Hi, Please find in this PR a proposal to fix JDK-8265462 [1].
With this fix, OpenJDK will only use the known slot IDs for the NSS Internal Module. If the NSS Internal Module has more slots (for example, as a result of an initialization sequence such as the one triggered from the libnsssysinit.so library), they will be ignored. The goal is to handle multiple-slots scenarios while keeping OpenJDK's previous behavior. No regressions observed in the jdk/sun/security/pkcs11 tests category. A new regression test was not added as part of this changeset because of its complexity. It would depend on a specific NSS configuration, or the NSS library would need to be mocked. I've done manual testing in my environment and JDK-8265462 [1] has further information about it. Thanks, Martin.- -- [1] - https://bugs.openjdk.java.net/browse/JDK-8265462 ------------- Commit messages: - 8265462: Handle multiple slots in the NSS Internal Module from SunPKCS11's Secmod Changes: https://git.openjdk.java.net/jdk/pull/3661/files Webrev: https://webrevs.openjdk.java.net/?repo=jdk&pr=3661&range=00 Issue: https://bugs.openjdk.java.net/browse/JDK-8265462 Stats: 159 lines in 4 files changed: 127 ins; 3 del; 29 mod Patch: https://git.openjdk.java.net/jdk/pull/3661.diff Fetch: git fetch https://git.openjdk.java.net/jdk pull/3661/head:pull/3661 PR: https://git.openjdk.java.net/jdk/pull/3661
