes/sun/security/util/HexDumpEncoder.java line 268: > >> 266: int j; >> 267: int numBytes; >> 268: byte[] tmpbuffer = new byte[bytesPerLine()]; > > Add one space in between. Or, is my GitHub view distorted? Fixed. > src/java.base/share/classes/sun/security/validator/PKIXValidator.java line 177: > >> 175: private void setDefaultParameters(String variant) { >> 176: if ((Objects.equals(variant, Validator.VAR_TLS_SERVER)) || >> 177: (Objects.equals(variant, Validator.VAR_TLS_CLIENT))) { > > I think the original code is OK. We only use string literals for variants. That said, maybe it's better to use an enum. I'll revert to the original code. An enum change would affect method definitions wherever `Validator.VAR_:L_SERVER` and friends are used. > src/java.base/share/classes/sun/security/validator/Validator.java line 268: > >> 266: // redundant. >> 267: boolean checkUnresolvedCritExts = >> 268: !Objects.equals(type, TYPE_PKIX); > > Same as above. We only use literals. I'll revert to the original code. ------------- PR: https://git.openjdk.org/jdk/pull/9972 From djelinski at openjdk.org Thu Sep 1 20:42:11 2022 From: djelinski at openjdk.org (Daniel =?UTF-8?B?SmVsacWEc2tp?=) Date: Thu, 1 Sep 2022 20:42:11 GMT Subject: RFR: 8293088: Fix compilation with the new Visual Studio preprocessor In-Reply-To: References: Message-ID: On Tue, 30 Aug 2022 12:08:09 GMT, Daniel Jeli?ski wrote: > Fix compilation with Zc:preprocessor enabled. > > The flag itself will be enabled in [JDK-8247283](https://bugs.openjdk.org/browse/JDK-8247283); I enabled the flag using instructions found in Magnus's comment on that issue. > > Windows 10 SDK version 2104 (10.0.20348.0) is required for successful compilation. Compilation fails with a warning (treated as error by default) with older versions of Windows 10 SDK. > > I verified that the compilation completes successfully with this patch, both in debug and in release mode, both with and without Zc:preprocessor. I verified that client tests still pass. I also verified on a separate project that merging strings with and without ## is equivalent when Zc:preprocessor is absent. When it is present, merging with ## is an error. I did not verify the output of the changed macros, but I'm pretty confident that their behavior will not change. If you could suggest a test, I'll be happy to perform it. ------------- PR: https://git.openjdk.org/jdk/pull/10080 From mpowers at openjdk.org Thu Sep 1 21:38:57 2022 From: mpowers at openjdk.org (Mark Powers) Date: Thu, 1 Sep 2022 21:38:57 GMT Subject: RFR: JDK-8291509 Minor cleanup could be done in sun.security [v4] In-Reply-To: References: <7_dH-nuIf3G8tvAD5dACQhKlTuQ0PsWmgIxoQZdSwko=.4c5fa745-a0dd-40c4-a62e-10aeaf7c7788@github.com>

Message-ID: On Thu, 1 Sep 2022 02:50:40 GMT, Weijun Wang wrote: >> I put the field back. > > There are altogether 3 places where this field was assigned. Make sure to add back all of them. Got 'em all. ------------- PR: https://git.openjdk.org/jdk/pull/9972 From mpowers at openjdk.org Thu Sep 1 21:49:15 2022 From: mpowers at openjdk.org (Mark Powers) Date: Thu, 1 Sep 2022 21:49:15 GMT Subject: RFR: JDK-8291509 Minor cleanup could be done in sun.security [v4] In-Reply-To: References: <7_dH-nuIf3G8tvAD5dACQhKlTuQ0PsWmgIxoQZdSwko=.4c5fa745-a0dd-40c4-a62e-10aeaf7c7788@github.com>

Message-ID: On Thu, 1 Sep 2022 02:55:21 GMT, Weijun Wang wrote: >> Mark Powers has updated the pull request incrementally with one additional commit since the last revision: >> >> comments from Sean and Max > > src/java.base/share/classes/sun/security/provider/certpath/BasicChecker.java line 105: > >> 103: prevPubKey = trustedPubKey; >> 104: if (PKIX.isDSAPublicKeyWithoutParams(prevPubKey)) { >> 105: // If TrustAnchor is a DSA public key, and it has no params, it > > Not a native English speaker, but I found the sentence more fluent without the comma. Removing the comma. > src/java.base/share/classes/sun/security/provider/certpath/BuildStep.java line 192: > >> 190: String resultString; >> 191: switch (res) { >> 192: case POSSIBLE: > > `case` should be indented here. See http://cr.openjdk.java.net/~alundblad/styleguide/index-v6.html#toc-indentation. > > That said, I think this is a good chance to use the switch expressions syntax, i.e `return switch (res)...`. Brad pointed me to this: https://www.oracle.com/technetwork/java/codeconventions-150003.pdf I think your reference is better since we're working on OpenJDK. ------------- PR: https://git.openjdk.org/jdk/pull/9972 From mpowers at openjdk.org Thu Sep 1 22:12:57 2022 From: mpowers at openjdk.org (Mark Powers) Date: Thu, 1 Sep 2022 22:12:57 GMT Subject: RFR: JDK-8291509 Minor cleanup could be done in sun.security [v4] In-Reply-To: References: <7_dH-nuIf3G8tvAD5dACQhKlTuQ0PsWmgIxoQZdSwko=.4c5fa745-a0dd-40c4-a62e-10aeaf7c7788@github.com>

Message-ID: <7hjEYjNVTJXf5RpSUb4V73Vu_-WXriHV_qNV6vj-mmw=.16f8e900-0ad4-4ec7-bd56-803bec600cbf@github.com> On Thu, 1 Sep 2022 21:46:38 GMT, Mark Powers wrote: >> src/java.base/share/classes/sun/security/provider/certpath/BuildStep.java line 192: >> >>> 190: String resultString; >>> 191: switch (res) { >>> 192: case POSSIBLE: >> >> `case` should be indented here. See http://cr.openjdk.java.net/~alundblad/styleguide/index-v6.html#toc-indentation. >> >> That said, I think this is a good chance to use the switch expressions syntax, i.e `return switch (res)...`. > > Brad pointed me to this: > https://www.oracle.com/technetwork/java/codeconventions-150003.pdf > > I think your reference is better since we're working on OpenJDK. Regarding your `return switch (res)...` comment: You're suggesting to eliminate `resultString` and `return` after each `case`? ------------- PR: https://git.openjdk.org/jdk/pull/9972 From mpowers at openjdk.org Thu Sep 1 22:24:10 2022 From: mpowers at openjdk.org (Mark Powers) Date: Thu, 1 Sep 2022 22:24:10 GMT Subject: RFR: JDK-8291509 Minor cleanup could be done in sun.security [v4] In-Reply-To: <7hjEYjNVTJXf5RpSUb4V73Vu_-WXriHV_qNV6vj-mmw=.16f8e900-0ad4-4ec7-bd56-803bec600cbf@github.com> References: <7_dH-nuIf3G8tvAD5dACQhKlTuQ0PsWmgIxoQZdSwko=.4c5fa745-a0dd-40c4-a62e-10aeaf7c7788@github.com>

<7hjEYjNVTJXf5RpSUb4V73Vu_-WXriHV_qNV6vj-mmw=.16f8e900-0ad4-4ec7-bd56-803bec600cbf@github.com> Message-ID: On Thu, 1 Sep 2022 22:10:54 GMT, Mark Powers wrote: >> Brad pointed me to this: >> https://www.oracle.com/technetwork/java/codeconventions-150003.pdf >> >> I think your reference is better since we're working on OpenJDK. > > Regarding your `return switch (res)...` comment: > You're suggesting to eliminate `resultString` and `return` after each `case`? Never mind. I see what you're suggesting. ------------- PR: https://git.openjdk.org/jdk/pull/9972 From weijun at openjdk.org Thu Sep 1 23:37:31 2022 From: weijun at openjdk.org (Weijun Wang) Date: Thu, 1 Sep 2022 23:37:31 GMT Subject: RFR: 5066842: PKCS8EncodedKeySpec needs getAlgorithm method Message-ID: Since the algorithm is already encoded inside a PKCS #8 data block, it is not necessary to provide an algorithm when a `PKCS8EncodedKeySpec` object is created. The same for `X509EncodedKeySpec`. ------------- Commit messages: - api change Changes: https://git.openjdk.org/jdk/pull/10131/files Webrev: https://webrevs.openjdk.org/?repo=jdk&pr=10131&range=00 Issue: https://bugs.openjdk.org/browse/JDK-5066842 Stats: 26 lines in 3 files changed: 23 ins; 0 del; 3 mod Patch: https://git.openjdk.org/jdk/pull/10131.diff Fetch: git fetch https://git.openjdk.org/jdk pull/10131/head:pull/10131 PR: https://git.openjdk.org/jdk/pull/10131 From weijun at openjdk.org Thu Sep 1 23:37:31 2022 From: weijun at openjdk.org (Weijun Wang) Date: Thu, 1 Sep 2022 23:37:31 GMT Subject: RFR: 5066842: PKCS8EncodedKeySpec needs getAlgorithm method In-Reply-To: References: Message-ID: On Thu, 1 Sep 2022 23:25:16 GMT, Weijun Wang wrote: > Since the algorithm is already encoded inside a PKCS #8 data block, it is not necessary to provide an algorithm when a `PKCS8EncodedKeySpec` object is created. The same for `X509EncodedKeySpec`. The first commit only contains API change. Implementation will be provided in later commit(s). ------------- PR: https://git.openjdk.org/jdk/pull/10131 From ascarpino at openjdk.org Thu Sep 1 23:37:33 2022 From: ascarpino at openjdk.org (Anthony Scarpino) Date: Thu, 1 Sep 2022 23:37:33 GMT Subject: RFR: 5066842: PKCS8EncodedKeySpec needs getAlgorithm method In-Reply-To: References: Message-ID: On Thu, 1 Sep 2022 23:25:16 GMT, Weijun Wang wrote: > Since the algorithm is already encoded inside a PKCS #8 data block, it is not necessary to provide an algorithm when a `PKCS8EncodedKeySpec` object is created. The same for `X509EncodedKeySpec`. src/java.base/share/classes/java/security/spec/EncodedKeySpec.java line 109: > 107: * If this object is created with {@link #EncodedKeySpec(byte[])}, this method in > 108: * this base class returns {@code null}. A child class may parse the content of the encoded > 109: * key and return its algorithm name if one can be recovered. Personally I think it sounds better to say "key and return its algorithm name if it can be determined. src/java.base/share/classes/java/security/spec/PKCS8EncodedKeySpec.java line 73: > 71: * it will be returned. Otherwise, the object identifier inside the `privateKeyAlgorithm` > 72: * field is returned in its string format (For example, "1.3.14.7.2.1.1"). > 73: * If the encoded key cannot be parsed correctly, the algorithm will be null. Is this that OID format last week we talked about with passing algorithms we don't know to another provider? ------------- PR: https://git.openjdk.org/jdk/pull/10131 From weijun at openjdk.org Thu Sep 1 23:37:34 2022 From: weijun at openjdk.org (Weijun Wang) Date: Thu, 1 Sep 2022 23:37:34 GMT Subject: RFR: 5066842: PKCS8EncodedKeySpec needs getAlgorithm method In-Reply-To: References:

Message-ID: <-uRuftcWDp8Eu4QE0YWFIwcRCmoKlCg6CYTGp00nA2k=.8182e4f8-e134-4c69-918f-49c2ecbfddd5@github.com> On Thu, 1 Sep 2022 23:30:40 GMT, Anthony Scarpino wrote: >> Since the algorithm is already encoded inside a PKCS #8 data block, it is not necessary to provide an algorithm when a `PKCS8EncodedKeySpec` object is created. The same for `X509EncodedKeySpec`. > > src/java.base/share/classes/java/security/spec/PKCS8EncodedKeySpec.java line 73: > >> 71: * it will be returned. Otherwise, the object identifier inside the `privateKeyAlgorithm` >> 72: * field is returned in its string format (For example, "1.3.14.7.2.1.1"). >> 73: * If the encoded key cannot be parsed correctly, the algorithm will be null. > > Is this that OID format last week we talked about with passing algorithms we don't know to another provider? Yes, if it's unknown. I plan to implement this with `AlgorithmId.parse(privateKeyAlgorithm).getName()`. ------------- PR: https://git.openjdk.org/jdk/pull/10131 From weijun at openjdk.org Thu Sep 1 23:50:47 2022 From: weijun at openjdk.org (Weijun Wang) Date: Thu, 1 Sep 2022 23:50:47 GMT Subject: RFR: 5066842: PKCS8EncodedKeySpec needs getAlgorithm method [v2] In-Reply-To: References: Message-ID: > Since the algorithm is already encoded inside a PKCS #8 data block, it is not necessary to provide an algorithm when a `PKCS8EncodedKeySpec` object is created. The same for `X509EncodedKeySpec`. Weijun Wang has updated the pull request incrementally with one additional commit since the last revision: fine tune spec ------------- Changes: - all: https://git.openjdk.org/jdk/pull/10131/files - new: https://git.openjdk.org/jdk/pull/10131/files/ecd2e839..57e2315b Webrevs: - full: https://webrevs.openjdk.org/?repo=jdk&pr=10131&range=01 - incr: https://webrevs.openjdk.org/?repo=jdk&pr=10131&range=00-01 Stats: 16 lines in 3 files changed: 4 ins; 0 del; 12 mod Patch: https://git.openjdk.org/jdk/pull/10131.diff Fetch: git fetch https://git.openjdk.org/jdk pull/10131/head:pull/10131 PR: https://git.openjdk.org/jdk/pull/10131 From valeriep at openjdk.org Thu Sep 1 23:50:49 2022 From: valeriep at openjdk.org (Valerie Peng) Date: Thu, 1 Sep 2022 23:50:49 GMT Subject: RFR: 5066842: PKCS8EncodedKeySpec needs getAlgorithm method In-Reply-To: References: Message-ID: On Thu, 1 Sep 2022 23:25:16 GMT, Weijun Wang wrote: > Since the algorithm is already encoded inside a PKCS #8 data block, it is not necessary to provide an algorithm when a `PKCS8EncodedKeySpec` object is created. The same for `X509EncodedKeySpec`. I assume there will be regression test? ------------- PR: https://git.openjdk.org/jdk/pull/10131 From valeriep at openjdk.org Thu Sep 1 23:50:50 2022 From: valeriep at openjdk.org (Valerie Peng) Date: Thu, 1 Sep 2022 23:50:50 GMT Subject: RFR: 5066842: PKCS8EncodedKeySpec needs getAlgorithm method [v2] In-Reply-To: References:

Message-ID: <-A4R9l6pS4wdGmqVSoBOzEQRI4IDTER2Y2ddd4HXU_Q=.de5f64ba-ebfb-4a4a-b864-042deae17f58@github.com> On Thu, 1 Sep 2022 23:45:31 GMT, Weijun Wang wrote: >> Since the algorithm is already encoded inside a PKCS #8 data block, it is not necessary to provide an algorithm when a `PKCS8EncodedKeySpec` object is created. The same for `X509EncodedKeySpec`. > > Weijun Wang has updated the pull request incrementally with one additional commit since the last revision: > > fine tune spec src/java.base/share/classes/java/security/spec/PKCS8EncodedKeySpec.java line 75: > 73: * field is returned in its string format as a series of nonnegative > 74: * integers separated by periods (For example, "1.3.14.7.2.1.1"). > 75: * If the encoded key cannot be parsed correctly, the algorithm is {@code null}. Should these be under @implNote? Same question for the X509EncodedKeySpec also. ------------- PR: https://git.openjdk.org/jdk/pull/10131 From weijun at openjdk.org Fri Sep 2 00:01:44 2022 From: weijun at openjdk.org (Weijun Wang) Date: Fri, 2 Sep 2022 00:01:44 GMT Subject: RFR: 5066842: PKCS8EncodedKeySpec needs getAlgorithm method In-Reply-To: References:

Message-ID: <2O9lwHFFPLkKHEEApvLZiujnCq7AZP5PmhLt-taNgeA=.778c5167-d11f-4e5e-8272-7d0e5f0454c1@github.com> On Thu, 1 Sep 2022 23:45:30 GMT, Valerie Peng wrote: > I assume there will be regression test? Yes. I am only proposing spec change at the moment. Once we reach an agreement I'll fix a CSR and start coding on implementation and tests. ------------- PR: https://git.openjdk.org/jdk/pull/10131 From weijun at openjdk.org Fri Sep 2 00:01:47 2022 From: weijun at openjdk.org (Weijun Wang) Date: Fri, 2 Sep 2022 00:01:47 GMT Subject: RFR: 5066842: PKCS8EncodedKeySpec needs getAlgorithm method [v2] In-Reply-To: References:

Message-ID: <_GLF4zDfOFBYH54mP0KpLQpf5m0oUEByKplf7xE1af4=.9fdc4caa-a745-46d5-8acd-7b2aa8d3bd02@github.com> On Thu, 1 Sep 2022 23:28:32 GMT, Anthony Scarpino wrote: >> Weijun Wang has updated the pull request incrementally with one additional commit since the last revision: >> >> fine tune spec > > src/java.base/share/classes/java/security/spec/EncodedKeySpec.java line 109: > >> 107: * If this object is created with {@link #EncodedKeySpec(byte[])}, this method in >> 108: * this base class returns {@code null}. A child class may parse the content of the encoded >> 109: * key and return its algorithm name if one can be recovered. > > Personally I think it sounds better to say "key and return its algorithm name if it can be determined. OK. ------------- PR: https://git.openjdk.org/jdk/pull/10131 From weijun at openjdk.org Fri Sep 2 00:01:49 2022 From: weijun at openjdk.org (Weijun Wang) Date: Fri, 2 Sep 2022 00:01:49 GMT Subject: RFR: 5066842: PKCS8EncodedKeySpec needs getAlgorithm method [v2] In-Reply-To: <-A4R9l6pS4wdGmqVSoBOzEQRI4IDTER2Y2ddd4HXU_Q=.de5f64ba-ebfb-4a4a-b864-042deae17f58@github.com> References:

<-A4R9l6pS4wdGmqVSoBOzEQRI4IDTER2Y2ddd4HXU_Q=.de5f64ba-ebfb-4a4a-b864-042deae17f58@github.com> Message-ID: On Thu, 1 Sep 2022 23:44:02 GMT, Valerie Peng wrote: >> Weijun Wang has updated the pull request incrementally with one additional commit since the last revision: >> >> fine tune spec > > src/java.base/share/classes/java/security/spec/PKCS8EncodedKeySpec.java line 75: > >> 73: * field is returned in its string format as a series of nonnegative >> 74: * integers separated by periods (For example, "1.3.14.7.2.1.1"). >> 75: * If the encoded key cannot be parsed correctly, the algorithm is {@code null}. > > Should these be under @implNote? Same question for the X509EncodedKeySpec also. I want this to be spec from now on. If we want to backport this to older releases, then the paragraph above can be @implNote. ------------- PR: https://git.openjdk.org/jdk/pull/10131 From ascarpino at openjdk.org Fri Sep 2 00:05:49 2022 From: ascarpino at openjdk.org (Anthony Scarpino) Date: Fri, 2 Sep 2022 00:05:49 GMT Subject: RFR: 5066842: PKCS8EncodedKeySpec needs getAlgorithm method [v2] In-Reply-To: References:

Message-ID: On Thu, 1 Sep 2022 23:50:47 GMT, Weijun Wang wrote: >> Since the algorithm is already encoded inside a PKCS #8 data block, it is not necessary to provide an algorithm when a `PKCS8EncodedKeySpec` object is created. The same for `X509EncodedKeySpec`. > > Weijun Wang has updated the pull request incrementally with one additional commit since the last revision: > > fine tune spec Marked as reviewed by ascarpino (Reviewer). ------------- PR: https://git.openjdk.org/jdk/pull/10131 From mpowers at openjdk.org Fri Sep 2 00:41:22 2022 From: mpowers at openjdk.org (Mark Powers) Date: Fri, 2 Sep 2022 00:41:22 GMT Subject: RFR: JDK-8291509 Minor cleanup could be done in sun.security [v4] In-Reply-To: References: <7_dH-nuIf3G8tvAD5dACQhKlTuQ0PsWmgIxoQZdSwko=.4c5fa745-a0dd-40c4-a62e-10aeaf7c7788@github.com>

Message-ID: On Thu, 1 Sep 2022 03:02:57 GMT, Weijun Wang wrote: >> Mark Powers has updated the pull request incrementally with one additional commit since the last revision: >> >> comments from Sean and Max > > src/java.base/share/classes/sun/security/provider/certpath/DistributionPointFetcher.java line 339: > >> 337: idpExt.get >> 338: (IssuingDistributionPointExtension.INDIRECT_CRL).equals >> 339: (Boolean.FALSE)) { > > There are only 2 `Boolean` values, so it's safe to use `==`. Also, I'd like > > idpExt.get(IssuingDistributionPointExtension.INDIRECT_CRL) > == Boolean.FALSE Fixed. > src/java.base/share/classes/sun/security/provider/certpath/DistributionPointFetcher.java line 572: > >> 570: if (interimReasonsMask[i] && >> 571: !(i < reasonsMask.length && reasonsMask[i])) >> 572: { > > More brace to previous line. Fixed. > src/java.base/share/classes/sun/security/provider/certpath/ForwardBuilder.java line 544: > >> 542: if (distanceTto1 == distanceTto2) { >> 543: return -1; >> 544: } else if (distanceTto1 > 0 && distanceTto2 <= 0) { > > I feel there is no need for `distanceTto1 > 0 &&` in the above line. You need it if `distanceTto1 `is 0 on line 541. > src/java.base/share/classes/sun/security/provider/certpath/OCSPResponse.java line 703: > >> 701: * >> 702: * @return the {@code ResponderId} from this response or {@code null} >> 703: * if no responder ID is in the body of the response e.g. a > > I'd rather add a closed parenthesis at the end, or at least add a comma before `e.g.` Adding a comma. > src/java.base/share/classes/sun/security/provider/certpath/PolicyNodeImpl.java line 95: > >> 93: mChildren = new HashSet<>(); >> 94: >> 95: mValidPolicy = Objects.requireNonNullElse(validPolicy, ""); > > I prefer `?:`. Fixed. > src/java.base/share/classes/sun/security/provider/certpath/RevocationChecker.java line 479: > >> 477: >> 478: switch (type) { >> 479: case "LDAP": > > `case` lines should be indented. Fixed. > src/java.base/share/classes/sun/security/tools/PathList.java line 69: > >> 67: while (st.hasMoreTokens()) { >> 68: URL url = fileToURL(new File(st.nextToken())); >> 69: urls[count++] = url; > > Please update the javadoc of `fileToURL` to remove `or null if unknown` in `@return`. Fixed. ------------- PR: https://git.openjdk.org/jdk/pull/9972 From mpowers at openjdk.org Fri Sep 2 01:04:57 2022 From: mpowers at openjdk.org (Mark Powers) Date: Fri, 2 Sep 2022 01:04:57 GMT Subject: RFR: JDK-8291509 Minor cleanup could be done in sun.security [v4] In-Reply-To: References: <7_dH-nuIf3G8tvAD5dACQhKlTuQ0PsWmgIxoQZdSwko=.4c5fa745-a0dd-40c4-a62e-10aeaf7c7788@github.com>

Message-ID: On Thu, 1 Sep 2022 03:31:32 GMT, Weijun Wang wrote: >> Mark Powers has updated the pull request incrementally with one additional commit since the last revision: >> >> comments from Sean and Max > > src/java.base/share/classes/sun/security/tools/keytool/Main.java line 183: > >> 181: private List weakWarnings = new ArrayList<>(); >> 182: >> 183: private Set trustedCerts = new HashSet<>(); > > Put all these `final`s in one group. If I do that, it will mess up existing groups, e.g. `// Warnings on weak algorithms etc`. I was able to move a few files around, but not many. ------------- PR: https://git.openjdk.org/jdk/pull/9972 From mpowers at openjdk.org Fri Sep 2 04:20:00 2022 From: mpowers at openjdk.org (Mark Powers) Date: Fri, 2 Sep 2022 04:20:00 GMT Subject: RFR: JDK-8291509 Minor cleanup could be done in sun.security [v4] In-Reply-To: References: <7_dH-nuIf3G8tvAD5dACQhKlTuQ0PsWmgIxoQZdSwko=.4c5fa745-a0dd-40c4-a62e-10aeaf7c7788@github.com>

Message-ID: On Thu, 1 Sep 2022 03:40:41 GMT, Weijun Wang wrote: >> Mark Powers has updated the pull request incrementally with one additional commit since the last revision: >> >> comments from Sean and Max > > src/java.base/share/classes/sun/security/rsa/RSAPadding.java line 335: > >> 333: private byte[] unpadV15(byte[] padded) throws BadPaddingException { >> 334: int k = 0; >> 335: boolean bp = padded[k++] != 0; > > The original code looks more clear. I'll keep the original code. > src/java.base/share/classes/sun/security/tools/keytool/Main.java line 3534: > >> 3532: Object[] source = {alias}; >> 3533: if (otherKeyPass != null) { >> 3534: System.err.println(form.format(source)); > > You can move the line above out as well. It's also the same. I can't factor them out because one is `println` and the other is `print`. > src/java.base/share/classes/sun/security/x509/AVA.java line 446: > >> 444: if (embeddedHex.size() > 0) { >> 445: // add space(s) before embedded hex bytes >> 446: temp.append(" ".repeat(Math.max(0, spaceCount))); > > `spaceCount` is never negative. Changed to `repeat(spaceCount)`. > src/java.base/share/classes/sun/security/x509/AVA.java line 462: > >> 460: } else { >> 461: // add space(s) >> 462: temp.append(" ".repeat(Math.max(0, spaceCount))); > > `spaceCount` is never negative. Changed to `repeat(spaceCount)`. ------------- PR: https://git.openjdk.org/jdk/pull/9972 From djelinski at openjdk.org Fri Sep 2 05:55:43 2022 From: djelinski at openjdk.org (Daniel =?UTF-8?B?SmVsacWEc2tp?=) Date: Fri, 2 Sep 2022 05:55:43 GMT Subject: RFR: 8293088: Fix compilation with the new Visual Studio preprocessor In-Reply-To: References: Message-ID: On Tue, 30 Aug 2022 12:08:09 GMT, Daniel Jeli?ski wrote: > Fix compilation with Zc:preprocessor enabled. > > The flag itself will be enabled in [JDK-8247283](https://bugs.openjdk.org/browse/JDK-8247283); I enabled the flag using instructions found in Magnus's comment on that issue. > > Windows 10 SDK version 2104 (10.0.20348.0) is required for successful compilation. Compilation fails with a warning (treated as error by default) with older versions of Windows 10 SDK. > > I verified that the compilation completes successfully with this patch, both in debug and in release mode, both with and without Zc:preprocessor. FWIW, here's the test that I used: #include #define PRINTERR(res) \ PRINT(res, " " ## #res ## " in file " __FILE__); #define PRINT(res, msg) \ printf("- " ## msg ## " val=%d\n", res); int main() { for (int i = 0; i < 2; i++) { PRINTERR(i); } } Output: - i in file test.c val=0 - i in file test.c val=1 removing `##` does not change the output. ------------- PR: https://git.openjdk.org/jdk/pull/10080 From duke at openjdk.org Fri Sep 2 09:15:40 2022 From: duke at openjdk.org (Bernd) Date: Fri, 2 Sep 2022 09:15:40 GMT Subject: RFR: 5066842: PKCS8EncodedKeySpec needs getAlgorithm method [v2] In-Reply-To: References:

Message-ID: On Thu, 1 Sep 2022 23:50:47 GMT, Weijun Wang wrote: >> Since the algorithm is already encoded inside a PKCS #8 data block, it is not necessary to provide an algorithm when a `PKCS8EncodedKeySpec` object is created. The same for `X509EncodedKeySpec`. > > Weijun Wang has updated the pull request incrementally with one additional commit since the last revision: > > fine tune spec Should this also be aligned with EncryptedPrivateKeyInfo? https://github.com/openjdk/jdk/blob/57e2315bbc3ad4f0d1b96fb5944f7799b78a1630/src/java.base/share/classes/javax/crypto/EncryptedPrivateKeyInfo.java#L211 See also my PBES2 discussion on secure-dev last month. ------------- PR: https://git.openjdk.org/jdk/pull/10131 From duke at openjdk.org Fri Sep 2 09:15:41 2022 From: duke at openjdk.org (Bernd) Date: Fri, 2 Sep 2022 09:15:41 GMT Subject: RFR: 5066842: PKCS8EncodedKeySpec needs getAlgorithm method [v2] In-Reply-To: References:

<-A4R9l6pS4wdGmqVSoBOzEQRI4IDTER2Y2ddd4HXU_Q=.de5f64ba-ebfb-4a4a-b864-042deae17f58@github.com> Message-ID: On Thu, 1 Sep 2022 23:55:03 GMT, Weijun Wang wrote: >> src/java.base/share/classes/java/security/spec/PKCS8EncodedKeySpec.java line 75: >> >>> 73: * field is returned in its string format as a series of nonnegative >>> 74: * integers separated by periods (For example, "1.3.14.7.2.1.1"). >>> 75: * If the encoded key cannot be parsed correctly, the algorithm is {@code null}. >> >> Should these be under @implNote? Same question for the X509EncodedKeySpec also. > > I want this to be spec from now on. If we want to backport this to older releases, then the paragraph above can be @implNote. I agree that this should be in the API spec. Does the ?return null? case for invalid encodings need to mention any exceptions triggered by the actual key instantion to make clear the Spec is only a container? ------------- PR: https://git.openjdk.org/jdk/pull/10131 From mpowers at openjdk.org Fri Sep 2 15:50:51 2022 From: mpowers at openjdk.org (Mark Powers) Date: Fri, 2 Sep 2022 15:50:51 GMT Subject: RFR: JDK-8291509 Minor cleanup could be done in sun.security [v4] In-Reply-To: References: <7_dH-nuIf3G8tvAD5dACQhKlTuQ0PsWmgIxoQZdSwko=.4c5fa745-a0dd-40c4-a62e-10aeaf7c7788@github.com>

Message-ID: <1w3vBCANGlM2K3nAbOdIOMfGe31JA3CBFfg_usQds9w=.6e16924f-f49c-4f0e-891d-5d99e4a25a67@github.com> On Thu, 1 Sep 2022 14:31:53 GMT, Weijun Wang wrote: >> Mark Powers has updated the pull request incrementally with one additional commit since the last revision: >> >> comments from Sean and Max > > src/java.base/share/classes/sun/security/x509/AlgIdDSA.java line 50: > >> 48: * operations. The following is an example of how this may be done assuming >> 49: * that we have a certificate called currentCert which doesn't >> 50: * contain DSS/DSA parameters, and we need to derive DSS/DSA parameters > > Comma seems misleading. This is all about "an example". Removing the comma. > src/java.base/share/classes/sun/security/x509/AlgorithmId.java line 311: > >> 309: } else { >> 310: String n = aliasOidsTable().get(oidStr); >> 311: return Objects.requireNonNullElseGet(n, () -> algid.toString()); > > Maybe `?:`. Fixed. > src/java.base/share/classes/sun/security/x509/CertificateExtensions.java line 266: > >> 264: public Map getUnparseableExtensions() { >> 265: return Objects.requireNonNullElse(unparseableExtensions, >> 266: Collections.emptyMap()); > > `?:` Fixed. > src/java.base/share/classes/sun/security/x509/IPAddressName.java line 214: > >> 212: >> 213: // copy mask bytes into mask portion of address >> 214: System.arraycopy(maskArray, 0, address, 16, MASKSIZE); > > Please use `MASKSIZE` instead of `16`. Fixed. > src/java.base/share/classes/sun/security/x509/IssuingDistributionPointExtension.java line 143: > >> 141: >> 142: if (hasOnlyUserCerts && (hasOnlyCACerts || hasOnlyAttributeCerts) || >> 143: hasOnlyCACerts && hasOnlyAttributeCerts) { > > Honestly I don't understand the new check. The original one seems more clear. Using original check. > src/java.base/share/classes/sun/security/x509/X509CertImpl.java line 700: > >> 698: >> 699: if (id.equalsIgnoreCase(INFO)) { >> 700: //reset this as certificate data has changed > > Duplicated? Line has been removed. ------------- PR: https://git.openjdk.org/jdk/pull/9972 From mpowers at openjdk.org Fri Sep 2 16:47:56 2022 From: mpowers at openjdk.org (Mark Powers) Date: Fri, 2 Sep 2022 16:47:56 GMT Subject: RFR: JDK-8291509 Minor cleanup could be done in sun.security [v3] In-Reply-To: References: <7_dH-nuIf3G8tvAD5dACQhKlTuQ0PsWmgIxoQZdSwko=.4c5fa745-a0dd-40c4-a62e-10aeaf7c7788@github.com>

Message-ID: On Thu, 1 Sep 2022 02:49:16 GMT, Weijun Wang wrote: >> Can't argue with that. > > Normally we use `SHA2_GROUP`. There are underscores between the words. Added underscores. ------------- PR: https://git.openjdk.org/jdk/pull/9972 From mpowers at openjdk.org Fri Sep 2 18:33:22 2022 From: mpowers at openjdk.org (Mark Powers) Date: Fri, 2 Sep 2022 18:33:22 GMT Subject: RFR: JDK-8291509 Minor cleanup could be done in sun.security [v5] In-Reply-To: <7_dH-nuIf3G8tvAD5dACQhKlTuQ0PsWmgIxoQZdSwko=.4c5fa745-a0dd-40c4-a62e-10aeaf7c7788@github.com> References: <7_dH-nuIf3G8tvAD5dACQhKlTuQ0PsWmgIxoQZdSwko=.4c5fa745-a0dd-40c4-a62e-10aeaf7c7788@github.com> Message-ID: > https://bugs.openjdk.org/browse/JDK-8291509 Mark Powers has updated the pull request incrementally with one additional commit since the last revision: comments from Max ------------- Changes: - all: https://git.openjdk.org/jdk/pull/9972/files - new: https://git.openjdk.org/jdk/pull/9972/files/5e354828..8ad0aa97 Webrevs: - full: https://webrevs.openjdk.org/?repo=jdk&pr=9972&range=04 - incr: https://webrevs.openjdk.org/?repo=jdk&pr=9972&range=03-04 Stats: 94 lines in 23 files changed: 10 ins; 19 del; 65 mod Patch: https://git.openjdk.org/jdk/pull/9972.diff Fetch: git fetch https://git.openjdk.org/jdk pull/9972/head:pull/9972 PR: https://git.openjdk.org/jdk/pull/9972 From mpowers at openjdk.org Fri Sep 2 18:48:32 2022 From: mpowers at openjdk.org (Mark Powers) Date: Fri, 2 Sep 2022 18:48:32 GMT Subject: RFR: JDK-8291509 Minor cleanup could be done in sun.security [v6] In-Reply-To: <7_dH-nuIf3G8tvAD5dACQhKlTuQ0PsWmgIxoQZdSwko=.4c5fa745-a0dd-40c4-a62e-10aeaf7c7788@github.com> References: <7_dH-nuIf3G8tvAD5dACQhKlTuQ0PsWmgIxoQZdSwko=.4c5fa745-a0dd-40c4-a62e-10aeaf7c7788@github.com> Message-ID: > https://bugs.openjdk.org/browse/JDK-8291509 Mark Powers has updated the pull request incrementally with one additional commit since the last revision: white space ------------- Changes: - all: https://git.openjdk.org/jdk/pull/9972/files - new: https://git.openjdk.org/jdk/pull/9972/files/8ad0aa97..366b957a Webrevs: - full: https://webrevs.openjdk.org/?repo=jdk&pr=9972&range=05 - incr: https://webrevs.openjdk.org/?repo=jdk&pr=9972&range=04-05 Stats: 1 line in 1 file changed: 0 ins; 0 del; 1 mod Patch: https://git.openjdk.org/jdk/pull/9972.diff Fetch: git fetch https://git.openjdk.org/jdk pull/9972/head:pull/9972 PR: https://git.openjdk.org/jdk/pull/9972 From duke at openjdk.org Sat Sep 3 01:46:52 2022 From: duke at openjdk.org (duke) Date: Sat, 3 Sep 2022 01:46:52 GMT Subject: Withdrawn: 8282038: CipherSpi.bufferCrypt leaves plaintext copy on the heap In-Reply-To: References: Message-ID: <5E69596JrwUNhWVdpkH8UDPUo0ltn6bYjZXi9p6dYCI=.c731e9cf-4081-4077-a085-edc263fba7da@github.com> On Tue, 14 Jun 2022 17:57:17 GMT, Weijun Wang wrote: > Clearing buffers and temporary arrays to avoid data leaks in cipher operations. This pull request has been closed without being integrated. ------------- PR: https://git.openjdk.org/jdk/pull/9158 From alanb at openjdk.org Sat Sep 3 07:26:47 2022 From: alanb at openjdk.org (Alan Bateman) Date: Sat, 3 Sep 2022 07:26:47 GMT Subject: RFR: 8293197: Avoid double racy reads from non-volatile fields in SharedSecrets In-Reply-To: References: Message-ID: On Tue, 30 Aug 2022 07:10:36 GMT, Andrey Turbanov wrote: > After integration of [JDK-8259021](https://bugs.openjdk.org/browse/JDK-8259021) a few more fields were added to `SharedSecrets` class. It make sense to update their reading code to use the same idiom. Surprising that the additions since JDK-8259021 didn't follow the same pattern but I think some of these were in other repos at the time. ------------- Marked as reviewed by alanb (Reviewer). PR: https://git.openjdk.org/jdk/pull/10076 From djelinski at openjdk.org Mon Sep 5 07:25:28 2022 From: djelinski at openjdk.org (Daniel =?UTF-8?B?SmVsacWEc2tp?=) Date: Mon, 5 Sep 2022 07:25:28 GMT Subject: RFR: 8293088: Fix compilation with the new Visual Studio preprocessor In-Reply-To: References: Message-ID: On Tue, 30 Aug 2022 12:08:09 GMT, Daniel Jeli?ski wrote: > Fix compilation with Zc:preprocessor enabled. > > The flag itself will be enabled in [JDK-8247283](https://bugs.openjdk.org/browse/JDK-8247283); I enabled the flag using instructions found in Magnus's comment on that issue. > > Windows 10 SDK version 2104 (10.0.20348.0) is required for successful compilation. Compilation fails with a warning (treated as error by default) with older versions of Windows 10 SDK. > > I verified that the compilation completes successfully with this patch, both in debug and in release mode, both with and without Zc:preprocessor. I verified the preprocessor output on `D3DResourceManager.cpp` file, which uses 3 of the 4 changed macros in `D3DPipeline.h` (`RETURN_STATUS_IF_EXP_FAILED` is not used anywhere). The generated files have only cosmetic differences - `##` removes whitespace between the concatenated string literals, and without `##` the whitespace is preserved. This whitespace is ignored by the compiler. ------------- PR: https://git.openjdk.org/jdk/pull/10080 From djelinski at openjdk.org Mon Sep 5 07:25:29 2022 From: djelinski at openjdk.org (Daniel =?UTF-8?B?SmVsacWEc2tp?=) Date: Mon, 5 Sep 2022 07:25:29 GMT Subject: Integrated: 8293088: Fix compilation with the new Visual Studio preprocessor In-Reply-To: References: Message-ID: <8jbP_1Aah3x4T_snhUAcWiN5NsxDJgst1JHiFYOrngY=.fe496f0d-51e9-4e0f-a6f4-c1df98174f4b@github.com> On Tue, 30 Aug 2022 12:08:09 GMT, Daniel Jeli?ski wrote: > Fix compilation with Zc:preprocessor enabled. > > The flag itself will be enabled in [JDK-8247283](https://bugs.openjdk.org/browse/JDK-8247283); I enabled the flag using instructions found in Magnus's comment on that issue. > > Windows 10 SDK version 2104 (10.0.20348.0) is required for successful compilation. Compilation fails with a warning (treated as error by default) with older versions of Windows 10 SDK. > > I verified that the compilation completes successfully with this patch, both in debug and in release mode, both with and without Zc:preprocessor. This pull request has now been integrated. Changeset: e945619d Author: Daniel Jeli?ski URL: https://git.openjdk.org/jdk/commit/e945619ddd38091eaa010f65472141443b8f214d Stats: 6 lines in 2 files changed: 0 ins; 0 del; 6 mod 8293088: Fix compilation with the new Visual Studio preprocessor Reviewed-by: ihse ------------- PR: https://git.openjdk.org/jdk/pull/10080 From djelinski at openjdk.org Mon Sep 5 09:42:59 2022 From: djelinski at openjdk.org (Daniel =?UTF-8?B?SmVsacWEc2tp?=) Date: Mon, 5 Sep 2022 09:42:59 GMT Subject: RFR: 8293326: jdk/sun/security/tools/jarsigner/compatibility/SignTwice.java slow on Windows Message-ID: <33oOqZONiY4_yjFmx1exlPHxuZf75HRKapOX9gC8QPM=.48319976-7687-4af2-a0c4-11634256861f@github.com> This patch enables SignTwice test to complete faster on Windows machines. The test starts `keytool` and `jarsigner` a number of times, passing `-J-Djava.security.egd=file:/dev/./urandom` to the started process, presumably to avoid blocking on VMs with insufficient entropy. This works fine on machines where `/dev/./urandom` is actually present. On Windows it makes the JVM use `ThreadedSeedGenerator`, which is very slow compared to the other options. The fix removes `java.security.egd` setting on Windows machines. Alternatively we could change the egd to use `file:/dev/urandom` (without the `/./` part); this also fixes the Windows problem. Is the `/./` part still needed? If I understand correctly, it was a workaround for some JDK7 bug. ------------- Commit messages: - Remove dev/./urandom on Windows Changes: https://git.openjdk.org/jdk/pull/10160/files Webrev: https://webrevs.openjdk.org/?repo=jdk&pr=10160&range=00 Issue: https://bugs.openjdk.org/browse/JDK-8293326 Stats: 13 lines in 1 file changed: 10 ins; 3 del; 0 mod Patch: https://git.openjdk.org/jdk/pull/10160.diff Fetch: git fetch https://git.openjdk.org/jdk pull/10160/head:pull/10160 PR: https://git.openjdk.org/jdk/pull/10160 From weijun at openjdk.org Mon Sep 5 14:39:38 2022 From: weijun at openjdk.org (Weijun Wang) Date: Mon, 5 Sep 2022 14:39:38 GMT Subject: RFR: 8293326: jdk/sun/security/tools/jarsigner/compatibility/SignTwice.java slow on Windows In-Reply-To: <33oOqZONiY4_yjFmx1exlPHxuZf75HRKapOX9gC8QPM=.48319976-7687-4af2-a0c4-11634256861f@github.com> References: <33oOqZONiY4_yjFmx1exlPHxuZf75HRKapOX9gC8QPM=.48319976-7687-4af2-a0c4-11634256861f@github.com> Message-ID: On Mon, 5 Sep 2022 09:29:49 GMT, Daniel Jeli?ski wrote: > This patch enables SignTwice test to complete faster on Windows machines. > > The test starts `keytool` and `jarsigner` a number of times, passing `-J-Djava.security.egd=file:/dev/./urandom` to the started process, presumably to avoid blocking on VMs with insufficient entropy. This works fine on machines where `/dev/./urandom` is actually present. On Windows it makes the JVM use `ThreadedSeedGenerator`, which is very slow compared to the other options. > > The fix removes `java.security.egd` setting on Windows machines. > > Alternatively we could change the egd to use `file:/dev/urandom` (without the `/./` part); this also fixes the Windows problem. Is the `/./` part still needed? If I understand correctly, it was a workaround for some JDK7 bug. There are helper methods in `jdk.test.lib.SecurityTools` that knows about when to use the EGD property. @bradfordwetmore, is the `/dev/./urandom` trick not necessary anymore? ------------- PR: https://git.openjdk.org/jdk/pull/10160 From weijun at openjdk.org Mon Sep 5 14:43:36 2022 From: weijun at openjdk.org (Weijun Wang) Date: Mon, 5 Sep 2022 14:43:36 GMT Subject: RFR: 8293326: jdk/sun/security/tools/jarsigner/compatibility/SignTwice.java slow on Windows In-Reply-To: <33oOqZONiY4_yjFmx1exlPHxuZf75HRKapOX9gC8QPM=.48319976-7687-4af2-a0c4-11634256861f@github.com> References: <33oOqZONiY4_yjFmx1exlPHxuZf75HRKapOX9gC8QPM=.48319976-7687-4af2-a0c4-11634256861f@github.com> Message-ID: On Mon, 5 Sep 2022 09:29:49 GMT, Daniel Jeli?ski wrote: > This patch enables SignTwice test to complete faster on Windows machines. > > The test starts `keytool` and `jarsigner` a number of times, passing `-J-Djava.security.egd=file:/dev/./urandom` to the started process, presumably to avoid blocking on VMs with insufficient entropy. This works fine on machines where `/dev/./urandom` is actually present. On Windows it makes the JVM use `ThreadedSeedGenerator`, which is very slow compared to the other options. > > The fix removes `java.security.egd` setting on Windows machines. > > Alternatively we could change the egd to use `file:/dev/urandom` (without the `/./` part); this also fixes the Windows problem. Is the `/./` part still needed? If I understand correctly, it was a workaround for some JDK7 bug. Marked as reviewed by weijun (Reviewer). ------------- PR: https://git.openjdk.org/jdk/pull/10160 From wetmore at openjdk.org Mon Sep 5 15:04:49 2022 From: wetmore at openjdk.org (Bradford Wetmore) Date: Mon, 5 Sep 2022 15:04:49 GMT Subject: RFR: 8293326: jdk/sun/security/tools/jarsigner/compatibility/SignTwice.java slow on Windows In-Reply-To: References: <33oOqZONiY4_yjFmx1exlPHxuZf75HRKapOX9gC8QPM=.48319976-7687-4af2-a0c4-11634256861f@github.com> Message-ID: On Mon, 5 Sep 2022 14:37:34 GMT, Weijun Wang wrote: > @bradfordwetmore, is the `/dev/./urandom` trick not necessary anymore? Not necessary in current JDK, but not sure if this was backported to JDK 8u. ------------- PR: https://git.openjdk.org/jdk/pull/10160 From djelinski at openjdk.org Mon Sep 5 17:07:51 2022 From: djelinski at openjdk.org (Daniel =?UTF-8?B?SmVsacWEc2tp?=) Date: Mon, 5 Sep 2022 17:07:51 GMT Subject: RFR: 8293326: jdk/sun/security/tools/jarsigner/compatibility/SignTwice.java slow on Windows In-Reply-To: <33oOqZONiY4_yjFmx1exlPHxuZf75HRKapOX9gC8QPM=.48319976-7687-4af2-a0c4-11634256861f@github.com> References: <33oOqZONiY4_yjFmx1exlPHxuZf75HRKapOX9gC8QPM=.48319976-7687-4af2-a0c4-11634256861f@github.com> Message-ID: <9vbupTndc439SsbM1-Z6Oi75XgdViNSlyIj85OLZp9M=.0f000557-c843-4534-a81e-46cfba56eb6b@github.com> On Mon, 5 Sep 2022 09:29:49 GMT, Daniel Jeli?ski wrote: > This patch enables SignTwice test to complete faster on Windows machines. > > The test starts `keytool` and `jarsigner` a number of times, passing `-J-Djava.security.egd=file:/dev/./urandom` to the started process, presumably to avoid blocking on VMs with insufficient entropy. This works fine on machines where `/dev/./urandom` is actually present. On Windows it makes the JVM use `ThreadedSeedGenerator`, which is very slow compared to the other options. > > The fix removes `java.security.egd` setting on Windows machines. > > Alternatively we could change the egd to use `file:/dev/urandom` (without the `/./` part); this also fixes the Windows problem. Is the `/./` part still needed? If I understand correctly, it was a workaround for some JDK7 bug. as far as I can tell, the `dev/./urandom` trick was only needed before 63a6638ebfe5b492d3156694024b37fa7a229a86, which was shipped in JDK8. `jdk.test.lib.SecurityTools` is also using `dev/./urandom`, so I'll leave the dot here for now. ------------- PR: https://git.openjdk.org/jdk/pull/10160 From wetmore at openjdk.org Mon Sep 5 17:29:39 2022 From: wetmore at openjdk.org (Bradford Wetmore) Date: Mon, 5 Sep 2022 17:29:39 GMT Subject: RFR: 8293326: jdk/sun/security/tools/jarsigner/compatibility/SignTwice.java slow on Windows In-Reply-To: <33oOqZONiY4_yjFmx1exlPHxuZf75HRKapOX9gC8QPM=.48319976-7687-4af2-a0c4-11634256861f@github.com> References: <33oOqZONiY4_yjFmx1exlPHxuZf75HRKapOX9gC8QPM=.48319976-7687-4af2-a0c4-11634256861f@github.com> Message-ID: On Mon, 5 Sep 2022 09:29:49 GMT, Daniel Jeli?ski wrote: > This patch enables SignTwice test to complete faster on Windows machines. > > The test starts `keytool` and `jarsigner` a number of times, passing `-J-Djava.security.egd=file:/dev/./urandom` to the started process, presumably to avoid blocking on VMs with insufficient entropy. This works fine on machines where `/dev/./urandom` is actually present. On Windows it makes the JVM use `ThreadedSeedGenerator`, which is very slow compared to the other options. > > The fix removes `java.security.egd` setting on Windows machines. > > Alternatively we could change the egd to use `file:/dev/urandom` (without the `/./` part); this also fixes the Windows problem. Is the `/./` part still needed? If I understand correctly, it was a workaround for some JDK7 bug. test/jdk/sun/security/tools/jarsigner/compatibility/Compatibility.java line 1044: > 1042: } else { > 1043: cmd = new String[args.length + 4]; > 1044: cmd[3] = "-J-Djava.security.egd=file:/dev/./urandom"; IIRC, this is a workaround for an old issue which no longer applies after JDK-6425477. By default NativePRNG generates from /dev/urandom, only grabbing seed data from /dev/random. I believe the egd workaround can be completely removed unless there's something that asks for NativePRNGBlocking. ------------- PR: https://git.openjdk.org/jdk/pull/10160 From weijun at openjdk.org Mon Sep 5 18:55:43 2022 From: weijun at openjdk.org (Weijun Wang) Date: Mon, 5 Sep 2022 18:55:43 GMT Subject: RFR: 8293326: jdk/sun/security/tools/jarsigner/compatibility/SignTwice.java slow on Windows In-Reply-To: References: <33oOqZONiY4_yjFmx1exlPHxuZf75HRKapOX9gC8QPM=.48319976-7687-4af2-a0c4-11634256861f@github.com> Message-ID: <316-Xmp8hJW9ErsLfyvCgPRTbTwV0OcfySypJs7Immw=.3044a3e8-9300-43e1-b521-e2f1ba3bc739@github.com> On Mon, 5 Sep 2022 17:25:48 GMT, Bradford Wetmore wrote: >> This patch enables SignTwice test to complete faster on Windows machines. >> >> The test starts `keytool` and `jarsigner` a number of times, passing `-J-Djava.security.egd=file:/dev/./urandom` to the started process, presumably to avoid blocking on VMs with insufficient entropy. This works fine on machines where `/dev/./urandom` is actually present. On Windows it makes the JVM use `ThreadedSeedGenerator`, which is very slow compared to the other options. >> >> The fix removes `java.security.egd` setting on Windows machines. >> >> Alternatively we could change the egd to use `file:/dev/urandom` (without the `/./` part); this also fixes the Windows problem. Is the `/./` part still needed? If I understand correctly, it was a workaround for some JDK7 bug. > > test/jdk/sun/security/tools/jarsigner/compatibility/Compatibility.java line 1044: > >> 1042: } else { >> 1043: cmd = new String[args.length + 4]; >> 1044: cmd[3] = "-J-Djava.security.egd=file:/dev/./urandom"; > > IIRC, this is a workaround for an old issue which no longer applies after JDK-6425477. By default NativePRNG generates from /dev/urandom, only grabbing seed data from /dev/random. > > I believe the egd workaround can be completely removed unless there's something that asks for NativePRNGBlocking. I remember the major problem was the auto-seeding before the first `nextBytes` is called, and it could read `/dev/random`. Not sure it's for SHA1PRNG or NativeRandom. ------------- PR: https://git.openjdk.org/jdk/pull/10160 From wetmore at openjdk.org Tue Sep 6 01:28:43 2022 From: wetmore at openjdk.org (Bradford Wetmore) Date: Tue, 6 Sep 2022 01:28:43 GMT Subject: RFR: 8293326: jdk/sun/security/tools/jarsigner/compatibility/SignTwice.java slow on Windows In-Reply-To: <316-Xmp8hJW9ErsLfyvCgPRTbTwV0OcfySypJs7Immw=.3044a3e8-9300-43e1-b521-e2f1ba3bc739@github.com> References: <33oOqZONiY4_yjFmx1exlPHxuZf75HRKapOX9gC8QPM=.48319976-7687-4af2-a0c4-11634256861f@github.com> <316-Xmp8hJW9ErsLfyvCgPRTbTwV0OcfySypJs7Immw=.3044a3e8-9300-43e1-b521-e2f1ba3bc739@github.com> Message-ID: On Mon, 5 Sep 2022 18:52:21 GMT, Weijun Wang wrote: >> test/jdk/sun/security/tools/jarsigner/compatibility/Compatibility.java line 1044: >> >>> 1042: } else { >>> 1043: cmd = new String[args.length + 4]; >>> 1044: cmd[3] = "-J-Djava.security.egd=file:/dev/./urandom"; >> >> IIRC, this is a workaround for an old issue which no longer applies after JDK-6425477. By default NativePRNG generates from /dev/urandom, only grabbing seed data from /dev/random. >> >> I believe the egd workaround can be completely removed unless there's something that asks for NativePRNGBlocking. > > I remember the major problem was the auto-seeding before the first `nextBytes` is called, and it could read `/dev/random`. Not sure it's for SHA1PRNG or NativeRandom. SHA1PRNG, which is no longer the default on Linux. But some apps are still asking for SHA1PRNG instead of using the default NativePRNG on Linux. ------------- PR: https://git.openjdk.org/jdk/pull/10160 From djelinski at openjdk.org Tue Sep 6 09:23:43 2022 From: djelinski at openjdk.org (Daniel =?UTF-8?B?SmVsacWEc2tp?=) Date: Tue, 6 Sep 2022 09:23:43 GMT Subject: RFR: 8293326: jdk/sun/security/tools/jarsigner/compatibility/SignTwice.java slow on Windows In-Reply-To: References: <33oOqZONiY4_yjFmx1exlPHxuZf75HRKapOX9gC8QPM=.48319976-7687-4af2-a0c4-11634256861f@github.com> <316-Xmp8hJW9ErsLfyvCgPRTbTwV0OcfySypJs7Immw=.3044a3e8-9300-43e1-b521-e2f1ba3bc739@github.com> Message-ID: On Tue, 6 Sep 2022 01:26:34 GMT, Bradford Wetmore wrote: >> I remember the major problem was the auto-seeding before the first `nextBytes` is called, and it could read `/dev/random`. Not sure it's for SHA1PRNG or NativeRandom. > > SHA1PRNG, which is no longer the default on Linux. But some apps are still asking for SHA1PRNG instead of using the default NativePRNG on Linux. FWIW, NativePRNGBlocking ignores java.security.egd and always uses `/dev/random`. I'd rather not clean up all references to EGD here. Filed [JDK-8293412](https://bugs.openjdk.org/browse/JDK-8293412) as a follow up. ------------- PR: https://git.openjdk.org/jdk/pull/10160 From weijun at openjdk.org Tue Sep 6 14:13:44 2022 From: weijun at openjdk.org (Weijun Wang) Date: Tue, 6 Sep 2022 14:13:44 GMT Subject: RFR: 6447816: Provider filtering (getProviders) is not working with OR'd conditions [v2] In-Reply-To: <8x_-hT0hw6GqQho_CxlpCmmJm-OBvlvZrkqpMD3ItYY=.b8850e45-a380-4002-ab6d-6d512597b57c@github.com> References: <-ws8CzY5840jultJy8Nbs9e146U43kKFKKTHiHgprQo=.f4c7dbb7-1c01-4d72-a688-287c0f506bcf@github.com> <8x_-hT0hw6GqQho_CxlpCmmJm-OBvlvZrkqpMD3ItYY=.b8850e45-a380-4002-ab6d-6d512597b57c@github.com> Message-ID: <2untLt_BbgbDuMGC7B3_YDpcraMlFxJ4aDrhLO9dhAQ=.2337b367-7d9b-45f1-b003-3ef03c9153e8@github.com> On Thu, 25 Aug 2022 19:59:18 GMT, Valerie Peng wrote: >> src/java.base/share/classes/java/security/Security.java line 599: >> >>> 597: // Returns all installed providers >>> 598: // if the selection criteria is null. >>> 599: if ((keySet == null) || (allProviders == null)) { >> >> I'm not sure, but can `keySet` or `allProviders` be null? Or you meant `isEmpty()`? > > Both may be null as their javadoc didn't state explicitly what is returned. > This is existing code and it returns null upon empty keySet which I keep the same behavior. > Perhaps for consistency sake, it should also check for the empty keySet condition and return allProviders. Sorry, I re-read and maybe the original check is better. If both `keySet` and `allProviders` are empty, then empty is returned. According to the spec, it should be null. I still don't think either of them can be null, but adding the `isEmpty` check is probably wrong. ------------- PR: https://git.openjdk.org/jdk/pull/10008 From weijun at openjdk.org Tue Sep 6 14:23:49 2022 From: weijun at openjdk.org (Weijun Wang) Date: Tue, 6 Sep 2022 14:23:49 GMT Subject: RFR: 6447816: Provider filtering (getProviders) is not working with OR'd conditions [v5] In-Reply-To: References:

Message-ID: <5iw0bxqsKeBzSBFrz9b_xaPm1GIg5E3k7vsjklUgGu0=.a7bcbb0a-5d44-46a1-b1c1-e2687d2941dd@github.com> On Mon, 29 Aug 2022 20:13:42 GMT, Valerie Peng wrote: >> Existing provider filtering code only handles two standard attribute "KeySize" and "ImplementedIn", the rest are compared by exact match. Over time, more standard attributes are added which contain multiple values separated by "|". We should enhance the provider filtering code to better compare these. >> >> Documentation update for this is tracked separately under https://bugs.openjdk.org/browse/JDK-6447817. >> >> Thanks in advance for review~ > > Valerie Peng has updated the pull request incrementally with one additional commit since the last revision: > > more refactoring. src/java.base/share/classes/java/security/Security.java line 861: > 859: // check required values > 860: if (serviceName.isEmpty() || algName.isEmpty() || > 861: (!attrValue.isEmpty() && attrName.isEmpty())) { Can we move the `attrName.isEmpty()` check inside the `else` block above? I find it easier to understand. src/java.base/share/classes/java/security/Security.java line 864: > 862: throw new InvalidParameterException("Invalid filter"); > 863: } > 864: } Add an empty line here. src/java.base/share/classes/java/security/Security.java line 865: > 863: } > 864: } > 865: void apply(LinkedList candidates) { `candidates.removeIf(p -> !isCriterionSatisfied(p));` ------------- PR: https://git.openjdk.org/jdk/pull/10008 From weijun at openjdk.org Tue Sep 6 14:33:07 2022 From: weijun at openjdk.org (Weijun Wang) Date: Tue, 6 Sep 2022 14:33:07 GMT Subject: RFR: 6447816: Provider filtering (getProviders) is not working with OR'd conditions [v5] In-Reply-To: References:

Message-ID: <82Vq_JxEHTGCSfDDNAldQXJYN8A_9aHkwS1AGS8I8AY=.87411310-3092-45d7-ab7c-d7f9d0fcf216@github.com> On Mon, 29 Aug 2022 20:13:42 GMT, Valerie Peng wrote: >> Existing provider filtering code only handles two standard attribute "KeySize" and "ImplementedIn", the rest are compared by exact match. Over time, more standard attributes are added which contain multiple values separated by "|". We should enhance the provider filtering code to better compare these. >> >> Documentation update for this is tracked separately under https://bugs.openjdk.org/browse/JDK-6447817. >> >> Thanks in advance for review~ > > Valerie Peng has updated the pull request incrementally with one additional commit since the last revision: > > more refactoring. test/jdk/java/security/Security/ProviderFiltering.java line 108: > 106: doit(key + ":" + valComp1, p); > 107: doit(key + ":" + valComp2, p); > 108: doit(key + ":" + valComp2CN); Please provide a comment on `valComp2CN`. ------------- PR: https://git.openjdk.org/jdk/pull/10008 From weijun at openjdk.org Tue Sep 6 14:47:47 2022 From: weijun at openjdk.org (Weijun Wang) Date: Tue, 6 Sep 2022 14:47:47 GMT Subject: RFR: 6447816: Provider filtering (getProviders) is not working with OR'd conditions [v5] In-Reply-To: References:

Message-ID: On Mon, 29 Aug 2022 20:13:42 GMT, Valerie Peng wrote: >> Existing provider filtering code only handles two standard attribute "KeySize" and "ImplementedIn", the rest are compared by exact match. Over time, more standard attributes are added which contain multiple values separated by "|". We should enhance the provider filtering code to better compare these. >> >> Documentation update for this is tracked separately under https://bugs.openjdk.org/browse/JDK-6447817. >> >> Thanks in advance for review~ > > Valerie Peng has updated the pull request incrementally with one additional commit since the last revision: > > more refactoring. test/jdk/java/security/Security/ProviderFiltering.java line 145: > 143: doit(filters, pName); > 144: > 145: // should find no proviser now that TestProv is removed Typo, `s/proviser/provider/`. ------------- PR: https://git.openjdk.org/jdk/pull/10008 From mullan at openjdk.org Tue Sep 6 17:09:54 2022 From: mullan at openjdk.org (Sean Mullan) Date: Tue, 6 Sep 2022 17:09:54 GMT Subject: RFR: JDK-8291509 Minor cleanup could be done in sun.security [v6] In-Reply-To: References: <7_dH-nuIf3G8tvAD5dACQhKlTuQ0PsWmgIxoQZdSwko=.4c5fa745-a0dd-40c4-a62e-10aeaf7c7788@github.com> Message-ID: On Fri, 2 Sep 2022 18:48:32 GMT, Mark Powers wrote: >> https://bugs.openjdk.org/browse/JDK-8291509 > > Mark Powers has updated the pull request incrementally with one additional commit since the last revision: > > white space reviewed up to certpath dir. src/java.base/share/classes/sun/security/provider/AbstractDrbg.java line 81: > 79: * does not need to compare it to {@link #reseedInterval}. > 80: * > 81: * Volatile, will be used in a double-checked locking. Also, remove "a" as it reads more correctly w/o it. src/java.base/share/classes/sun/security/provider/ConfigFile.java line 167: > 165: // call in a doPrivileged > 166: // > 167: // we have already passed the Configuration.getInstance s/we/We/ src/java.base/share/classes/sun/security/provider/ConfigFile.java line 168: > 166: // > 167: // we have already passed the Configuration.getInstance > 168: // security check. also, this class is not freely accessible s/also/Also/ src/java.base/share/classes/sun/security/provider/PolicyParser.java line 1165: > 1163: } > 1164: > 1165: // everything matched -- the 2 objects are equal remove the comment as it no longer applies src/java.base/share/classes/sun/security/provider/PolicyParser.java line 1180: > 1178: // and then in a java string, it's escaped again > 1179: > 1180: out.print(name.replaceAll("\\\\", "\\\\\\\\").replaceAll("\"", "\\\\\\\"")); Why does IJ say this is the same? This appears to replace backslash-quote with quote. src/java.base/share/classes/sun/security/provider/SunEntries.java line 369: > 367: * Use a URI to access this File. Previous code used a URL > 368: * which is less strict on syntax. If we encounter a > 369: * URISyntaxException we make the best efforts for backwards I'd change this to "a best effort". Same comment on l392. ------------- PR: https://git.openjdk.org/jdk/pull/9972 From weijun at openjdk.org Tue Sep 6 17:56:02 2022 From: weijun at openjdk.org (Weijun Wang) Date: Tue, 6 Sep 2022 17:56:02 GMT Subject: RFR: JDK-8291509 Minor cleanup could be done in sun.security [v6] In-Reply-To: References: <7_dH-nuIf3G8tvAD5dACQhKlTuQ0PsWmgIxoQZdSwko=.4c5fa745-a0dd-40c4-a62e-10aeaf7c7788@github.com>

Message-ID: On Tue, 6 Sep 2022 16:59:38 GMT, Sean Mullan wrote: >> Mark Powers has updated the pull request incrementally with one additional commit since the last revision: >> >> white space > > src/java.base/share/classes/sun/security/provider/PolicyParser.java line 1180: > >> 1178: // and then in a java string, it's escaped again >> 1179: >> 1180: out.print(name.replaceAll("\\\\", "\\\\\\\\").replaceAll("\"", "\\\\\\\"")); > > Why does IJ say this is the same? This appears to replace backslash-quote with quote. My understanding: In regex, there is no need to escape `"`, so `"` is the same as `"`. ------------- PR: https://git.openjdk.org/jdk/pull/9972 From weijun at openjdk.org Tue Sep 6 18:01:06 2022 From: weijun at openjdk.org (Weijun Wang) Date: Tue, 6 Sep 2022 18:01:06 GMT Subject: RFR: JDK-8291509 Minor cleanup could be done in sun.security [v6] In-Reply-To: References: <7_dH-nuIf3G8tvAD5dACQhKlTuQ0PsWmgIxoQZdSwko=.4c5fa745-a0dd-40c4-a62e-10aeaf7c7788@github.com>

Message-ID: On Fri, 2 Sep 2022 01:02:26 GMT, Mark Powers wrote: >> src/java.base/share/classes/sun/security/tools/keytool/Main.java line 183: >> >>> 181: private List weakWarnings = new ArrayList<>(); >>> 182: >>> 183: private Set trustedCerts = new HashSet<>(); >> >> Put all these `final`s in one group. > > If I do that, it will mess up existing groups, e.g. `// Warnings on weak algorithms etc`. I was able to move a few files around, but not many. OK. ------------- PR: https://git.openjdk.org/jdk/pull/9972 From weijun at openjdk.org Tue Sep 6 18:01:07 2022 From: weijun at openjdk.org (Weijun Wang) Date: Tue, 6 Sep 2022 18:01:07 GMT Subject: RFR: JDK-8291509 Minor cleanup could be done in sun.security [v4] In-Reply-To: References: <7_dH-nuIf3G8tvAD5dACQhKlTuQ0PsWmgIxoQZdSwko=.4c5fa745-a0dd-40c4-a62e-10aeaf7c7788@github.com>

Message-ID: On Fri, 2 Sep 2022 04:16:04 GMT, Mark Powers wrote: >> src/java.base/share/classes/sun/security/tools/keytool/Main.java line 3534: >> >>> 3532: Object[] source = {alias}; >>> 3533: if (otherKeyPass != null) { >>> 3534: System.err.println(form.format(source)); >> >> You can move the line above out as well. It's also the same. > > I can't factor them out because one is `println` and the other is `print`. OK ------------- PR: https://git.openjdk.org/jdk/pull/9972 From wetmore at openjdk.org Tue Sep 6 19:09:13 2022 From: wetmore at openjdk.org (Bradford Wetmore) Date: Tue, 6 Sep 2022 19:09:13 GMT Subject: RFR: 8293326: jdk/sun/security/tools/jarsigner/compatibility/SignTwice.java slow on Windows In-Reply-To: <33oOqZONiY4_yjFmx1exlPHxuZf75HRKapOX9gC8QPM=.48319976-7687-4af2-a0c4-11634256861f@github.com> References: <33oOqZONiY4_yjFmx1exlPHxuZf75HRKapOX9gC8QPM=.48319976-7687-4af2-a0c4-11634256861f@github.com> Message-ID: On Mon, 5 Sep 2022 09:29:49 GMT, Daniel Jeli?ski wrote: > This patch enables SignTwice test to complete faster on Windows machines. > > The test starts `keytool` and `jarsigner` a number of times, passing `-J-Djava.security.egd=file:/dev/./urandom` to the started process, presumably to avoid blocking on VMs with insufficient entropy. This works fine on machines where `/dev/./urandom` is actually present. On Windows it makes the JVM use `ThreadedSeedGenerator`, which is very slow compared to the other options. > > The fix removes `java.security.egd` setting on Windows machines. > > Alternatively we could change the egd to use `file:/dev/urandom` (without the `/./` part); this also fixes the Windows problem. Is the `/./` part still needed? If I understand correctly, it was a workaround for some JDK7 bug. LGTM. ------------- Marked as reviewed by wetmore (Reviewer). PR: https://git.openjdk.org/jdk/pull/10160 From wetmore at openjdk.org Tue Sep 6 19:09:13 2022 From: wetmore at openjdk.org (Bradford Wetmore) Date: Tue, 6 Sep 2022 19:09:13 GMT Subject: RFR: 8293326: jdk/sun/security/tools/jarsigner/compatibility/SignTwice.java slow on Windows In-Reply-To: References: <33oOqZONiY4_yjFmx1exlPHxuZf75HRKapOX9gC8QPM=.48319976-7687-4af2-a0c4-11634256861f@github.com> <316-Xmp8hJW9ErsLfyvCgPRTbTwV0OcfySypJs7Immw=.3044a3e8-9300-43e1-b521-e2f1ba3bc739@github.com>

Message-ID: On Tue, 6 Sep 2022 09:21:33 GMT, Daniel Jeli?ski wrote: >> SHA1PRNG, which is no longer the default on Linux. But some apps are still asking for SHA1PRNG instead of using the default NativePRNG on Linux. > > FWIW, NativePRNGBlocking ignores java.security.egd and always uses `/dev/random`. > > I'd rather not clean up all references to EGD here. Filed [JDK-8293412](https://bugs.openjdk.org/browse/JDK-8293412) as a follow up. So IIUC, for this PR you're only going to tweak so that egd is not set in Windows, and then JDK-8293412 will address this comment and other instances throughout the base? ------------- PR: https://git.openjdk.org/jdk/pull/10160 From djelinski at openjdk.org Tue Sep 6 20:07:47 2022 From: djelinski at openjdk.org (Daniel =?UTF-8?B?SmVsacWEc2tp?=) Date: Tue, 6 Sep 2022 20:07:47 GMT Subject: RFR: 8293326: jdk/sun/security/tools/jarsigner/compatibility/SignTwice.java slow on Windows In-Reply-To: References: <33oOqZONiY4_yjFmx1exlPHxuZf75HRKapOX9gC8QPM=.48319976-7687-4af2-a0c4-11634256861f@github.com> <316-Xmp8hJW9ErsLfyvCgPRTbTwV0OcfySypJs7Immw=.3044a3e8-9300-43e1-b521-e2f1ba3bc739@github.com>

Message-ID: <5vJCvSqw50v2BIcjCiTwrwHz00AmNStOnXJZm2_odyM=.67561bfd-acd2-4e37-bbba-49e870863aec@github.com> On Tue, 6 Sep 2022 19:05:40 GMT, Bradford Wetmore wrote: >> FWIW, NativePRNGBlocking ignores java.security.egd and always uses `/dev/random`. >> >> I'd rather not clean up all references to EGD here. Filed [JDK-8293412](https://bugs.openjdk.org/browse/JDK-8293412) as a follow up. > > So IIUC, for this PR you're only going to tweak so that egd is not set in Windows, and then JDK-8293412 will address this comment and other instances throughout the base? Yes, that's the plan. ------------- PR: https://git.openjdk.org/jdk/pull/10160 From valeriep at openjdk.org Tue Sep 6 20:28:40 2022 From: valeriep at openjdk.org (Valerie Peng) Date: Tue, 6 Sep 2022 20:28:40 GMT Subject: RFR: 8293232: Fix race condition in pkcs11 SessionManager In-Reply-To: References: Message-ID: On Thu, 1 Sep 2022 17:28:40 GMT, zzambers wrote: > There is a race condition in JDK's SessionManager, which can lead to random exceptions. > > **Exception:** > > javax.net.ssl.SSLException: Internal error: close session with active objects > at java.base/sun.security.ssl.Alert.createSSLException(Alert.java:133) > at java.base/sun.security.ssl.TransportContext.fatal(TransportContext.java:371) > at java.base/sun.security.ssl.TransportContext.fatal(TransportContext.java:314) > at java.base/sun.security.ssl.TransportContext.fatal(TransportContext.java:309) > at java.base/sun.security.ssl.SSLSocketImpl.handleException(SSLSocketImpl.java:1707) > at java.base/sun.security.ssl.SSLSocketImpl$AppInputStream.read(SSLSocketImpl.java:1080) > at java.base/sun.security.ssl.SSLSocketImpl$AppInputStream.read(SSLSocketImpl.java:971) > at SSLSocketServer.serverLoop(SSLSocketServer.java:133) > at SSLSocketServer$1.run(SSLSocketServer.java:75) > at java.base/java.lang.Thread.run(Thread.java:833) > Caused by: java.security.ProviderException: Internal error: close session with active objects > at jdk.crypto.cryptoki/sun.security.pkcs11.Session.close(Session.java:127) > at jdk.crypto.cryptoki/sun.security.pkcs11.Session.close(Session.java:114) > at jdk.crypto.cryptoki/sun.security.pkcs11.SessionManager.closeSession(SessionManager.java:237) > at jdk.crypto.cryptoki/sun.security.pkcs11.SessionManager$Pool.release(SessionManager.java:270) > at jdk.crypto.cryptoki/sun.security.pkcs11.SessionManager.demoteObjSession(SessionManager.java:210) > at jdk.crypto.cryptoki/sun.security.pkcs11.Session.removeObject(Session.java:101) > at jdk.crypto.cryptoki/sun.security.pkcs11.SessionKeyRef.updateNativeKey(P11Key.java:1396) > at jdk.crypto.cryptoki/sun.security.pkcs11.SessionKeyRef.removeNativeKey(P11Key.java:1377) > at jdk.crypto.cryptoki/sun.security.pkcs11.NativeKeyHolder.releaseKeyID(P11Key.java:1329) > at jdk.crypto.cryptoki/sun.security.pkcs11.P11Key.releaseKeyID(P11Key.java:156) > at jdk.crypto.cryptoki/sun.security.pkcs11.P11AEADCipher.reset(P11AEADCipher.java:529) > at jdk.crypto.cryptoki/sun.security.pkcs11.P11AEADCipher.ensureInitialized(P11AEADCipher.java:436) > at jdk.crypto.cryptoki/sun.security.pkcs11.P11AEADCipher.implDoFinal(P11AEADCipher.java:732) > at jdk.crypto.cryptoki/sun.security.pkcs11.P11AEADCipher.engineDoFinal(P11AEADCipher.java:624) > at java.base/javax.crypto.Cipher.doFinal(Cipher.java:2500) > at java.base/sun.security.ssl.SSLCipher$T12GcmReadCipherGenerator$GcmReadCipher.decrypt(SSLCipher.java:1659) > at java.base/sun.security.ssl.SSLSocketInputRecord.decodeInputRecord(SSLSocketInputRecord.java:260) > at java.base/sun.security.ssl.SSLSocketInputRecord.decode(SSLSocketInputRecord.java:181) > at java.base/sun.security.ssl.SSLTransport.decode(SSLTransport.java:111) > at java.base/sun.security.ssl.SSLSocketImpl.decode(SSLSocketImpl.java:1508) > at java.base/sun.security.ssl.SSLSocketImpl.readApplicationRecord(SSLSocketImpl.java:1479) > at java.base/sun.security.ssl.SSLSocketImpl$AppInputStream.read(SSLSocketImpl.java:1064) > ... 4 more > > > **Reproducibility:** > I started getting this exception quite reliably on JDK17 on my machine with one particular test setup using ssl-tests testsuite. Unfortunately setup itself needed some RH specific patches and also ability to reproduce depends on other factors such number keys in keystore, machine where testing was performed... I tried a bit to create some reproducer, but I couldn't find a way to easily reproduce this issue :( > > **Problem:** > SunPKCS11 provider does session pooling. This is done in SessionManager [1] (one per SunPKCS11 provider). Released sessions are kept by SessionManager for a while, for reuse (in limited number). This however is a bit complicated as some sessions can own objects (e.g. keys). So there are actually 2 pools. One for sessions with objects ("objSessions") and one for sessions without objects ("opSessions"). This is because sessions without objects, which are not being used, can be safely closed (SessionManager only keeps around limited amount of these), while sessions with objects cannot be safely closed (until all objects are removed from them). Session manager has methods for getting Session for given purpose (object creation or just doing other operations), prioritizing appropriate pool. Each session has counter (called "createdObjects") to track how many objects it owns. When session is being returned to pool this counter is checked and session is placed to appropriate pool. Also whe n counter for some Session in "objSessions" pool reaches zero it is moved ("demoted") to "opSessions" pool. > > And here comes complicated part. As far as I understand it, Session.addObject() [2] (which increases "createdObjects" counter) is always being called by thread "holding" session which owns the created object. (That is: thread gets a session, uses it to create an object and calls Session.addObject() on that session to increase the counter, before returning the session to pool. See e.g.: [3]) However this is not true for Session.removeObject() [4]. (That is: thread gets session, which is not necessary the same one owning object being removed, performs object removal, but then calls Session.removeObject() on session which owned that object. See e.g.: [5]) That is Session.removeObject() can be called on Session which is in "objSessions" pool or which is being used be other thread. (object removal can happen as result of releasing key, either explicitly or as result of GC etc..). > > And finally, there is a problem in code handling object removal from a session. Session.removeObject() [4] first checks if "createdObjects" counter reached zero. If so, it calls SessionManager.demoteObjSession(this) [6], which attempts to remove Session from objSessions pool, if session is successfully removed from there, meaning no other thread "holds" this session, session is put to opSessions pool, if not (meaning other thread "holds" it), method just returns, since that other thread puts this session to appropriate pool, when it is done with it by calling SessionManager.releaseSession(session). > > There is race condition here. Consider following scenario: > > // Thread T1 runs: > Session.removeObject() // [4] > createdObjects.decrementAndGet() // returns zero > > // Thread T2 steps in (operating on the same session instance): > Session.addObject() // increases "createdObjects" counter [2] > SessionManager.releaseSession(session) // releases session to objSessions pool > > // Thread T1 continues: > SessionManager.demoteObjSession(this) // [6] > objSessions.remove(session) // returns true > opSessions.release(session) // puts session (with objects!) to opSessions pool > // if opSessions is already full, close of session with objects is attempted throwing Exception.. > > > **Fix:** > SessionManager.demoteObjSession [6] method was changed, so that check for objects is done once again if session was successfully removed from "objSessions" pool (now that it is out of pool and other threads should not be adding objects to it). Based on this check session is either released to "opSessions" pool or returned to "objSessions" pool. This can be achieved by calling releaseSession(session) instead of opSessions.release(session). > > **Testing:** > jdk_security tests passed for me locally with this change. > I have also tested this change on top of custom JDK17 build which allows scenario, where I can reproduce this issue. Problem got fixed. > > [1] https://github.com/openjdk/jdk/blob/9444a081cc9873caa7b5c6a78df0d1aecda6e4f1/src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/SessionManager.java > [2] https://github.com/openjdk/jdk/blob/9444a081cc9873caa7b5c6a78df0d1aecda6e4f1/src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/Session.java#L93 > [3] https://github.com/openjdk/jdk/blob/9444a081cc9873caa7b5c6a78df0d1aecda6e4f1/src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/P11Key.java#L1339 > [4] https://github.com/openjdk/jdk/blob/9444a081cc9873caa7b5c6a78df0d1aecda6e4f1/src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/Session.java#L98 > [5] https://github.com/openjdk/jdk/blob/9444a081cc9873caa7b5c6a78df0d1aecda6e4f1/src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/P11Key.java#L1360 > [6] https://github.com/openjdk/jdk/blob/9444a081cc9873caa7b5c6a78df0d1aecda6e4f1/src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/SessionManager.java#L195 Thanks for the suggested fix. I share your opinion about the potential race condition regarding demoting object session. Will take a look. ------------- PR: https://git.openjdk.org/jdk/pull/10125 From mullan at openjdk.org Tue Sep 6 20:38:59 2022 From: mullan at openjdk.org (Sean Mullan) Date: Tue, 6 Sep 2022 20:38:59 GMT Subject: RFR: JDK-8291509 Minor cleanup could be done in sun.security [v6] In-Reply-To: References: <7_dH-nuIf3G8tvAD5dACQhKlTuQ0PsWmgIxoQZdSwko=.4c5fa745-a0dd-40c4-a62e-10aeaf7c7788@github.com>

Message-ID: On Tue, 6 Sep 2022 17:53:32 GMT, Weijun Wang wrote: >> src/java.base/share/classes/sun/security/provider/PolicyParser.java line 1180: >> >>> 1178: // and then in a java string, it's escaped again >>> 1179: >>> 1180: out.print(name.replaceAll("\\\\", "\\\\\\\\").replaceAll("\"", "\\\\\\\"")); >> >> Why does IJ say this is the same? This appears to replace backslash-quote with quote. > > My understanding: In regex, there is no need to escape `"`, so `"` is the same as `"`. Ok,but the regex is `"\\""`, so shouldn't it keep the double-backslash at the beginning (`\`)?, i.e.: `...replaceAll("\"", "\\\\\\""));` ------------- PR: https://git.openjdk.org/jdk/pull/9972 From valeriep at openjdk.org Tue Sep 6 21:06:54 2022 From: valeriep at openjdk.org (Valerie Peng) Date: Tue, 6 Sep 2022 21:06:54 GMT Subject: RFR: 8293232: Fix race condition in pkcs11 SessionManager In-Reply-To: References: Message-ID: On Thu, 1 Sep 2022 17:28:40 GMT, zzambers wrote: > There is a race condition in JDK's SessionManager, which can lead to random exceptions. > > **Exception:** > > javax.net.ssl.SSLException: Internal error: close session with active objects > at java.base/sun.security.ssl.Alert.createSSLException(Alert.java:133) > at java.base/sun.security.ssl.TransportContext.fatal(TransportContext.java:371) > at java.base/sun.security.ssl.TransportContext.fatal(TransportContext.java:314) > at java.base/sun.security.ssl.TransportContext.fatal(TransportContext.java:309) > at java.base/sun.security.ssl.SSLSocketImpl.handleException(SSLSocketImpl.java:1707) > at java.base/sun.security.ssl.SSLSocketImpl$AppInputStream.read(SSLSocketImpl.java:1080) > at java.base/sun.security.ssl.SSLSocketImpl$AppInputStream.read(SSLSocketImpl.java:971) > at SSLSocketServer.serverLoop(SSLSocketServer.java:133) > at SSLSocketServer$1.run(SSLSocketServer.java:75) > at java.base/java.lang.Thread.run(Thread.java:833) > Caused by: java.security.ProviderException: Internal error: close session with active objects > at jdk.crypto.cryptoki/sun.security.pkcs11.Session.close(Session.java:127) > at jdk.crypto.cryptoki/sun.security.pkcs11.Session.close(Session.java:114) > at jdk.crypto.cryptoki/sun.security.pkcs11.SessionManager.closeSession(SessionManager.java:237) > at jdk.crypto.cryptoki/sun.security.pkcs11.SessionManager$Pool.release(SessionManager.java:270) > at jdk.crypto.cryptoki/sun.security.pkcs11.SessionManager.demoteObjSession(SessionManager.java:210) > at jdk.crypto.cryptoki/sun.security.pkcs11.Session.removeObject(Session.java:101) > at jdk.crypto.cryptoki/sun.security.pkcs11.SessionKeyRef.updateNativeKey(P11Key.java:1396) > at jdk.crypto.cryptoki/sun.security.pkcs11.SessionKeyRef.removeNativeKey(P11Key.java:1377) > at jdk.crypto.cryptoki/sun.security.pkcs11.NativeKeyHolder.releaseKeyID(P11Key.java:1329) > at jdk.crypto.cryptoki/sun.security.pkcs11.P11Key.releaseKeyID(P11Key.java:156) > at jdk.crypto.cryptoki/sun.security.pkcs11.P11AEADCipher.reset(P11AEADCipher.java:529) > at jdk.crypto.cryptoki/sun.security.pkcs11.P11AEADCipher.ensureInitialized(P11AEADCipher.java:436) > at jdk.crypto.cryptoki/sun.security.pkcs11.P11AEADCipher.implDoFinal(P11AEADCipher.java:732) > at jdk.crypto.cryptoki/sun.security.pkcs11.P11AEADCipher.engineDoFinal(P11AEADCipher.java:624) > at java.base/javax.crypto.Cipher.doFinal(Cipher.java:2500) > at java.base/sun.security.ssl.SSLCipher$T12GcmReadCipherGenerator$GcmReadCipher.decrypt(SSLCipher.java:1659) > at java.base/sun.security.ssl.SSLSocketInputRecord.decodeInputRecord(SSLSocketInputRecord.java:260) > at java.base/sun.security.ssl.SSLSocketInputRecord.decode(SSLSocketInputRecord.java:181) > at java.base/sun.security.ssl.SSLTransport.decode(SSLTransport.java:111) > at java.base/sun.security.ssl.SSLSocketImpl.decode(SSLSocketImpl.java:1508) > at java.base/sun.security.ssl.SSLSocketImpl.readApplicationRecord(SSLSocketImpl.java:1479) > at java.base/sun.security.ssl.SSLSocketImpl$AppInputStream.read(SSLSocketImpl.java:1064) > ... 4 more > > > **Reproducibility:** > I started getting this exception quite reliably on JDK17 on my machine with one particular test setup using ssl-tests testsuite. Unfortunately setup itself needed some RH specific patches and also ability to reproduce depends on other factors such number keys in keystore, machine where testing was performed... I tried a bit to create some reproducer, but I couldn't find a way to easily reproduce this issue :( > > **Problem:** > SunPKCS11 provider does session pooling. This is done in SessionManager [1] (one per SunPKCS11 provider). Released sessions are kept by SessionManager for a while, for reuse (in limited number). This however is a bit complicated as some sessions can own objects (e.g. keys). So there are actually 2 pools. One for sessions with objects ("objSessions") and one for sessions without objects ("opSessions"). This is because sessions without objects, which are not being used, can be safely closed (SessionManager only keeps around limited amount of these), while sessions with objects cannot be safely closed (until all objects are removed from them). Session manager has methods for getting Session for given purpose (object creation or just doing other operations), prioritizing appropriate pool. Each session has counter (called "createdObjects") to track how many objects it owns. When session is being returned to pool this counter is checked and session is placed to appropriate pool. Also whe n counter for some Session in "objSessions" pool reaches zero it is moved ("demoted") to "opSessions" pool. > > And here comes complicated part. As far as I understand it, Session.addObject() [2] (which increases "createdObjects" counter) is always being called by thread "holding" session which owns the created object. (That is: thread gets a session, uses it to create an object and calls Session.addObject() on that session to increase the counter, before returning the session to pool. See e.g.: [3]) However this is not true for Session.removeObject() [4]. (That is: thread gets session, which is not necessary the same one owning object being removed, performs object removal, but then calls Session.removeObject() on session which owned that object. See e.g.: [5]) That is Session.removeObject() can be called on Session which is in "objSessions" pool or which is being used be other thread. (object removal can happen as result of releasing key, either explicitly or as result of GC etc..). > > And finally, there is a problem in code handling object removal from a session. Session.removeObject() [4] first checks if "createdObjects" counter reached zero. If so, it calls SessionManager.demoteObjSession(this) [6], which attempts to remove Session from objSessions pool, if session is successfully removed from there, meaning no other thread "holds" this session, session is put to opSessions pool, if not (meaning other thread "holds" it), method just returns, since that other thread puts this session to appropriate pool, when it is done with it by calling SessionManager.releaseSession(session). > > There is race condition here. Consider following scenario: > > // Thread T1 runs: > Session.removeObject() // [4] > createdObjects.decrementAndGet() // returns zero > > // Thread T2 steps in (operating on the same session instance): > Session.addObject() // increases "createdObjects" counter [2] > SessionManager.releaseSession(session) // releases session to objSessions pool > > // Thread T1 continues: > SessionManager.demoteObjSession(this) // [6] > objSessions.remove(session) // returns true > opSessions.release(session) // puts session (with objects!) to opSessions pool > // if opSessions is already full, close of session with objects is attempted throwing Exception.. > > > **Fix:** > SessionManager.demoteObjSession [6] method was changed, so that check for objects is done once again if session was successfully removed from "objSessions" pool (now that it is out of pool and other threads should not be adding objects to it). Based on this check session is either released to "opSessions" pool or returned to "objSessions" pool. This can be achieved by calling releaseSession(session) instead of opSessions.release(session). > > **Testing:** > jdk_security tests passed for me locally with this change. > I have also tested this change on top of custom JDK17 build which allows scenario, where I can reproduce this issue. Problem got fixed. > > [1] https://github.com/openjdk/jdk/blob/9444a081cc9873caa7b5c6a78df0d1aecda6e4f1/src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/SessionManager.java > [2] https://github.com/openjdk/jdk/blob/9444a081cc9873caa7b5c6a78df0d1aecda6e4f1/src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/Session.java#L93 > [3] https://github.com/openjdk/jdk/blob/9444a081cc9873caa7b5c6a78df0d1aecda6e4f1/src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/P11Key.java#L1339 > [4] https://github.com/openjdk/jdk/blob/9444a081cc9873caa7b5c6a78df0d1aecda6e4f1/src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/Session.java#L98 > [5] https://github.com/openjdk/jdk/blob/9444a081cc9873caa7b5c6a78df0d1aecda6e4f1/src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/P11Key.java#L1360 > [6] https://github.com/openjdk/jdk/blob/9444a081cc9873caa7b5c6a78df0d1aecda6e4f1/src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/SessionManager.java#L195 src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/SessionManager.java line 210: > 208: return; > 209: } > 210: releaseSession(session); With the described race condition, have you tried fixing it by adding a if-condition check before doing line 204-210, i.e. if (!session.hasObjects()) { .... }? ------------- PR: https://git.openjdk.org/jdk/pull/10125 From mullan at openjdk.org Tue Sep 6 21:19:09 2022 From: mullan at openjdk.org (Sean Mullan) Date: Tue, 6 Sep 2022 21:19:09 GMT Subject: RFR: JDK-8291509 Minor cleanup could be done in sun.security [v6] In-Reply-To: References: <7_dH-nuIf3G8tvAD5dACQhKlTuQ0PsWmgIxoQZdSwko=.4c5fa745-a0dd-40c4-a62e-10aeaf7c7788@github.com> Message-ID: On Fri, 2 Sep 2022 18:48:32 GMT, Mark Powers wrote: >> https://bugs.openjdk.org/browse/JDK-8291509 > > Mark Powers has updated the pull request incrementally with one additional commit since the last revision: > > white space some more comments ... mostly minor stuff. src/java.base/share/classes/sun/security/provider/certpath/BuildStep.java line 245: > 243: out = out + vertex.moreToString(); > 244: break; > 245: default: align this with the "case" statements. src/java.base/share/classes/sun/security/provider/certpath/Builder.java line 62: > 60: /** > 61: * Flag indicating whether support for the caIssuers field of the > 62: * Authority Information Access extension shall be enabled. Currently, I think it reads better w/o the comma. src/java.base/share/classes/sun/security/provider/certpath/CertId.java line 226: > 224: "\nissuerKeyHash: \n" + > 225: encoder.encode(issuerKeyHash) + > 226: "\n" + certSerialNumber.toString(); I believe this creates more `String` objects whereas the previous code used a mutable `StringBuilder` to build up the `String` first. Not sure this code is better, even though this is probably not a commonly called method. src/java.base/share/classes/sun/security/provider/certpath/DistributionPointFetcher.java line 337: > 335: if (pointCrlIssuers != null) { > 336: if (idpExt == null || > 337: idpExt.get (IssuingDistributionPointExtension.INDIRECT_CRL) Nit, remove space after `get`. src/java.base/share/classes/sun/security/provider/certpath/DistributionPointFetcher.java line 338: > 336: if (idpExt == null || > 337: idpExt.get (IssuingDistributionPointExtension.INDIRECT_CRL) > 338: == (Boolean.FALSE)) { Don't need the parens around `Boolean.FALSE` now. ------------- PR: https://git.openjdk.org/jdk/pull/9972 From weijun at openjdk.org Tue Sep 6 22:01:53 2022 From: weijun at openjdk.org (Weijun Wang) Date: Tue, 6 Sep 2022 22:01:53 GMT Subject: RFR: JDK-8291509 Minor cleanup could be done in sun.security [v6] In-Reply-To: References: <7_dH-nuIf3G8tvAD5dACQhKlTuQ0PsWmgIxoQZdSwko=.4c5fa745-a0dd-40c4-a62e-10aeaf7c7788@github.com>

Message-ID: On Tue, 6 Sep 2022 20:36:27 GMT, Sean Mullan wrote: >> My understanding: In regex, there is no need to escape `"`, so `"` is the same as `"`. > > Ok,but the regex is `"\\""`, so shouldn't it keep the double-backslash at the beginning (`\`)?, i.e.: > > `...replaceAll("\"", "\\\\\\""));` The regex `"` is enough, so as a Java string it is `"""`. Before this code change, we thought the regex should be `"` (not wrong, just wasteful), and we wrote it as `"\\""` in Java. The replacement string is another thing and the quotation mark is also not special there, but IJ has not given any suggestion. ------------- PR: https://git.openjdk.org/jdk/pull/9972 From duke at openjdk.org Tue Sep 6 22:20:42 2022 From: duke at openjdk.org (zzambers) Date: Tue, 6 Sep 2022 22:20:42 GMT Subject: RFR: 8293232: Fix race condition in pkcs11 SessionManager In-Reply-To: References:

Message-ID: On Tue, 6 Sep 2022 21:02:50 GMT, Valerie Peng wrote: >> There is a race condition in JDK's SessionManager, which can lead to random exceptions. >> >> **Exception:** >> >> javax.net.ssl.SSLException: Internal error: close session with active objects >> at java.base/sun.security.ssl.Alert.createSSLException(Alert.java:133) >> at java.base/sun.security.ssl.TransportContext.fatal(TransportContext.java:371) >> at java.base/sun.security.ssl.TransportContext.fatal(TransportContext.java:314) >> at java.base/sun.security.ssl.TransportContext.fatal(TransportContext.java:309) >> at java.base/sun.security.ssl.SSLSocketImpl.handleException(SSLSocketImpl.java:1707) >> at java.base/sun.security.ssl.SSLSocketImpl$AppInputStream.read(SSLSocketImpl.java:1080) >> at java.base/sun.security.ssl.SSLSocketImpl$AppInputStream.read(SSLSocketImpl.java:971) >> at SSLSocketServer.serverLoop(SSLSocketServer.java:133) >> at SSLSocketServer$1.run(SSLSocketServer.java:75) >> at java.base/java.lang.Thread.run(Thread.java:833) >> Caused by: java.security.ProviderException: Internal error: close session with active objects >> at jdk.crypto.cryptoki/sun.security.pkcs11.Session.close(Session.java:127) >> at jdk.crypto.cryptoki/sun.security.pkcs11.Session.close(Session.java:114) >> at jdk.crypto.cryptoki/sun.security.pkcs11.SessionManager.closeSession(SessionManager.java:237) >> at jdk.crypto.cryptoki/sun.security.pkcs11.SessionManager$Pool.release(SessionManager.java:270) >> at jdk.crypto.cryptoki/sun.security.pkcs11.SessionManager.demoteObjSession(SessionManager.java:210) >> at jdk.crypto.cryptoki/sun.security.pkcs11.Session.removeObject(Session.java:101) >> at jdk.crypto.cryptoki/sun.security.pkcs11.SessionKeyRef.updateNativeKey(P11Key.java:1396) >> at jdk.crypto.cryptoki/sun.security.pkcs11.SessionKeyRef.removeNativeKey(P11Key.java:1377) >> at jdk.crypto.cryptoki/sun.security.pkcs11.NativeKeyHolder.releaseKeyID(P11Key.java:1329) >> at jdk.crypto.cryptoki/sun.security.pkcs11.P11Key.releaseKeyID(P11Key.java:156) >> at jdk.crypto.cryptoki/sun.security.pkcs11.P11AEADCipher.reset(P11AEADCipher.java:529) >> at jdk.crypto.cryptoki/sun.security.pkcs11.P11AEADCipher.ensureInitialized(P11AEADCipher.java:436) >> at jdk.crypto.cryptoki/sun.security.pkcs11.P11AEADCipher.implDoFinal(P11AEADCipher.java:732) >> at jdk.crypto.cryptoki/sun.security.pkcs11.P11AEADCipher.engineDoFinal(P11AEADCipher.java:624) >> at java.base/javax.crypto.Cipher.doFinal(Cipher.java:2500) >> at java.base/sun.security.ssl.SSLCipher$T12GcmReadCipherGenerator$GcmReadCipher.decrypt(SSLCipher.java:1659) >> at java.base/sun.security.ssl.SSLSocketInputRecord.decodeInputRecord(SSLSocketInputRecord.java:260) >> at java.base/sun.security.ssl.SSLSocketInputRecord.decode(SSLSocketInputRecord.java:181) >> at java.base/sun.security.ssl.SSLTransport.decode(SSLTransport.java:111) >> at java.base/sun.security.ssl.SSLSocketImpl.decode(SSLSocketImpl.java:1508) >> at java.base/sun.security.ssl.SSLSocketImpl.readApplicationRecord(SSLSocketImpl.java:1479) >> at java.base/sun.security.ssl.SSLSocketImpl$AppInputStream.read(SSLSocketImpl.java:1064) >> ... 4 more >> >> >> **Reproducibility:** >> I started getting this exception quite reliably on JDK17 on my machine with one particular test setup using ssl-tests testsuite. Unfortunately setup itself needed some RH specific patches and also ability to reproduce depends on other factors such number keys in keystore, machine where testing was performed... I tried a bit to create some reproducer, but I couldn't find a way to easily reproduce this issue :( >> >> **Problem:** >> SunPKCS11 provider does session pooling. This is done in SessionManager [1] (one per SunPKCS11 provider). Released sessions are kept by SessionManager for a while, for reuse (in limited number). This however is a bit complicated as some sessions can own objects (e.g. keys). So there are actually 2 pools. One for sessions with objects ("objSessions") and one for sessions without objects ("opSessions"). This is because sessions without objects, which are not being used, can be safely closed (SessionManager only keeps around limited amount of these), while sessions with objects cannot be safely closed (until all objects are removed from them). Session manager has methods for getting Session for given purpose (object creation or just doing other operations), prioritizing appropriate pool. Each session has counter (called "createdObjects") to track how many objects it owns. When session is being returned to pool this counter is checked and session is placed to appropriate pool. Also wh en counter for some Session in "objSessions" pool reaches zero it is moved ("demoted") to "opSessions" pool. >> >> And here comes complicated part. As far as I understand it, Session.addObject() [2] (which increases "createdObjects" counter) is always being called by thread "holding" session which owns the created object. (That is: thread gets a session, uses it to create an object and calls Session.addObject() on that session to increase the counter, before returning the session to pool. See e.g.: [3]) However this is not true for Session.removeObject() [4]. (That is: thread gets session, which is not necessary the same one owning object being removed, performs object removal, but then calls Session.removeObject() on session which owned that object. See e.g.: [5]) That is Session.removeObject() can be called on Session which is in "objSessions" pool or which is being used be other thread. (object removal can happen as result of releasing key, either explicitly or as result of GC etc..). >> >> And finally, there is a problem in code handling object removal from a session. Session.removeObject() [4] first checks if "createdObjects" counter reached zero. If so, it calls SessionManager.demoteObjSession(this) [6], which attempts to remove Session from objSessions pool, if session is successfully removed from there, meaning no other thread "holds" this session, session is put to opSessions pool, if not (meaning other thread "holds" it), method just returns, since that other thread puts this session to appropriate pool, when it is done with it by calling SessionManager.releaseSession(session). >> >> There is race condition here. Consider following scenario: >> >> // Thread T1 runs: >> Session.removeObject() // [4] >> createdObjects.decrementAndGet() // returns zero >> >> // Thread T2 steps in (operating on the same session instance): >> Session.addObject() // increases "createdObjects" counter [2] >> SessionManager.releaseSession(session) // releases session to objSessions pool >> >> // Thread T1 continues: >> SessionManager.demoteObjSession(this) // [6] >> objSessions.remove(session) // returns true >> opSessions.release(session) // puts session (with objects!) to opSessions pool >> // if opSessions is already full, close of session with objects is attempted throwing Exception.. >> >> >> **Fix:** >> SessionManager.demoteObjSession [6] method was changed, so that check for objects is done once again if session was successfully removed from "objSessions" pool (now that it is out of pool and other threads should not be adding objects to it). Based on this check session is either released to "opSessions" pool or returned to "objSessions" pool. This can be achieved by calling releaseSession(session) instead of opSessions.release(session). >> >> **Testing:** >> jdk_security tests passed for me locally with this change. >> I have also tested this change on top of custom JDK17 build which allows scenario, where I can reproduce this issue. Problem got fixed. >> >> [1] https://github.com/openjdk/jdk/blob/9444a081cc9873caa7b5c6a78df0d1aecda6e4f1/src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/SessionManager.java >> [2] https://github.com/openjdk/jdk/blob/9444a081cc9873caa7b5c6a78df0d1aecda6e4f1/src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/Session.java#L93 >> [3] https://github.com/openjdk/jdk/blob/9444a081cc9873caa7b5c6a78df0d1aecda6e4f1/src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/P11Key.java#L1339 >> [4] https://github.com/openjdk/jdk/blob/9444a081cc9873caa7b5c6a78df0d1aecda6e4f1/src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/Session.java#L98 >> [5] https://github.com/openjdk/jdk/blob/9444a081cc9873caa7b5c6a78df0d1aecda6e4f1/src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/P11Key.java#L1360 >> [6] https://github.com/openjdk/jdk/blob/9444a081cc9873caa7b5c6a78df0d1aecda6e4f1/src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/SessionManager.java#L195 > > src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/SessionManager.java line 210: > >> 208: return; >> 209: } >> 210: releaseSession(session); > > With the described race condition, have you tried fixing it by adding a if-condition check before doing line 204-210, i.e. if (!session.hasObjects()) { .... }? I am afraid putting check before line 204 would not solve the issue (just lowered it's likelihood). Problem is, that operation consisting of check for objects on a session and then removing it from objSessions pool is not atomic. Session still could be obtained from objSessions pool by other thread after session.hasObjects() was called, object added to it and released back to objSessions pool before objSessions.remove(session) is called. I think this check for objects can only be trusted after session was successfully removed from objSessions (that is, session was in objSessions pool (no tread "holds" it) and was removed). Actually whole call of demoteObjSession method is already behind one check for zero objects (but that check cannot be trusted), and needs to be redone after objSessions.remove(session), because of problem described higher . See: https://github.com/openjdk/jdk/blob/9444a081cc9873caa7b5c6a78df0d1aecda6e4f1/src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/Session.java#L100 ------------- PR: https://git.openjdk.org/jdk/pull/10125 From mpowers at openjdk.org Tue Sep 6 22:42:07 2022 From: mpowers at openjdk.org (Mark Powers) Date: Tue, 6 Sep 2022 22:42:07 GMT Subject: RFR: JDK-8291509 Minor cleanup could be done in sun.security [v6] In-Reply-To: References: <7_dH-nuIf3G8tvAD5dACQhKlTuQ0PsWmgIxoQZdSwko=.4c5fa745-a0dd-40c4-a62e-10aeaf7c7788@github.com>

Message-ID: On Tue, 6 Sep 2022 16:24:01 GMT, Sean Mullan wrote: >> Mark Powers has updated the pull request incrementally with one additional commit since the last revision: >> >> white space > > src/java.base/share/classes/sun/security/provider/AbstractDrbg.java line 81: > >> 79: * does not need to compare it to {@link #reseedInterval}. >> 80: * >> 81: * Volatile, will be used in a double-checked locking. > > Also, remove "a" as it reads more correctly w/o it. Fixed. > src/java.base/share/classes/sun/security/provider/ConfigFile.java line 167: > >> 165: // call in a doPrivileged >> 166: // >> 167: // we have already passed the Configuration.getInstance > > s/we/We/ Fixed. > src/java.base/share/classes/sun/security/provider/ConfigFile.java line 168: > >> 166: // >> 167: // we have already passed the Configuration.getInstance >> 168: // security check. also, this class is not freely accessible > > s/also/Also/ Fixed. > src/java.base/share/classes/sun/security/provider/PolicyParser.java line 1165: > >> 1163: } >> 1164: >> 1165: // everything matched -- the 2 objects are equal > > remove the comment as it no longer applies Fixed. > src/java.base/share/classes/sun/security/provider/SunEntries.java line 369: > >> 367: * Use a URI to access this File. Previous code used a URL >> 368: * which is less strict on syntax. If we encounter a >> 369: * URISyntaxException we make the best efforts for backwards > > I'd change this to "a best effort". Same comment on l392. Fixed. > src/java.base/share/classes/sun/security/provider/certpath/BuildStep.java line 245: > >> 243: out = out + vertex.moreToString(); >> 244: break; >> 245: default: > > align this with the "case" statements. Fixed. > src/java.base/share/classes/sun/security/provider/certpath/Builder.java line 62: > >> 60: /** >> 61: * Flag indicating whether support for the caIssuers field of the >> 62: * Authority Information Access extension shall be enabled. Currently, > > I think it reads better w/o the comma. Fixed. > src/java.base/share/classes/sun/security/provider/certpath/CertId.java line 226: > >> 224: "\nissuerKeyHash: \n" + >> 225: encoder.encode(issuerKeyHash) + >> 226: "\n" + certSerialNumber.toString(); > > I believe this creates more `String` objects whereas the previous code used a mutable `StringBuilder` to build up the `String` first. Not sure this code is better, even though this is probably not a commonly called method. If the new code requires more work (CPU and memory) then maybe it is not a good idea. I'll try to find out more about this method before I revert the change. > src/java.base/share/classes/sun/security/provider/certpath/DistributionPointFetcher.java line 337: > >> 335: if (pointCrlIssuers != null) { >> 336: if (idpExt == null || >> 337: idpExt.get (IssuingDistributionPointExtension.INDIRECT_CRL) > > Nit, remove space after `get`. Fixed. > src/java.base/share/classes/sun/security/provider/certpath/DistributionPointFetcher.java line 338: > >> 336: if (idpExt == null || >> 337: idpExt.get (IssuingDistributionPointExtension.INDIRECT_CRL) >> 338: == (Boolean.FALSE)) { > > Don't need the parens around `Boolean.FALSE` now. Fixed. ------------- PR: https://git.openjdk.org/jdk/pull/9972 From valeriep at openjdk.org Tue Sep 6 22:47:47 2022 From: valeriep at openjdk.org (Valerie Peng) Date: Tue, 6 Sep 2022 22:47:47 GMT Subject: RFR: 8293232: Fix race condition in pkcs11 SessionManager In-Reply-To: References: Message-ID: On Thu, 1 Sep 2022 17:28:40 GMT, zzambers wrote: > There is a race condition in JDK's SessionManager, which can lead to random exceptions. > > **Exception:** > > javax.net.ssl.SSLException: Internal error: close session with active objects > at java.base/sun.security.ssl.Alert.createSSLException(Alert.java:133) > at java.base/sun.security.ssl.TransportContext.fatal(TransportContext.java:371) > at java.base/sun.security.ssl.TransportContext.fatal(TransportContext.java:314) > at java.base/sun.security.ssl.TransportContext.fatal(TransportContext.java:309) > at java.base/sun.security.ssl.SSLSocketImpl.handleException(SSLSocketImpl.java:1707) > at java.base/sun.security.ssl.SSLSocketImpl$AppInputStream.read(SSLSocketImpl.java:1080) > at java.base/sun.security.ssl.SSLSocketImpl$AppInputStream.read(SSLSocketImpl.java:971) > at SSLSocketServer.serverLoop(SSLSocketServer.java:133) > at SSLSocketServer$1.run(SSLSocketServer.java:75) > at java.base/java.lang.Thread.run(Thread.java:833) > Caused by: java.security.ProviderException: Internal error: close session with active objects > at jdk.crypto.cryptoki/sun.security.pkcs11.Session.close(Session.java:127) > at jdk.crypto.cryptoki/sun.security.pkcs11.Session.close(Session.java:114) > at jdk.crypto.cryptoki/sun.security.pkcs11.SessionManager.closeSession(SessionManager.java:237) > at jdk.crypto.cryptoki/sun.security.pkcs11.SessionManager$Pool.release(SessionManager.java:270) > at jdk.crypto.cryptoki/sun.security.pkcs11.SessionManager.demoteObjSession(SessionManager.java:210) > at jdk.crypto.cryptoki/sun.security.pkcs11.Session.removeObject(Session.java:101) > at jdk.crypto.cryptoki/sun.security.pkcs11.SessionKeyRef.updateNativeKey(P11Key.java:1396) > at jdk.crypto.cryptoki/sun.security.pkcs11.SessionKeyRef.removeNativeKey(P11Key.java:1377) > at jdk.crypto.cryptoki/sun.security.pkcs11.NativeKeyHolder.releaseKeyID(P11Key.java:1329) > at jdk.crypto.cryptoki/sun.security.pkcs11.P11Key.releaseKeyID(P11Key.java:156) > at jdk.crypto.cryptoki/sun.security.pkcs11.P11AEADCipher.reset(P11AEADCipher.java:529) > at jdk.crypto.cryptoki/sun.security.pkcs11.P11AEADCipher.ensureInitialized(P11AEADCipher.java:436) > at jdk.crypto.cryptoki/sun.security.pkcs11.P11AEADCipher.implDoFinal(P11AEADCipher.java:732) > at jdk.crypto.cryptoki/sun.security.pkcs11.P11AEADCipher.engineDoFinal(P11AEADCipher.java:624) > at java.base/javax.crypto.Cipher.doFinal(Cipher.java:2500) > at java.base/sun.security.ssl.SSLCipher$T12GcmReadCipherGenerator$GcmReadCipher.decrypt(SSLCipher.java:1659) > at java.base/sun.security.ssl.SSLSocketInputRecord.decodeInputRecord(SSLSocketInputRecord.java:260) > at java.base/sun.security.ssl.SSLSocketInputRecord.decode(SSLSocketInputRecord.java:181) > at java.base/sun.security.ssl.SSLTransport.decode(SSLTransport.java:111) > at java.base/sun.security.ssl.SSLSocketImpl.decode(SSLSocketImpl.java:1508) > at java.base/sun.security.ssl.SSLSocketImpl.readApplicationRecord(SSLSocketImpl.java:1479) > at java.base/sun.security.ssl.SSLSocketImpl$AppInputStream.read(SSLSocketImpl.java:1064) > ... 4 more > > > **Reproducibility:** > I started getting this exception quite reliably on JDK17 on my machine with one particular test setup using ssl-tests testsuite. Unfortunately setup itself needed some RH specific patches and also ability to reproduce depends on other factors such number keys in keystore, machine where testing was performed... I tried a bit to create some reproducer, but I couldn't find a way to easily reproduce this issue :( > > **Problem:** > SunPKCS11 provider does session pooling. This is done in SessionManager [1] (one per SunPKCS11 provider). Released sessions are kept by SessionManager for a while, for reuse (in limited number). This however is a bit complicated as some sessions can own objects (e.g. keys). So there are actually 2 pools. One for sessions with objects ("objSessions") and one for sessions without objects ("opSessions"). This is because sessions without objects, which are not being used, can be safely closed (SessionManager only keeps around limited amount of these), while sessions with objects cannot be safely closed (until all objects are removed from them). Session manager has methods for getting Session for given purpose (object creation or just doing other operations), prioritizing appropriate pool. Each session has counter (called "createdObjects") to track how many objects it owns. When session is being returned to pool this counter is checked and session is placed to appropriate pool. Also whe n counter for some Session in "objSessions" pool reaches zero it is moved ("demoted") to "opSessions" pool. > > And here comes complicated part. As far as I understand it, Session.addObject() [2] (which increases "createdObjects" counter) is always being called by thread "holding" session which owns the created object. (That is: thread gets a session, uses it to create an object and calls Session.addObject() on that session to increase the counter, before returning the session to pool. See e.g.: [3]) However this is not true for Session.removeObject() [4]. (That is: thread gets session, which is not necessary the same one owning object being removed, performs object removal, but then calls Session.removeObject() on session which owned that object. See e.g.: [5]) That is Session.removeObject() can be called on Session which is in "objSessions" pool or which is being used be other thread. (object removal can happen as result of releasing key, either explicitly or as result of GC etc..). > > And finally, there is a problem in code handling object removal from a session. Session.removeObject() [4] first checks if "createdObjects" counter reached zero. If so, it calls SessionManager.demoteObjSession(this) [6], which attempts to remove Session from objSessions pool, if session is successfully removed from there, meaning no other thread "holds" this session, session is put to opSessions pool, if not (meaning other thread "holds" it), method just returns, since that other thread puts this session to appropriate pool, when it is done with it by calling SessionManager.releaseSession(session). > > There is race condition here. Consider following scenario: > > // Thread T1 runs: > Session.removeObject() // [4] > createdObjects.decrementAndGet() // returns zero > > // Thread T2 steps in (operating on the same session instance): > Session.addObject() // increases "createdObjects" counter [2] > SessionManager.releaseSession(session) // releases session to objSessions pool > > // Thread T1 continues: > SessionManager.demoteObjSession(this) // [6] > objSessions.remove(session) // returns true > opSessions.release(session) // puts session (with objects!) to opSessions pool > // if opSessions is already full, close of session with objects is attempted throwing Exception.. > > > **Fix:** > SessionManager.demoteObjSession [6] method was changed, so that check for objects is done once again if session was successfully removed from "objSessions" pool (now that it is out of pool and other threads should not be adding objects to it). Based on this check session is either released to "opSessions" pool or returned to "objSessions" pool. This can be achieved by calling releaseSession(session) instead of opSessions.release(session). > > **Testing:** > jdk_security tests passed for me locally with this change. > I have also tested this change on top of custom JDK17 build which allows scenario, where I can reproduce this issue. Problem got fixed. > > [1] https://github.com/openjdk/jdk/blob/9444a081cc9873caa7b5c6a78df0d1aecda6e4f1/src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/SessionManager.java > [2] https://github.com/openjdk/jdk/blob/9444a081cc9873caa7b5c6a78df0d1aecda6e4f1/src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/Session.java#L93 > [3] https://github.com/openjdk/jdk/blob/9444a081cc9873caa7b5c6a78df0d1aecda6e4f1/src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/P11Key.java#L1339 > [4] https://github.com/openjdk/jdk/blob/9444a081cc9873caa7b5c6a78df0d1aecda6e4f1/src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/Session.java#L98 > [5] https://github.com/openjdk/jdk/blob/9444a081cc9873caa7b5c6a78df0d1aecda6e4f1/src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/P11Key.java#L1360 > [6] https://github.com/openjdk/jdk/blob/9444a081cc9873caa7b5c6a78df0d1aecda6e4f1/src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/SessionManager.java#L195 Marked as reviewed by valeriep (Reviewer). ------------- PR: https://git.openjdk.org/jdk/pull/10125 From valeriep at openjdk.org Tue Sep 6 22:47:49 2022 From: valeriep at openjdk.org (Valerie Peng) Date: Tue, 6 Sep 2022 22:47:49 GMT Subject: RFR: 8293232: Fix race condition in pkcs11 SessionManager In-Reply-To: References:

Message-ID: On Tue, 6 Sep 2022 22:16:57 GMT, zzambers wrote: >> src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/SessionManager.java line 210: >> >>> 208: return; >>> 209: } >>> 210: releaseSession(session); >> >> With the described race condition, have you tried fixing it by adding a if-condition check before doing line 204-210, i.e. if (!session.hasObjects()) { .... }? > > I am afraid putting check before line 204 would not solve the issue (just lowered it's likelihood). Problem is, that operation consisting of check for objects on a session and then removing it from objSessions pool is not atomic. Session still could be obtained from objSessions pool by other thread after session.hasObjects() was called, object added to it and released back to objSessions pool before objSessions.remove(session) is called. I think this check for objects can only be trusted after session was successfully removed from objSessions (that is, session was in objSessions pool (no tread "holds" it) and was removed). > > Actually whole call of demoteObjSession method is already behind one check for zero objects (but that check cannot be trusted), and needs to be redone after objSessions.remove(session), because of problem described higher . See: > https://github.com/openjdk/jdk/blob/9444a081cc9873caa7b5c6a78df0d1aecda6e4f1/src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/Session.java#L100 I am aware of the zero objects check in the reference above. I am fine with the proposed fix then. Perhaps add a comment to this releaseSession() call to warn about this race condition. ------------- PR: https://git.openjdk.org/jdk/pull/10125 From duke at openjdk.org Tue Sep 6 22:53:54 2022 From: duke at openjdk.org (zzambers) Date: Tue, 6 Sep 2022 22:53:54 GMT Subject: RFR: 8293232: Fix race condition in pkcs11 SessionManager In-Reply-To: References:

Message-ID: On Tue, 6 Sep 2022 20:25:13 GMT, Valerie Peng wrote: >> There is a race condition in JDK's SessionManager, which can lead to random exceptions. >> >> **Exception:** >> >> javax.net.ssl.SSLException: Internal error: close session with active objects >> at java.base/sun.security.ssl.Alert.createSSLException(Alert.java:133) >> at java.base/sun.security.ssl.TransportContext.fatal(TransportContext.java:371) >> at java.base/sun.security.ssl.TransportContext.fatal(TransportContext.java:314) >> at java.base/sun.security.ssl.TransportContext.fatal(TransportContext.java:309) >> at java.base/sun.security.ssl.SSLSocketImpl.handleException(SSLSocketImpl.java:1707) >> at java.base/sun.security.ssl.SSLSocketImpl$AppInputStream.read(SSLSocketImpl.java:1080) >> at java.base/sun.security.ssl.SSLSocketImpl$AppInputStream.read(SSLSocketImpl.java:971) >> at SSLSocketServer.serverLoop(SSLSocketServer.java:133) >> at SSLSocketServer$1.run(SSLSocketServer.java:75) >> at java.base/java.lang.Thread.run(Thread.java:833) >> Caused by: java.security.ProviderException: Internal error: close session with active objects >> at jdk.crypto.cryptoki/sun.security.pkcs11.Session.close(Session.java:127) >> at jdk.crypto.cryptoki/sun.security.pkcs11.Session.close(Session.java:114) >> at jdk.crypto.cryptoki/sun.security.pkcs11.SessionManager.closeSession(SessionManager.java:237) >> at jdk.crypto.cryptoki/sun.security.pkcs11.SessionManager$Pool.release(SessionManager.java:270) >> at jdk.crypto.cryptoki/sun.security.pkcs11.SessionManager.demoteObjSession(SessionManager.java:210) >> at jdk.crypto.cryptoki/sun.security.pkcs11.Session.removeObject(Session.java:101) >> at jdk.crypto.cryptoki/sun.security.pkcs11.SessionKeyRef.updateNativeKey(P11Key.java:1396) >> at jdk.crypto.cryptoki/sun.security.pkcs11.SessionKeyRef.removeNativeKey(P11Key.java:1377) >> at jdk.crypto.cryptoki/sun.security.pkcs11.NativeKeyHolder.releaseKeyID(P11Key.java:1329) >> at jdk.crypto.cryptoki/sun.security.pkcs11.P11Key.releaseKeyID(P11Key.java:156) >> at jdk.crypto.cryptoki/sun.security.pkcs11.P11AEADCipher.reset(P11AEADCipher.java:529) >> at jdk.crypto.cryptoki/sun.security.pkcs11.P11AEADCipher.ensureInitialized(P11AEADCipher.java:436) >> at jdk.crypto.cryptoki/sun.security.pkcs11.P11AEADCipher.implDoFinal(P11AEADCipher.java:732) >> at jdk.crypto.cryptoki/sun.security.pkcs11.P11AEADCipher.engineDoFinal(P11AEADCipher.java:624) >> at java.base/javax.crypto.Cipher.doFinal(Cipher.java:2500) >> at java.base/sun.security.ssl.SSLCipher$T12GcmReadCipherGenerator$GcmReadCipher.decrypt(SSLCipher.java:1659) >> at java.base/sun.security.ssl.SSLSocketInputRecord.decodeInputRecord(SSLSocketInputRecord.java:260) >> at java.base/sun.security.ssl.SSLSocketInputRecord.decode(SSLSocketInputRecord.java:181) >> at java.base/sun.security.ssl.SSLTransport.decode(SSLTransport.java:111) >> at java.base/sun.security.ssl.SSLSocketImpl.decode(SSLSocketImpl.java:1508) >> at java.base/sun.security.ssl.SSLSocketImpl.readApplicationRecord(SSLSocketImpl.java:1479) >> at java.base/sun.security.ssl.SSLSocketImpl$AppInputStream.read(SSLSocketImpl.java:1064) >> ... 4 more >> >> >> **Reproducibility:** >> I started getting this exception quite reliably on JDK17 on my machine with one particular test setup using ssl-tests testsuite. Unfortunately setup itself needed some RH specific patches and also ability to reproduce depends on other factors such number keys in keystore, machine where testing was performed... I tried a bit to create some reproducer, but I couldn't find a way to easily reproduce this issue :( >> >> **Problem:** >> SunPKCS11 provider does session pooling. This is done in SessionManager [1] (one per SunPKCS11 provider). Released sessions are kept by SessionManager for a while, for reuse (in limited number). This however is a bit complicated as some sessions can own objects (e.g. keys). So there are actually 2 pools. One for sessions with objects ("objSessions") and one for sessions without objects ("opSessions"). This is because sessions without objects, which are not being used, can be safely closed (SessionManager only keeps around limited amount of these), while sessions with objects cannot be safely closed (until all objects are removed from them). Session manager has methods for getting Session for given purpose (object creation or just doing other operations), prioritizing appropriate pool. Each session has counter (called "createdObjects") to track how many objects it owns. When session is being returned to pool this counter is checked and session is placed to appropriate pool. Also wh en counter for some Session in "objSessions" pool reaches zero it is moved ("demoted") to "opSessions" pool. >> >> And here comes complicated part. As far as I understand it, Session.addObject() [2] (which increases "createdObjects" counter) is always being called by thread "holding" session which owns the created object. (That is: thread gets a session, uses it to create an object and calls Session.addObject() on that session to increase the counter, before returning the session to pool. See e.g.: [3]) However this is not true for Session.removeObject() [4]. (That is: thread gets session, which is not necessary the same one owning object being removed, performs object removal, but then calls Session.removeObject() on session which owned that object. See e.g.: [5]) That is Session.removeObject() can be called on Session which is in "objSessions" pool or which is being used be other thread. (object removal can happen as result of releasing key, either explicitly or as result of GC etc..). >> >> And finally, there is a problem in code handling object removal from a session. Session.removeObject() [4] first checks if "createdObjects" counter reached zero. If so, it calls SessionManager.demoteObjSession(this) [6], which attempts to remove Session from objSessions pool, if session is successfully removed from there, meaning no other thread "holds" this session, session is put to opSessions pool, if not (meaning other thread "holds" it), method just returns, since that other thread puts this session to appropriate pool, when it is done with it by calling SessionManager.releaseSession(session). >> >> There is race condition here. Consider following scenario: >> >> // Thread T1 runs: >> Session.removeObject() // [4] >> createdObjects.decrementAndGet() // returns zero >> >> // Thread T2 steps in (operating on the same session instance): >> Session.addObject() // increases "createdObjects" counter [2] >> SessionManager.releaseSession(session) // releases session to objSessions pool >> >> // Thread T1 continues: >> SessionManager.demoteObjSession(this) // [6] >> objSessions.remove(session) // returns true >> opSessions.release(session) // puts session (with objects!) to opSessions pool >> // if opSessions is already full, close of session with objects is attempted throwing Exception.. >> >> >> **Fix:** >> SessionManager.demoteObjSession [6] method was changed, so that check for objects is done once again if session was successfully removed from "objSessions" pool (now that it is out of pool and other threads should not be adding objects to it). Based on this check session is either released to "opSessions" pool or returned to "objSessions" pool. This can be achieved by calling releaseSession(session) instead of opSessions.release(session). >> >> **Testing:** >> jdk_security tests passed for me locally with this change. >> I have also tested this change on top of custom JDK17 build which allows scenario, where I can reproduce this issue. Problem got fixed. >> >> [1] https://github.com/openjdk/jdk/blob/9444a081cc9873caa7b5c6a78df0d1aecda6e4f1/src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/SessionManager.java >> [2] https://github.com/openjdk/jdk/blob/9444a081cc9873caa7b5c6a78df0d1aecda6e4f1/src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/Session.java#L93 >> [3] https://github.com/openjdk/jdk/blob/9444a081cc9873caa7b5c6a78df0d1aecda6e4f1/src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/P11Key.java#L1339 >> [4] https://github.com/openjdk/jdk/blob/9444a081cc9873caa7b5c6a78df0d1aecda6e4f1/src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/Session.java#L98 >> [5] https://github.com/openjdk/jdk/blob/9444a081cc9873caa7b5c6a78df0d1aecda6e4f1/src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/P11Key.java#L1360 >> [6] https://github.com/openjdk/jdk/blob/9444a081cc9873caa7b5c6a78df0d1aecda6e4f1/src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/SessionManager.java#L195 > > Thanks for the suggested fix. I share your opinion about the potential race condition regarding demoting object session. Will take a look. @valeriepeng, Thank you for your review ------------- PR: https://git.openjdk.org/jdk/pull/10125 From valeriep at openjdk.org Tue Sep 6 23:25:51 2022 From: valeriep at openjdk.org (Valerie Peng) Date: Tue, 6 Sep 2022 23:25:51 GMT Subject: RFR: 6447816: Provider filtering (getProviders) is not working with OR'd conditions [v2] In-Reply-To: <2untLt_BbgbDuMGC7B3_YDpcraMlFxJ4aDrhLO9dhAQ=.2337b367-7d9b-45f1-b003-3ef03c9153e8@github.com> References: <-ws8CzY5840jultJy8Nbs9e146U43kKFKKTHiHgprQo=.f4c7dbb7-1c01-4d72-a688-287c0f506bcf@github.com> <8x_-hT0hw6GqQho_CxlpCmmJm-OBvlvZrkqpMD3ItYY=.b8850e45-a380-4002-ab6d-6d512597b57c@github.com> <2untLt_BbgbDuMGC7B3_YDpcraMlFxJ4aDrhLO9dhAQ=.2337b367-7d9b-45f1-b003-3ef03c9153e8@github.com> Message-ID: <76ynublD6DHvO1wSkvKDlA16ANoXlhiwWVJIWNC8P9c=.43034088-79f6-4caa-9636-be9f599ea8ad@github.com> On Tue, 6 Sep 2022 14:10:16 GMT, Weijun Wang wrote: >> Both may be null as their javadoc didn't state explicitly what is returned. >> This is existing code and it returns null upon empty keySet which I keep the same behavior. >> Perhaps for consistency sake, it should also check for the empty keySet condition and return allProviders. > > Sorry, I re-read and maybe the original check is better. If both `keySet` and `allProviders` are empty, then empty is returned. According to the spec, it should be null. > > I still don't think either of them can be null, but adding the `isEmpty` check is probably wrong. Well, it depends on how you interpret an empty filter map. If an empty table is specified, I'd think it means no criteria is set and all providers can be returned as the comment above suggested. As this is a corner case, I am ok with reverting the isEmpty() check to keep the same behavior as before. However, I don't get which part of spec states about returning null for this case? ------------- PR: https://git.openjdk.org/jdk/pull/10008 From valeriep at openjdk.org Tue Sep 6 23:25:55 2022 From: valeriep at openjdk.org (Valerie Peng) Date: Tue, 6 Sep 2022 23:25:55 GMT Subject: RFR: 6447816: Provider filtering (getProviders) is not working with OR'd conditions [v5] In-Reply-To: References:

Message-ID: On Tue, 6 Sep 2022 14:16:28 GMT, Weijun Wang wrote: >> Valerie Peng has updated the pull request incrementally with one additional commit since the last revision: >> >> more refactoring. > > src/java.base/share/classes/java/security/Security.java line 613: > >> 611: // For each selection criterion, remove providers >> 612: // which don't satisfy the criterion from the candidate set. >> 613: Iterator> iter = entries.iterator(); > > `for (var e : entries)` is simpler. > > Inside the loop, you can also directly return `null` is it's empty. Then there is no need to check for `isEmpty` again outside. Yup, very good idea. I will apply it. Thanks! > src/java.base/share/classes/java/security/Security.java line 824: > >> 822: private String algName; >> 823: private String attrName = null; >> 824: private String attrValue; > > Make these `final`. Sure~ ------------- PR: https://git.openjdk.org/jdk/pull/10008 From valeriep at openjdk.org Tue Sep 6 23:41:46 2022 From: valeriep at openjdk.org (Valerie Peng) Date: Tue, 6 Sep 2022 23:41:46 GMT Subject: RFR: 6447816: Provider filtering (getProviders) is not working with OR'd conditions [v5] In-Reply-To: <5iw0bxqsKeBzSBFrz9b_xaPm1GIg5E3k7vsjklUgGu0=.a7bcbb0a-5d44-46a1-b1c1-e2687d2941dd@github.com> References:

<5iw0bxqsKeBzSBFrz9b_xaPm1GIg5E3k7vsjklUgGu0=.a7bcbb0a-5d44-46a1-b1c1-e2687d2941dd@github.com> Message-ID: On Tue, 6 Sep 2022 14:24:43 GMT, Weijun Wang wrote: >> Valerie Peng has updated the pull request incrementally with one additional commit since the last revision: >> >> more refactoring. > > src/java.base/share/classes/java/security/Security.java line 861: > >> 859: // check required values >> 860: if (serviceName.isEmpty() || algName.isEmpty() || >> 861: (!attrValue.isEmpty() && attrName.isEmpty())) { > > Can we move the `attrName.isEmpty()` check inside the `else` block above? I find it easier to understand. Sure, makes sense. > src/java.base/share/classes/java/security/Security.java line 865: > >> 863: } >> 864: } >> 865: void apply(LinkedList candidates) { > > `candidates.removeIf(p -> !isCriterionSatisfied(p));` Ok. > src/java.base/share/classes/java/security/Security.java line 895: > >> 893: if (standardName != null) { >> 894: key = serviceName + "." + standardName + >> 895: (attrName != null ? ' ' + attrName : ""); > > I'd rather use `(' ' + attrName)`. Always not sure about operation precedence when `?:` is used. Ok. > src/java.base/share/classes/java/security/Security.java line 947: > >> 945: if (isKnownComposite(attribute)) { >> 946: value = value.toUpperCase(); >> 947: prop = prop.toUpperCase(); > > Use `toUpperCase(Locale.ENGLISH)`. Sure~ ------------- PR: https://git.openjdk.org/jdk/pull/10008 From mpowers at openjdk.org Wed Sep 7 00:00:00 2022 From: mpowers at openjdk.org (Mark Powers) Date: Wed, 7 Sep 2022 00:00:00 GMT Subject: RFR: JDK-8291509 Minor cleanup could be done in sun.security [v6] In-Reply-To: References: <7_dH-nuIf3G8tvAD5dACQhKlTuQ0PsWmgIxoQZdSwko=.4c5fa745-a0dd-40c4-a62e-10aeaf7c7788@github.com>

Message-ID: On Tue, 6 Sep 2022 22:37:21 GMT, Mark Powers wrote: >> src/java.base/share/classes/sun/security/provider/certpath/CertId.java line 226: >> >>> 224: "\nissuerKeyHash: \n" + >>> 225: encoder.encode(issuerKeyHash) + >>> 226: "\n" + certSerialNumber.toString(); >> >> I believe this creates more `String` objects whereas the previous code used a mutable `StringBuilder` to build up the `String` first. Not sure this code is better, even though this is probably not a commonly called method. > > If the new code requires more work (CPU and memory) then maybe it is not a good idea. I'll try to find out more about this method before I revert the change. Under the hood, the java compiler uses `StringBuilder` so the new code is okay. I looked at the byte code. ------------- PR: https://git.openjdk.org/jdk/pull/9972 From duke at openjdk.org Wed Sep 7 00:18:00 2022 From: duke at openjdk.org (zzambers) Date: Wed, 7 Sep 2022 00:18:00 GMT Subject: RFR: 8293232: Fix race condition in pkcs11 SessionManager [v2] In-Reply-To: References: Message-ID: > There is a race condition in JDK's SessionManager, which can lead to random exceptions. > > **Exception:** > > javax.net.ssl.SSLException: Internal error: close session with active objects > at java.base/sun.security.ssl.Alert.createSSLException(Alert.java:133) > at java.base/sun.security.ssl.TransportContext.fatal(TransportContext.java:371) > at java.base/sun.security.ssl.TransportContext.fatal(TransportContext.java:314) > at java.base/sun.security.ssl.TransportContext.fatal(TransportContext.java:309) > at java.base/sun.security.ssl.SSLSocketImpl.handleException(SSLSocketImpl.java:1707) > at java.base/sun.security.ssl.SSLSocketImpl$AppInputStream.read(SSLSocketImpl.java:1080) > at java.base/sun.security.ssl.SSLSocketImpl$AppInputStream.read(SSLSocketImpl.java:971) > at SSLSocketServer.serverLoop(SSLSocketServer.java:133) > at SSLSocketServer$1.run(SSLSocketServer.java:75) > at java.base/java.lang.Thread.run(Thread.java:833) > Caused by: java.security.ProviderException: Internal error: close session with active objects > at jdk.crypto.cryptoki/sun.security.pkcs11.Session.close(Session.java:127) > at jdk.crypto.cryptoki/sun.security.pkcs11.Session.close(Session.java:114) > at jdk.crypto.cryptoki/sun.security.pkcs11.SessionManager.closeSession(SessionManager.java:237) > at jdk.crypto.cryptoki/sun.security.pkcs11.SessionManager$Pool.release(SessionManager.java:270) > at jdk.crypto.cryptoki/sun.security.pkcs11.SessionManager.demoteObjSession(SessionManager.java:210) > at jdk.crypto.cryptoki/sun.security.pkcs11.Session.removeObject(Session.java:101) > at jdk.crypto.cryptoki/sun.security.pkcs11.SessionKeyRef.updateNativeKey(P11Key.java:1396) > at jdk.crypto.cryptoki/sun.security.pkcs11.SessionKeyRef.removeNativeKey(P11Key.java:1377) > at jdk.crypto.cryptoki/sun.security.pkcs11.NativeKeyHolder.releaseKeyID(P11Key.java:1329) > at jdk.crypto.cryptoki/sun.security.pkcs11.P11Key.releaseKeyID(P11Key.java:156) > at jdk.crypto.cryptoki/sun.security.pkcs11.P11AEADCipher.reset(P11AEADCipher.java:529) > at jdk.crypto.cryptoki/sun.security.pkcs11.P11AEADCipher.ensureInitialized(P11AEADCipher.java:436) > at jdk.crypto.cryptoki/sun.security.pkcs11.P11AEADCipher.implDoFinal(P11AEADCipher.java:732) > at jdk.crypto.cryptoki/sun.security.pkcs11.P11AEADCipher.engineDoFinal(P11AEADCipher.java:624) > at java.base/javax.crypto.Cipher.doFinal(Cipher.java:2500) > at java.base/sun.security.ssl.SSLCipher$T12GcmReadCipherGenerator$GcmReadCipher.decrypt(SSLCipher.java:1659) > at java.base/sun.security.ssl.SSLSocketInputRecord.decodeInputRecord(SSLSocketInputRecord.java:260) > at java.base/sun.security.ssl.SSLSocketInputRecord.decode(SSLSocketInputRecord.java:181) > at java.base/sun.security.ssl.SSLTransport.decode(SSLTransport.java:111) > at java.base/sun.security.ssl.SSLSocketImpl.decode(SSLSocketImpl.java:1508) > at java.base/sun.security.ssl.SSLSocketImpl.readApplicationRecord(SSLSocketImpl.java:1479) > at java.base/sun.security.ssl.SSLSocketImpl$AppInputStream.read(SSLSocketImpl.java:1064) > ... 4 more > > > **Reproducibility:** > I started getting this exception quite reliably on JDK17 on my machine with one particular test setup using ssl-tests testsuite. Unfortunately setup itself needed some RH specific patches and also ability to reproduce depends on other factors such number keys in keystore, machine where testing was performed... I tried a bit to create some reproducer, but I couldn't find a way to easily reproduce this issue :( > > **Problem:** > SunPKCS11 provider does session pooling. This is done in SessionManager [1] (one per SunPKCS11 provider). Released sessions are kept by SessionManager for a while, for reuse (in limited number). This however is a bit complicated as some sessions can own objects (e.g. keys). So there are actually 2 pools. One for sessions with objects ("objSessions") and one for sessions without objects ("opSessions"). This is because sessions without objects, which are not being used, can be safely closed (SessionManager only keeps around limited amount of these), while sessions with objects cannot be safely closed (until all objects are removed from them). Session manager has methods for getting Session for given purpose (object creation or just doing other operations), prioritizing appropriate pool. Each session has counter (called "createdObjects") to track how many objects it owns. When session is being returned to pool this counter is checked and session is placed to appropriate pool. Also whe n counter for some Session in "objSessions" pool reaches zero it is moved ("demoted") to "opSessions" pool. > > And here comes complicated part. As far as I understand it, Session.addObject() [2] (which increases "createdObjects" counter) is always being called by thread "holding" session which owns the created object. (That is: thread gets a session, uses it to create an object and calls Session.addObject() on that session to increase the counter, before returning the session to pool. See e.g.: [3]) However this is not true for Session.removeObject() [4]. (That is: thread gets session, which is not necessary the same one owning object being removed, performs object removal, but then calls Session.removeObject() on session which owned that object. See e.g.: [5]) That is Session.removeObject() can be called on Session which is in "objSessions" pool or which is being used be other thread. (object removal can happen as result of releasing key, either explicitly or as result of GC etc..). > > And finally, there is a problem in code handling object removal from a session. Session.removeObject() [4] first checks if "createdObjects" counter reached zero. If so, it calls SessionManager.demoteObjSession(this) [6], which attempts to remove Session from objSessions pool, if session is successfully removed from there, meaning no other thread "holds" this session, session is put to opSessions pool, if not (meaning other thread "holds" it), method just returns, since that other thread puts this session to appropriate pool, when it is done with it by calling SessionManager.releaseSession(session). > > There is race condition here. Consider following scenario: > > // Thread T1 runs: > Session.removeObject() // [4] > createdObjects.decrementAndGet() // returns zero > > // Thread T2 steps in (operating on the same session instance): > Session.addObject() // increases "createdObjects" counter [2] > SessionManager.releaseSession(session) // releases session to objSessions pool > > // Thread T1 continues: > SessionManager.demoteObjSession(this) // [6] > objSessions.remove(session) // returns true > opSessions.release(session) // puts session (with objects!) to opSessions pool > // if opSessions is already full, close of session with objects is attempted throwing Exception.. > > > **Fix:** > SessionManager.demoteObjSession [6] method was changed, so that check for objects is done once again if session was successfully removed from "objSessions" pool (now that it is out of pool and other threads should not be adding objects to it). Based on this check session is either released to "opSessions" pool or returned to "objSessions" pool. This can be achieved by calling releaseSession(session) instead of opSessions.release(session). > > **Testing:** > jdk_security tests passed for me locally with this change. > I have also tested this change on top of custom JDK17 build which allows scenario, where I can reproduce this issue. Problem got fixed. > > [1] https://github.com/openjdk/jdk/blob/9444a081cc9873caa7b5c6a78df0d1aecda6e4f1/src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/SessionManager.java > [2] https://github.com/openjdk/jdk/blob/9444a081cc9873caa7b5c6a78df0d1aecda6e4f1/src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/Session.java#L93 > [3] https://github.com/openjdk/jdk/blob/9444a081cc9873caa7b5c6a78df0d1aecda6e4f1/src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/P11Key.java#L1339 > [4] https://github.com/openjdk/jdk/blob/9444a081cc9873caa7b5c6a78df0d1aecda6e4f1/src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/Session.java#L98 > [5] https://github.com/openjdk/jdk/blob/9444a081cc9873caa7b5c6a78df0d1aecda6e4f1/src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/P11Key.java#L1360 > [6] https://github.com/openjdk/jdk/blob/9444a081cc9873caa7b5c6a78df0d1aecda6e4f1/src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/SessionManager.java#L195 zzambers has updated the pull request incrementally with one additional commit since the last revision: Added comment, updated copyright date ------------- Changes: - all: https://git.openjdk.org/jdk/pull/10125/files - new: https://git.openjdk.org/jdk/pull/10125/files/713f6176..cf493189 Webrevs: - full: https://webrevs.openjdk.org/?repo=jdk&pr=10125&range=01 - incr: https://webrevs.openjdk.org/?repo=jdk&pr=10125&range=00-01 Stats: 6 lines in 1 file changed: 5 ins; 0 del; 1 mod Patch: https://git.openjdk.org/jdk/pull/10125.diff Fetch: git fetch https://git.openjdk.org/jdk pull/10125/head:pull/10125 PR: https://git.openjdk.org/jdk/pull/10125 From valeriep at openjdk.org Wed Sep 7 00:30:44 2022 From: valeriep at openjdk.org (Valerie Peng) Date: Wed, 7 Sep 2022 00:30:44 GMT Subject: RFR: 6447816: Provider filtering (getProviders) is not working with OR'd conditions [v5] In-Reply-To: References:

Message-ID: <0_xp5Nn9yZd2Yis5Njl8BCUDyabUSCNIcZ8Fo8Mnvao=.c256c26a-2dab-4cb3-999b-51a7d8232dd4@github.com> On Tue, 6 Sep 2022 14:36:57 GMT, Weijun Wang wrote: >> Valerie Peng has updated the pull request incrementally with one additional commit since the last revision: >> >> more refactoring. > > src/java.base/share/classes/java/security/Security.java line 919: > >> 917: } >> 918: >> 919: private static boolean isKnownComposite(String attr) { > > You can move this method and the next method inside the `Criteria` class. In fact, I think the `isConstraintSatisfied` method can be combined into the `isCriterionSatisfied` method. Yes, good idea. ------------- PR: https://git.openjdk.org/jdk/pull/10008 From valeriep at openjdk.org Wed Sep 7 00:50:41 2022 From: valeriep at openjdk.org (Valerie Peng) Date: Wed, 7 Sep 2022 00:50:41 GMT Subject: RFR: 6447816: Provider filtering (getProviders) is not working with OR'd conditions [v5] In-Reply-To: <82Vq_JxEHTGCSfDDNAldQXJYN8A_9aHkwS1AGS8I8AY=.87411310-3092-45d7-ab7c-d7f9d0fcf216@github.com> References:

<82Vq_JxEHTGCSfDDNAldQXJYN8A_9aHkwS1AGS8I8AY=.87411310-3092-45d7-ab7c-d7f9d0fcf216@github.com> Message-ID: On Tue, 6 Sep 2022 14:40:42 GMT, Weijun Wang wrote: >> Valerie Peng has updated the pull request incrementally with one additional commit since the last revision: >> >> more refactoring. > > test/jdk/java/security/Security/ProviderFiltering.java line 108: > >> 106: doit(key + ":" + valComp1, p); >> 107: doit(key + ":" + valComp2, p); >> 108: doit(key + ":" + valComp2CN); > > Please provide a comment on `valComp2CN`. Ok. > test/jdk/java/security/Security/ProviderFiltering.java line 145: > >> 143: doit(filters, pName); >> 144: >> 145: // should find no proviser now that TestProv is removed > > Typo, `s/proviser/provider/`. Will fix, thanks~ ------------- PR: https://git.openjdk.org/jdk/pull/10008 From weijun at openjdk.org Wed Sep 7 01:53:43 2022 From: weijun at openjdk.org (Weijun Wang) Date: Wed, 7 Sep 2022 01:53:43 GMT Subject: RFR: 6447816: Provider filtering (getProviders) is not working with OR'd conditions [v2] In-Reply-To: <76ynublD6DHvO1wSkvKDlA16ANoXlhiwWVJIWNC8P9c=.43034088-79f6-4caa-9636-be9f599ea8ad@github.com> References: <-ws8CzY5840jultJy8Nbs9e146U43kKFKKTHiHgprQo=.f4c7dbb7-1c01-4d72-a688-287c0f506bcf@github.com> <8x_-hT0hw6GqQho_CxlpCmmJm-OBvlvZrkqpMD3ItYY=.b8850e45-a380-4002-ab6d-6d512597b57c@github.com> <2untLt_BbgbDuMGC7B3_YDpcraMlFxJ4aDrhLO9dhAQ=.2337b367-7d9b-45f1-b003-3ef03c9153e8@github.com> <76ynublD6DHvO1wSkvKDlA16ANoXlhiwWVJIWNC8P9c=.43034088-79f6-4caa-9636-be9f599ea8ad@github.com> Message-ID: On Tue, 6 Sep 2022 23:17:55 GMT, Valerie Peng wrote: >> Sorry, I re-read and maybe the original check is better. If both `keySet` and `allProviders` are empty, then empty is returned. According to the spec, it should be null. >> >> I still don't think either of them can be null, but adding the `isEmpty` check is probably wrong. > > Well, it depends on how you interpret an empty filter map. If an empty table is specified, I'd think it means no criteria is set and all providers can be returned as the comment above suggested. > As this is a corner case, I am ok with reverting the isEmpty() check to keep the same behavior as before. However, I don't get which part of spec states about returning null for this case? The spec for this method: * @return all the installed providers that satisfy the selection * criteria, or {@code null} if no such providers have been installed. My understanding is that you should not return an empty array. ------------- PR: https://git.openjdk.org/jdk/pull/10008 From xuelei at openjdk.org Wed Sep 7 01:56:42 2022 From: xuelei at openjdk.org (Xue-Lei Andrew Fan) Date: Wed, 7 Sep 2022 01:56:42 GMT Subject: RFR: 8281236: (D)TLS key exchange named groups [v2] In-Reply-To: References:

Message-ID: On Tue, 9 Aug 2022 15:30:57 GMT, Xue-Lei Andrew Fan wrote: >> This update is to support key exchange named groups customization for individual (D)TLS connection. Please review the CSR as well: >> CSR: https://bugs.openjdk.org/browse/JDK-8291950 >> RFE: https://bugs.openjdk.org/browse/JDK-8281236 >> Release-note: https://bugs.openjdk.org/browse/JDK-8291975 >> >> This is an effort similar to [JDK-8280494: "(D)TLS signature schemes"](https://bugs.openjdk.org/browse/JDK-8280494) > > Xue-Lei Andrew Fan has updated the pull request with a new target base due to a merge or a rebase. The incremental webrev excludes the unrelated changes brought in by the merge/rebase. The pull request contains three additional commits since the last revision: > > - Merge > - add test cases > - 8281236: (D)TLS key exchange algorithms Ping ... ------------- PR: https://git.openjdk.org/jdk/pull/9776 From djelinski at openjdk.org Wed Sep 7 05:29:07 2022 From: djelinski at openjdk.org (Daniel =?UTF-8?B?SmVsacWEc2tp?=) Date: Wed, 7 Sep 2022 05:29:07 GMT Subject: Integrated: 8293326: jdk/sun/security/tools/jarsigner/compatibility/SignTwice.java slow on Windows In-Reply-To: <33oOqZONiY4_yjFmx1exlPHxuZf75HRKapOX9gC8QPM=.48319976-7687-4af2-a0c4-11634256861f@github.com> References: <33oOqZONiY4_yjFmx1exlPHxuZf75HRKapOX9gC8QPM=.48319976-7687-4af2-a0c4-11634256861f@github.com> Message-ID: On Mon, 5 Sep 2022 09:29:49 GMT, Daniel Jeli?ski wrote: > This patch enables SignTwice test to complete faster on Windows machines. > > The test starts `keytool` and `jarsigner` a number of times, passing `-J-Djava.security.egd=file:/dev/./urandom` to the started process, presumably to avoid blocking on VMs with insufficient entropy. This works fine on machines where `/dev/./urandom` is actually present. On Windows it makes the JVM use `ThreadedSeedGenerator`, which is very slow compared to the other options. > > The fix removes `java.security.egd` setting on Windows machines. > > Alternatively we could change the egd to use `file:/dev/urandom` (without the `/./` part); this also fixes the Windows problem. Is the `/./` part still needed? If I understand correctly, it was a workaround for some JDK7 bug. This pull request has now been integrated. Changeset: 205f992e Author: Daniel Jeli?ski URL: https://git.openjdk.org/jdk/commit/205f992e9ecf9f83bb052ee2e2a32e3f532c5ac9 Stats: 13 lines in 1 file changed: 10 ins; 3 del; 0 mod 8293326: jdk/sun/security/tools/jarsigner/compatibility/SignTwice.java slow on Windows Reviewed-by: weijun, wetmore ------------- PR: https://git.openjdk.org/jdk/pull/10160 From aturbanov at openjdk.org Wed Sep 7 06:14:44 2022 From: aturbanov at openjdk.org (Andrey Turbanov) Date: Wed, 7 Sep 2022 06:14:44 GMT Subject: Integrated: 8293197: Avoid double racy reads from non-volatile fields in SharedSecrets In-Reply-To: References: Message-ID: On Tue, 30 Aug 2022 07:10:36 GMT, Andrey Turbanov wrote: > After integration of [JDK-8259021](https://bugs.openjdk.org/browse/JDK-8259021) a few more fields were added to `SharedSecrets` class. It make sense to update their reading code to use the same idiom. This pull request has now been integrated. Changeset: 2259e427 Author: Andrey Turbanov URL: https://git.openjdk.org/jdk/commit/2259e427a53440da948315db2272396294036051 Stats: 16 lines in 1 file changed: 8 ins; 0 del; 8 mod 8293197: Avoid double racy reads from non-volatile fields in SharedSecrets Reviewed-by: alanb ------------- PR: https://git.openjdk.org/jdk/pull/10076 From mpowers at openjdk.org Wed Sep 7 14:40:23 2022 From: mpowers at openjdk.org (Mark Powers) Date: Wed, 7 Sep 2022 14:40:23 GMT Subject: RFR: JDK-8291509 Minor cleanup could be done in sun.security [v7] In-Reply-To: <7_dH-nuIf3G8tvAD5dACQhKlTuQ0PsWmgIxoQZdSwko=.4c5fa745-a0dd-40c4-a62e-10aeaf7c7788@github.com> References: <7_dH-nuIf3G8tvAD5dACQhKlTuQ0PsWmgIxoQZdSwko=.4c5fa745-a0dd-40c4-a62e-10aeaf7c7788@github.com> Message-ID: > https://bugs.openjdk.org/browse/JDK-8291509 Mark Powers has updated the pull request incrementally with one additional commit since the last revision: comments from Max and Sean ------------- Changes: - all: https://git.openjdk.org/jdk/pull/9972/files - new: https://git.openjdk.org/jdk/pull/9972/files/366b957a..800b100f Webrevs: - full: https://webrevs.openjdk.org/?repo=jdk&pr=9972&range=06 - incr: https://webrevs.openjdk.org/?repo=jdk&pr=9972&range=05-06 Stats: 22 lines in 8 files changed: 3 ins; 8 del; 11 mod Patch: https://git.openjdk.org/jdk/pull/9972.diff Fetch: git fetch https://git.openjdk.org/jdk pull/9972/head:pull/9972 PR: https://git.openjdk.org/jdk/pull/9972 From valeriep at openjdk.org Wed Sep 7 16:43:54 2022 From: valeriep at openjdk.org (Valerie Peng) Date: Wed, 7 Sep 2022 16:43:54 GMT Subject: RFR: 8293232: Fix race condition in pkcs11 SessionManager [v2] In-Reply-To: References:

Message-ID: On Wed, 7 Sep 2022 00:18:00 GMT, zzambers wrote: >> There is a race condition in JDK's SessionManager, which can lead to random exceptions. >> >> **Exception:** >> >> javax.net.ssl.SSLException: Internal error: close session with active objects >> at java.base/sun.security.ssl.Alert.createSSLException(Alert.java:133) >> at java.base/sun.security.ssl.TransportContext.fatal(TransportContext.java:371) >> at java.base/sun.security.ssl.TransportContext.fatal(TransportContext.java:314) >> at java.base/sun.security.ssl.TransportContext.fatal(TransportContext.java:309) >> at java.base/sun.security.ssl.SSLSocketImpl.handleException(SSLSocketImpl.java:1707) >> at java.base/sun.security.ssl.SSLSocketImpl$AppInputStream.read(SSLSocketImpl.java:1080) >> at java.base/sun.security.ssl.SSLSocketImpl$AppInputStream.read(SSLSocketImpl.java:971) >> at SSLSocketServer.serverLoop(SSLSocketServer.java:133) >> at SSLSocketServer$1.run(SSLSocketServer.java:75) >> at java.base/java.lang.Thread.run(Thread.java:833) >> Caused by: java.security.ProviderException: Internal error: close session with active objects >> at jdk.crypto.cryptoki/sun.security.pkcs11.Session.close(Session.java:127) >> at jdk.crypto.cryptoki/sun.security.pkcs11.Session.close(Session.java:114) >> at jdk.crypto.cryptoki/sun.security.pkcs11.SessionManager.closeSession(SessionManager.java:237) >> at jdk.crypto.cryptoki/sun.security.pkcs11.SessionManager$Pool.release(SessionManager.java:270) >> at jdk.crypto.cryptoki/sun.security.pkcs11.SessionManager.demoteObjSession(SessionManager.java:210) >> at jdk.crypto.cryptoki/sun.security.pkcs11.Session.removeObject(Session.java:101) >> at jdk.crypto.cryptoki/sun.security.pkcs11.SessionKeyRef.updateNativeKey(P11Key.java:1396) >> at jdk.crypto.cryptoki/sun.security.pkcs11.SessionKeyRef.removeNativeKey(P11Key.java:1377) >> at jdk.crypto.cryptoki/sun.security.pkcs11.NativeKeyHolder.releaseKeyID(P11Key.java:1329) >> at jdk.crypto.cryptoki/sun.security.pkcs11.P11Key.releaseKeyID(P11Key.java:156) >> at jdk.crypto.cryptoki/sun.security.pkcs11.P11AEADCipher.reset(P11AEADCipher.java:529) >> at jdk.crypto.cryptoki/sun.security.pkcs11.P11AEADCipher.ensureInitialized(P11AEADCipher.java:436) >> at jdk.crypto.cryptoki/sun.security.pkcs11.P11AEADCipher.implDoFinal(P11AEADCipher.java:732) >> at jdk.crypto.cryptoki/sun.security.pkcs11.P11AEADCipher.engineDoFinal(P11AEADCipher.java:624) >> at java.base/javax.crypto.Cipher.doFinal(Cipher.java:2500) >> at java.base/sun.security.ssl.SSLCipher$T12GcmReadCipherGenerator$GcmReadCipher.decrypt(SSLCipher.java:1659) >> at java.base/sun.security.ssl.SSLSocketInputRecord.decodeInputRecord(SSLSocketInputRecord.java:260) >> at java.base/sun.security.ssl.SSLSocketInputRecord.decode(SSLSocketInputRecord.java:181) >> at java.base/sun.security.ssl.SSLTransport.decode(SSLTransport.java:111) >> at java.base/sun.security.ssl.SSLSocketImpl.decode(SSLSocketImpl.java:1508) >> at java.base/sun.security.ssl.SSLSocketImpl.readApplicationRecord(SSLSocketImpl.java:1479) >> at java.base/sun.security.ssl.SSLSocketImpl$AppInputStream.read(SSLSocketImpl.java:1064) >> ... 4 more >> >> >> **Reproducibility:** >> I started getting this exception quite reliably on JDK17 on my machine with one particular test setup using ssl-tests testsuite. Unfortunately setup itself needed some RH specific patches and also ability to reproduce depends on other factors such number keys in keystore, machine where testing was performed... I tried a bit to create some reproducer, but I couldn't find a way to easily reproduce this issue :( >> >> **Problem:** >> SunPKCS11 provider does session pooling. This is done in SessionManager [1] (one per SunPKCS11 provider). Released sessions are kept by SessionManager for a while, for reuse (in limited number). This however is a bit complicated as some sessions can own objects (e.g. keys). So there are actually 2 pools. One for sessions with objects ("objSessions") and one for sessions without objects ("opSessions"). This is because sessions without objects, which are not being used, can be safely closed (SessionManager only keeps around limited amount of these), while sessions with objects cannot be safely closed (until all objects are removed from them). Session manager has methods for getting Session for given purpose (object creation or just doing other operations), prioritizing appropriate pool. Each session has counter (called "createdObjects") to track how many objects it owns. When session is being returned to pool this counter is checked and session is placed to appropriate pool. Also wh en counter for some Session in "objSessions" pool reaches zero it is moved ("demoted") to "opSessions" pool. >> >> And here comes complicated part. As far as I understand it, Session.addObject() [2] (which increases "createdObjects" counter) is always being called by thread "holding" session which owns the created object. (That is: thread gets a session, uses it to create an object and calls Session.addObject() on that session to increase the counter, before returning the session to pool. See e.g.: [3]) However this is not true for Session.removeObject() [4]. (That is: thread gets session, which is not necessary the same one owning object being removed, performs object removal, but then calls Session.removeObject() on session which owned that object. See e.g.: [5]) That is Session.removeObject() can be called on Session which is in "objSessions" pool or which is being used be other thread. (object removal can happen as result of releasing key, either explicitly or as result of GC etc..). >> >> And finally, there is a problem in code handling object removal from a session. Session.removeObject() [4] first checks if "createdObjects" counter reached zero. If so, it calls SessionManager.demoteObjSession(this) [6], which attempts to remove Session from objSessions pool, if session is successfully removed from there, meaning no other thread "holds" this session, session is put to opSessions pool, if not (meaning other thread "holds" it), method just returns, since that other thread puts this session to appropriate pool, when it is done with it by calling SessionManager.releaseSession(session). >> >> There is race condition here. Consider following scenario: >> >> // Thread T1 runs: >> Session.removeObject() // [4] >> createdObjects.decrementAndGet() // returns zero >> >> // Thread T2 steps in (operating on the same session instance): >> Session.addObject() // increases "createdObjects" counter [2] >> SessionManager.releaseSession(session) // releases session to objSessions pool >> >> // Thread T1 continues: >> SessionManager.demoteObjSession(this) // [6] >> objSessions.remove(session) // returns true >> opSessions.release(session) // puts session (with objects!) to opSessions pool >> // if opSessions is already full, close of session with objects is attempted throwing Exception.. >> >> >> **Fix:** >> SessionManager.demoteObjSession [6] method was changed, so that check for objects is done once again if session was successfully removed from "objSessions" pool (now that it is out of pool and other threads should not be adding objects to it). Based on this check session is either released to "opSessions" pool or returned to "objSessions" pool. This can be achieved by calling releaseSession(session) instead of opSessions.release(session). >> >> **Testing:** >> jdk_security tests passed for me locally with this change. >> I have also tested this change on top of custom JDK17 build which allows scenario, where I can reproduce this issue. Problem got fixed. >> >> [1] https://github.com/openjdk/jdk/blob/9444a081cc9873caa7b5c6a78df0d1aecda6e4f1/src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/SessionManager.java >> [2] https://github.com/openjdk/jdk/blob/9444a081cc9873caa7b5c6a78df0d1aecda6e4f1/src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/Session.java#L93 >> [3] https://github.com/openjdk/jdk/blob/9444a081cc9873caa7b5c6a78df0d1aecda6e4f1/src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/P11Key.java#L1339 >> [4] https://github.com/openjdk/jdk/blob/9444a081cc9873caa7b5c6a78df0d1aecda6e4f1/src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/Session.java#L98 >> [5] https://github.com/openjdk/jdk/blob/9444a081cc9873caa7b5c6a78df0d1aecda6e4f1/src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/P11Key.java#L1360 >> [6] https://github.com/openjdk/jdk/blob/9444a081cc9873caa7b5c6a78df0d1aecda6e4f1/src/jdk.crypto.cryptoki/share/classes/sun/security/pkcs11/SessionManager.java#L195 > > zzambers has updated the pull request incrementally with one additional commit since the last revision: > > Added comment, updated copyright date Marked as reviewed by valeriep (Reviewer). ------------- PR: https://git.openjdk.org/jdk/pull/10125 From valeriep at openjdk.org Wed Sep 7 16:43:54 2022 From: valeriep at openjdk.org (Valerie Peng) Date: Wed, 7 Sep 2022 16:43:54 GMT Subject: RFR: 8293232: Fix race condition in pkcs11 SessionManager In-Reply-To: References:

Message-ID: On Tue, 6 Sep 2022 22:50:47 GMT, zzambers wrote: >> Thanks for the suggested fix. I share your opinion about the potential race condition regarding demoting object session. Will take a look. > > @valeriepeng, Thank you for your review > @zzambers Your change (at version [713f617](https://github.com/openjdk/jdk/commit/713f61760d502890c67bcb44db17d2a33f3bb2fb)) is now ready to be sponsored by a Committer. The bot says that you need to do "/integrate" command again before I can do "/sponsor". ------------- PR: https://git.openjdk.org/jdk/pull/10125 From weijun at openjdk.org Wed Sep 7 16:56:15 2022 From: weijun at openjdk.org (Weijun Wang) Date: Wed, 7 Sep 2022 16:56:15 GMT Subject: RFR: 8293489: Accept CAs with BasicConstraints without pathLenConstraint Message-ID: Provide a new test for an old bug fix. ------------- Commit messages: - new test Changes: https://git.openjdk.org/jdk/pull/10203/files Webrev: https://webrevs.openjdk.org/?repo=jdk&pr=10203&range=00 Issue: https://bugs.openjdk.org/browse/JDK-8293489 Stats: 80 lines in 1 file changed: 80 ins; 0 del; 0 mod Patch: https://git.openjdk.org/jdk/pull/10203.diff Fetch: git fetch https://git.openjdk.org/jdk pull/10203/head:pull/10203 PR: https://git.openjdk.org/jdk/pull/10203 From valeriep at openjdk.org Wed Sep 7 17:03:47 2022 From: valeriep at openjdk.org (Valerie Peng) Date: Wed, 7 Sep 2022 17:03:47 GMT Subject: RFR: 6447816: Provider filtering (getProviders) is not working with OR'd conditions [v2] In-Reply-To: References: <-ws8CzY5840jultJy8Nbs9e146U43kKFKKTHiHgprQo=.f4c7dbb7-1c01-4d72-a688-287c0f506bcf@github.com> <8x_-hT0hw6GqQho_CxlpCmmJm-OBvlvZrkqpMD3ItYY=.b8850e45-a380-4002-ab6d-6d512597b57c@github.com> <2untLt_BbgbDuMGC7B3_YDpcraMlFxJ4aDrhLO9dhAQ=.2337b367-7d9b-45f1-b003-3ef03c9153e8@github.com> <76ynublD6DHvO1wSkvKDlA16ANoXlhiwWVJIWNC8P9c=.43034088-79f6-4caa-9636-be9f599ea8ad@github.com> Message-ID: On Wed, 7 Sep 2022 01:49:25 GMT, Weijun Wang wrote: >> Well, it depends on how you interpret an empty filter map. If an empty table is specified, I'd think it means no criteria is set and all providers can be returned as the comment above suggested. >> As this is a corner case, I am ok with reverting the isEmpty() check to keep the same behavior as before. However, I don't get which part of spec states about returning null for this case? > > The spec for this method: > > * @return all the installed providers that satisfy the selection > * criteria, or {@code null} if no such providers have been installed. > > My understanding is that you should not return an empty array. I see that null is returned instead of an empty Provider array. When an empty filter map is specified, I interpret it as no criteria is set and thus it should return all providers (which is often non-empty). The condition on line 599 is OR, but the line on 600 returns the "allProvider" value which may or may not be null. Anyway, I start to get the feeling that we may not be talking about the same stuff... ------------- PR: https://git.openjdk.org/jdk/pull/10008 From weijun at openjdk.org Wed Sep 7 17:27:45 2022 From: weijun at openjdk.org (Weijun Wang) Date: Wed, 7 Sep 2022 17:27:45 GMT Subject: RFR: 6447816: Provider filtering (getProviders) is not working with OR'd conditions [v2] In-Reply-To: References: <-ws8CzY5840jultJy8Nbs9e146U43kKFKKTHiHgprQo=.f4c7dbb7-1c01-4d72-a688-287c0f506bcf@github.com> <8x_-hT0hw6GqQho_CxlpCmmJm-OBvlvZrkqpMD3ItYY=.b8850e45-a380-4002-ab6d-6d512597b57c@github.com> <2untLt_BbgbDuMGC7B3_YDpcraMlFxJ4aDrhLO9dhAQ=.2337b367-7d9b-45f1-b003-3ef03c9153e8@github.com> <76ynublD6DHvO1wSkvKDlA16ANoXlhiwWVJIWNC8P9c=.43034088-79f6-4caa-9636-be9f599ea8ad@github.com>

Message-ID: <0kIJUTRiuqrrnBSD2uJ0eHikgAU94AoycIjFcaiWQ-0=.80e2af9b-2f79-4e89-9280-7b51b8fc8b4c@github.com> On Wed, 7 Sep 2022 17:01:32 GMT, Valerie Peng

Verifying a JarInputStream

Verifying a JarInputStream

Verifying a JarInputStream

Accessing the Manifest