JDK-8254711 : Add java.security.Provider.getService JFR Event
  • Type: Enhancement
  • Component: security-libs
  • Sub-Component: java.security
  • Priority: P4
  • Status: Resolved
  • Resolution: Fixed
  • Submitted: 2020-10-13
  • Updated: 2024-11-17
  • Resolved: 2022-09-22
The Version table provides details related to the release that this issue/RFE will be addressed.

Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.

To download the current JDK release, click here.
JDK 11 JDK 17 JDK 20 JDK 8
11.0.20-oracleFixed 17.0.8-oracleFixed 20 b17Fixed 8u391Fixed
Related Reports
Relates :  
JDK-8294673 - JFR: Add SecurityProviderService#threshold to TestActiveSettingEvent.java
Relates :  
JDK-8148188 - Enhance the security libraries to record events of interest
Relates :  
JDK-8344361 - Error in Provider.getService() results NullPointerException in PKCS11 provider
Sub Tasks
JDK-8294239 :  
Release Note: New JFR Event: `jdk.SecurityProviderService` - Resolved
Description
It would be useful to record an event each time a JCE cryptographic service for a specific algorithm is requested and/or used. This would help users determine what crypto algorithms their applications are using, and help flag/detect usages of weak algorithms. The JDK does not currently disable weak algorithms at the JCE layer, so these events would help users spot direct or other usages of these algorithms from which they could then determine if it is a security risk or not. It could also potentially record algorithms supplied by 3rd-party JCE providers.
Comments
Fix request [11u] I backport this for parity with 11.0.20-oracle. I backport the 17u change including JDK-8294673. Medium to low risk, requires simple change to security file. Trivial resolves needed. Tests pass. SAP nightly testing passed.
24-10-2023
Fix request [17u] I backport this for parity with 17.0.8-oracle. It includes follow-up test fix JDK-8294673 Low risk, change to live code minimal. A nice-to-have and keeps openJDK on level with OracleJDK wrt. JFR functionality. I had to adapt the implementation in src/java.base/share/classes/java/security/Provider.java. Tests pass.
23-10-2023
A pull request was submitted for review. URL: https://git.openjdk.org/jdk11u-dev/pull/2202 Date: 2023-10-20 14:25:29 +0000
20-10-2023
A pull request was submitted for review. URL: https://git.openjdk.org/jdk17u-dev/pull/1260 Date: 2023-04-18 15:08:29 +0000
18-04-2023
Changeset: bc2af47e Author: Sean Coffey <coffeys@openjdk.org> Date: 2022-09-22 13:53:15 +0000 URL: https://git.openjdk.org/jdk/commit/bc2af47e1e4e6e96020e03a60ce098ddd17f63ba
22-09-2022
A pull request was submitted for review. URL: https://git.openjdk.org/jdk/pull/9657 Date: 2022-07-27 13:14:39 +0000
14-09-2022