JDK-8155246 : Throw error if default java.security file is missing
  • Type: Enhancement
  • Component: security-libs
  • Sub-Component: java.security
  • Affected Version: 9
  • Priority: P3
  • Status: Resolved
  • Resolution: Fixed
  • OS: generic
  • CPU: generic
  • Submitted: 2016-04-27
  • Updated: 2022-12-27
  • Resolved: 2022-08-15
The Version table provides details related to the release that this issue/RFE will be addressed.

Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.

To download the current JDK release, click here.
JDK 17 JDK 20
17.0.7-oracleFixed 20 b11Fixed
Related Reports
CSR :  
JDK-8291891 - Throw error if default java.security file is missing
Relates :  
JDK-8292297 - Fix up loading of override java.security properties file
Relates :  
JDK-8291888 - module export issues with legacy provider registration
Sub Tasks
JDK-8294240 :  
Release Note: Throw Error if default java.security file fails to load - Resolved
Description
If the java.security file is missing from a JDK/JRE install, the JDK reverts to a minimal/old set of security configuration settings. A static list of security providers is basically all that gets set up.

jdk8u-dev/jdk/src/share/classes/java/security/Security.java#211
Comments
Fix request [17u] I backport this for parity with 17.0.7-oracle. Small compatibility risk, see CSR. Makes the VM more safe, so we should follow Oracle JDK. Clean backport. Test passes and fails without the fix. SAP nightly testing passed. Original CSR covers 17.
23-12-2022
A pull request was submitted for review. URL: https://git.openjdk.org/jdk17u-dev/pull/973 Date: 2022-12-22 15:17:10 +0000
22-12-2022
Changeset: 9d7c13eb Author: Sean Coffey <coffeys@openjdk.org> Date: 2022-08-15 09:07:17 +0000 URL: https://git.openjdk.org/jdk/commit/9d7c13eb14c525485e7739fcfacd044aa3bbc12d
15-08-2022
A pull request was submitted for review. URL: https://git.openjdk.org/jdk/pull/9747 Date: 2022-08-04 15:22:23 +0000
08-08-2022
This is a good suggestion, but I consider it an RFE since the behavior of falling back to a static list of properties is unspecified and appears to be implementation-specific.
19-07-2016