JDK-8212916 : Remove deprecated java.security.{Certificate,Identity,IdentityScope,Signer} APIs
  • Type: CSR
  • Component: security-libs
  • Sub-Component: java.security
  • Priority: P3
  • Status: Draft
  • Resolution: Unresolved
  • Submitted: 2018-10-24
  • Updated: 2020-02-04
Related Reports
CSR :  
JDK-8191136 - Remove deprecated java.security.{Certificate,Identity,IdentityScope,Signer} APIs
Description
Summary
-------

Remove the following terminally deprecated APIs that have been marked for removal since Java SE 10: `java.security.Certificate`, `java.security.Identity`, `java.security.IdentityScope`, and `java.security.Signer`.

Problem
-------

In Java SE 10, these APIs were marked for removal (see JDK-8175091). These APIs have been deprecated since Java SE 1.2. They have been superseded by other APIs and no longer have any value.

Solution
--------

 1. Remove the `java.security.Certificate`, `java.security.Identity`, `java.security.IdentityScope`, and 
 `java.security.Signer` classes. 
 2. Remove the following `java.security.SecurityPermission` targets that are related to these APIs and no longer would have any value: `setSystemScope`, `setIdentityPublicKey`, `setIdentityInfo`, `addIdentityCertificate`, `removeIdentityCertificate`, `printIdentity`, `getSignerPrivateKey`, and `setSignerKeyPair`.
 3. Remove the `policy.ignoreIdentityScope` security property which is specific to the `IdentityScope` API.

Specification
-------------

See attached webrev.zip.
Comments
[~mullan] As i understand this issue fix version needs to be updated to 14 as well?
09-05-2019
Returning to Draft and re-targeting to JDK 13 to allow for more time to resolve upward dependencies. See comments in main issue for more details.
21-11-2018
Moving to Approved. Verifying that leaving insertProvider.{provider name} as the lone entry in the table is intentional.
30-10-2018