JDK-8239460 : Update Apache Santuario (XML Signature) to version 2.1.4
  • Type: CSR
  • Component: security-libs
  • Sub-Component: javax.xml.crypto
  • Priority: P3
  • Status: Closed
  • Resolution: Approved
  • Fix Versions: 14
  • Submitted: 2020-02-19
  • Updated: 2020-02-22
  • Resolved: 2020-02-20
Related Reports
CSR :  
JDK-8231507 - Update Apache Santuario (XML Signature) to version 2.1.4
Description
Summary
-------

The update of Apache Santuario library from version 2.1.3 to version 2.1.4 introduces a new system property.

Problem
-------

Apache Santurio 2.1.4 uses a new `DocumentBuilder` cache whose pool size can be configured with system property `org.apache.xml.security.parser.pool-size`. We will need to define an equivalent system property in JDK.


Solution
--------

A new system property `com.sun.org.apache.xml.internal.security.parser.pool-size` is introduced in JDK. The function is equivalent to the Apache Santuario system property described above with a different "package" name that matches the imported class structure. The default value is 20, which is also the same as the default value of the Apache Santuario system property.

It's a tradition for JDK to use a different system property name when importing new Apache Santuario releases. This ensures there is no name conflict if both libraries are used.

Specification
-------------

No Spec change.
Comments
I assume there are existing properties in this area in the com.sun.* namespace. If there were not, putting a system property in jdk.* would be preferred. If the system property were introduced in another area, it would be recommended to document the property using the javadoc facilities for doing so. Retroactively voting to Approve this change.
20-02-2020