Re: RFR 8043406: Change default policy for JCE providers to run with as few privileges, as possible

Hi Valerie I didn't read your previous webrevs, but why is "permission java.util.PropertyPermission "*", "read";" needed by every provider? I go to sun/ec, sun/pkcs11, com/sun/crypto and find no special System.getProperty() calls there. Thanks Max On Jul 8, 2014, at 5:14, Valerie Peng wrote

RFR 8048194: GSSContext.acceptSecContext fails when a supported mech is not initiator preferred

Please review the code change at http://cr.openjdk.java.net/~weijun/8048194/webrev.00 The original code goes on accepting the input mechToken even if it's of an unsupported mech. It also mistakenly interprets the input token as a mech token instead of a NegTokenTarg at the 2nd step. Thanks

Re: RFR 8043406: Change default policy for JCE providers to run with as few privileges,as possible

Updated the webrev to include the updates of test policy files. Also changed the ProviderConfig class to ignore provider instantiation failures, so that we don't need to include the entries for crypto providers in the test policy files when the tests themselves do not use/depend on functionali

Re: JI-9013191

Hi Robert! I copied your update to the report and moved it into JDK project. You should be able to access it now: https://bugs.openjdk.java.net/browse/JDK-8049480 Sincerely yours, Ivan On 04.07.2014 12:30, Robert Gibson wrote: Hi, I'm the reporter of JI-9013191 and I just wanted to follow up

RE: RFR 8044085: Access ExtendedGSSContext.inquireSecContext() result through SASL

Thanks Max a lot for working on this as such support is highly desired by Hadoop. Regards, Kai -Original Message- From: Wang Weijun [mailto:weijun.w...@oracle.com] Sent: Friday, July 04, 2014 10:31 AM To: OpenJDK Dev list Cc: Zheng, Kai Subject: RFR 8044085: Access ExtendedGSSContext.in

JI-9013191

Hi, I'm the reporter of JI-9013191 and I just wanted to follow up with some more information, since I can't see or comment on the bug in the OpenJDK JIRA instance. Hope this is the right place. I'm having problems with JAR files signed and timestamped with JDK9 - they fail validation under JDK7

Re: RFR 8044085: Access ExtendedGSSContext.inquireSecContext() result through SASL

Looks good, just one comment in GssKrb5Base - I would change getNegotiatedProperty to call the superclass method first, and then if that returns null, check for the gss inquiretype properties. This way you don't check for IllegalStateExc twice, and it seems cleaner to me. Also, please add a re

Re: RFR(S): 8047368: Remove oracle.jrockit.jfr from open package.access list

Looks good. --Sean On 07/06/2014 03:34 PM, Erik Gahlin wrote: Hi, Could I have a review of a small fix that removes references to jfr from the package.access list. Bug: https://bugs.openjdk.java.net/browse/JDK-8047368 Webrev: http://cr.openjdk.java.net/~egahlin/8047368/ Thanks Erik