Bug ID: JDK-8280890 Cannot use '-Djava.system.class.loader' with class loader in signed JAR

JDK-8280890 : Cannot use '-Djava.system.class.loader' with class loader in signed JAR

Type: Bug
Component: security-libs
Sub-Component: java.security
Affected Version: openjdk8u362,11.0.17,17.0.5,18

Priority: P3
Status: Closed
Resolution: Fixed

Submitted: 2022-01-28
Updated: 2023-01-11
Resolved: 2022-02-07

Versions (Unresolved/Resolved/Fixed)

The Version table provides details related to the release that this issue/RFE will be addressed.

Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.

To download the current JDK release, click here.

JDK 11	JDK 17	JDK 19	JDK 8	Other
11.0.18Fixed	17.0.6Fixed	19 b09Fixed	8u361Fixed	openjdk8u362Fixed

Related Reports

Cloners :	JDK-8270170 - Cannot use '-Djava.system.class.loader' with class loader in signed JAR
Duplicate :	JDK-8297684 - NullPointerException in JarVerifier prevents JVM from starting
Relates :	JDK-8298108 - Add a regression test for JDK-8297684
Relates :	JDK-8269039 - Disable SHA-1 Signed JARs
Relates :	JDK-8298271 - java/security/SignedJar/spi-calendar-provider/TestSPISigned.java failing on Windows

Description

The problem occurs if and only if
a) -Djava.system.class.loader is used and
b) the system class loader in question is found in a signed JAR and

# Compile source files (JDK used for compilation is unimportant)
javac src/org/acme/app/Main.java src/org/acme/loader/CustomClassLoader.java

# Create JAR containing custom class loader
jar cf CustomClassLoader.jar -C src org/acme/loader/CustomClassLoader.class

# Create signing key (default keystore has password 'changeit')
keytool -genkeypair -keyalg RSA -alias test-user

# Sign JAR (default keystore has password 'changeit')
jarsigner CustomClassLoader.jar test-user

# Run dummy application, setting custom class loader from JAR as system class loader
java -Djava.security.debug="jca" -Djava.system.class.loader=org.acme.loader.CustomClassLoader -cp "CustomClassLoader.jar;src" org.acme.app.Main

Java HotSpot(TM) 64-Bit Server VM warning: Archived non-system classes are disabled because the java.system.class.loader property is specified (value = "org.acme.loader.CustomClassLoader"). To use archived non-system classes, this property must not be set
ProviderList: provider configuration: [SUN, SunRsaSign, SunEC, SunJSSE, SunJCE, SunJGSS, SunSASL, XMLDSig, SunPCSC, JdkLDAP, JdkSASL, Apple, SunPKCS11]
ProviderList: config configuration: null
jca: Setting up name2enum:
jca: 2.5.4.3 => CommonName
jca: COMMONNAME => CommonName
jca: 2.5.4.4 => Surname
jca: SURNAME => Surname
jca: 2.5.4.5 => SerialNumber
jca: SERIALNUMBER => SerialNumber
jca: 2.5.4.6 => CountryName
jca: COUNTRYNAME => CountryName
jca: 2.5.4.7 => LocalityName
jca: LOCALITYNAME => LocalityName
jca: 2.5.4.8 => StateName
jca: STATENAME => StateName
jca: 2.5.4.9 => StreetAddress
jca: STREETADDRESS => StreetAddress
jca: 2.5.4.10 => OrgName
jca: ORGNAME => OrgName
jca: 2.5.4.11 => OrgUnitName
jca: ORGUNITNAME => OrgUnitName
jca: 2.5.4.12 => Title
jca: TITLE => Title
jca: 2.5.4.42 => GivenName
jca: GIVENNAME => GivenName
jca: 2.5.4.43 => Initials
jca: INITIALS => Initials
jca: 2.5.4.44 => GenerationQualifier
jca: GENERATIONQUALIFIER => GenerationQualifier
jca: 2.5.4.46 => DNQualifier
jca: DNQUALIFIER => DNQualifier
jca: 2.5.29.9 => SubjectDirectoryAttributes
jca: SUBJECTDIRECTORYATTRIBUTES => SubjectDirectoryAttributes
jca: 2.5.29.14 => SubjectKeyID
jca: SUBJECTKEYID => SubjectKeyID
jca: 2.5.29.15 => KeyUsage
jca: KEYUSAGE => KeyUsage
jca: 2.5.29.16 => PrivateKeyUsage
jca: PRIVATEKEYUSAGE => PrivateKeyUsage
jca: 2.5.29.17 => SubjectAlternativeName
jca: SUBJECTALTERNATIVENAME => SubjectAlternativeName
jca: 2.5.29.18 => IssuerAlternativeName
jca: ISSUERALTERNATIVENAME => IssuerAlternativeName
jca: 2.5.29.19 => BasicConstraints
jca: BASICCONSTRAINTS => BasicConstraints
jca: 2.5.29.20 => CRLNumber
jca: CRLNUMBER => CRLNumber
jca: 2.5.29.21 => ReasonCode
jca: REASONCODE => ReasonCode
jca: 2.5.29.23 => HoldInstructionCode
jca: HOLDINSTRUCTIONCODE => HoldInstructionCode
jca: 2.5.29.24 => InvalidityDate
jca: INVALIDITYDATE => InvalidityDate
jca: 2.5.29.27 => DeltaCRLIndicator
jca: DELTACRLINDICATOR => DeltaCRLIndicator
jca: 2.5.29.28 => IssuingDistributionPoint
jca: ISSUINGDISTRIBUTIONPOINT => IssuingDistributionPoint
jca: 2.5.29.29 => CertificateIssuer
jca: CERTIFICATEISSUER => CertificateIssuer
jca: 2.5.29.30 => NameConstraints
jca: NAMECONSTRAINTS => NameConstraints
jca: 2.5.29.31 => CRLDistributionPoints
jca: CRLDISTRIBUTIONPOINTS => CRLDistributionPoints
jca: 2.5.29.32 => CertificatePolicies
jca: CERTIFICATEPOLICIES => CertificatePolicies
jca: 2.5.29.32.0 => CE_CERT_POLICIES_ANY
jca: CE_CERT_POLICIES_ANY => CE_CERT_POLICIES_ANY
jca: 2.5.29.33 => PolicyMappings
jca: POLICYMAPPINGS => PolicyMappings
jca: 2.5.29.35 => AuthorityKeyID
jca: AUTHORITYKEYID => AuthorityKeyID
jca: 2.5.29.36 => PolicyConstraints
jca: POLICYCONSTRAINTS => PolicyConstraints
jca: 2.5.29.37 => extendedKeyUsage
jca: EXTENDEDKEYUSAGE => extendedKeyUsage
jca: 2.5.29.37.0 => anyExtendedKeyUsage
jca: ANYEXTENDEDKEYUSAGE => anyExtendedKeyUsage
jca: 2.5.29.46 => FreshestCRL
jca: FRESHESTCRL => FreshestCRL
jca: 2.5.29.54 => InhibitAnyPolicy
jca: INHIBITANYPOLICY => InhibitAnyPolicy
jca: 1.3.6.1.5.5.7.1.1 => AuthInfoAccess
jca: AUTHINFOACCESS => AuthInfoAccess
jca: 1.3.6.1.5.5.7.1.11 => SubjectInfoAccess
jca: SUBJECTINFOACCESS => SubjectInfoAccess
jca: 1.3.6.1.5.5.7.3.1 => serverAuth
jca: SERVERAUTH => serverAuth
jca: 1.3.6.1.5.5.7.3.2 => clientAuth
jca: CLIENTAUTH => clientAuth
jca: 1.3.6.1.5.5.7.3.3 => codeSigning
jca: CODESIGNING => codeSigning
jca: 1.3.6.1.5.5.7.3.4 => emailProtection
jca: EMAILPROTECTION => emailProtection
jca: 1.3.6.1.5.5.7.3.5 => ipsecEndSystem
jca: IPSECENDSYSTEM => ipsecEndSystem
jca: 1.3.6.1.5.5.7.3.6 => ipsecTunnel
jca: IPSECTUNNEL => ipsecTunnel
jca: 1.3.6.1.5.5.7.3.7 => ipsecUser
jca: IPSECUSER => ipsecUser
jca: 1.3.6.1.5.5.7.3.8 => KP_TimeStamping
jca: 1.3.6.1.5.5.7.3.9 => OCSPSigning
jca: OCSPSIGNING => OCSPSigning
jca: 1.3.6.1.5.5.7.48.1 => OCSP
jca: OCSP => OCSP
jca: 1.3.6.1.5.5.7.48.1.1 => OCSPBasicResponse
jca: OCSPBASICRESPONSE => OCSPBasicResponse
jca: 1.3.6.1.5.5.7.48.1.2 => OCSPNonceExt
jca: OCSPNONCEEXT => OCSPNonceExt
jca: 1.3.6.1.5.5.7.48.1.5 => OCSPNoCheck
jca: OCSPNOCHECK => OCSPNoCheck
jca: 1.3.6.1.5.5.7.48.2 => caIssuers
jca: CAISSUERS => caIssuers
jca: 1.3.6.1.5.5.7.48.3 => AD_TimeStamping
jca: 1.3.6.1.5.5.7.48.5 => caRepository
jca: CAREPOSITORY => caRepository
jca: 2.16.840.1.101.3.4.1 => AES
jca: AES => AES
jca: 2.16.840.1.101.3.4.1.1 => AES_128$ECB$NoPadding
jca: AES_128/ECB/NOPADDING => AES_128$ECB$NoPadding
jca: 2.16.840.1.101.3.4.1.2 => AES_128$CBC$NoPadding
jca: AES_128/CBC/NOPADDING => AES_128$CBC$NoPadding
jca: 2.16.840.1.101.3.4.1.3 => AES_128$OFB$NoPadding
jca: AES_128/OFB/NOPADDING => AES_128$OFB$NoPadding
jca: 2.16.840.1.101.3.4.1.4 => AES_128$CFB$NoPadding
jca: AES_128/CFB/NOPADDING => AES_128$CFB$NoPadding
jca: 2.16.840.1.101.3.4.1.5 => AES_128$KW$NoPadding
jca: AES_128/KW/NOPADDING => AES_128$KW$NoPadding
jca: AESWRAP_128 => AES_128$KW$NoPadding
jca: 2.16.840.1.101.3.4.1.6 => AES_128$GCM$NoPadding
jca: AES_128/GCM/NOPADDING => AES_128$GCM$NoPadding
jca: 2.16.840.1.101.3.4.1.8 => AES_128$KWP$NoPadding
jca: AES_128/KWP/NOPADDING => AES_128$KWP$NoPadding
jca: AESWRAPPAD_128 => AES_128$KWP$NoPadding
jca: 2.16.840.1.101.3.4.1.21 => AES_192$ECB$NoPadding
jca: AES_192/ECB/NOPADDING => AES_192$ECB$NoPadding
jca: 2.16.840.1.101.3.4.1.22 => AES_192$CBC$NoPadding
jca: AES_192/CBC/NOPADDING => AES_192$CBC$NoPadding
jca: 2.16.840.1.101.3.4.1.23 => AES_192$OFB$NoPadding
jca: AES_192/OFB/NOPADDING => AES_192$OFB$NoPadding
jca: 2.16.840.1.101.3.4.1.24 => AES_192$CFB$NoPadding
jca: AES_192/CFB/NOPADDING => AES_192$CFB$NoPadding
jca: 2.16.840.1.101.3.4.1.25 => AES_192$KW$NoPadding
jca: AES_192/KW/NOPADDING => AES_192$KW$NoPadding
jca: AESWRAP_192 => AES_192$KW$NoPadding
jca: 2.16.840.1.101.3.4.1.26 => AES_192$GCM$NoPadding
jca: AES_192/GCM/NOPADDING => AES_192$GCM$NoPadding
jca: 2.16.840.1.101.3.4.1.28 => AES_192$KWP$NoPadding
jca: AES_192/KWP/NOPADDING => AES_192$KWP$NoPadding
jca: AESWRAPPAD_192 => AES_192$KWP$NoPadding
jca: 2.16.840.1.101.3.4.1.41 => AES_256$ECB$NoPadding
jca: AES_256/ECB/NOPADDING => AES_256$ECB$NoPadding
jca: 2.16.840.1.101.3.4.1.42 => AES_256$CBC$NoPadding
jca: AES_256/CBC/NOPADDING => AES_256$CBC$NoPadding
jca: 2.16.840.1.101.3.4.1.43 => AES_256$OFB$NoPadding
jca: AES_256/OFB/NOPADDING => AES_256$OFB$NoPadding
jca: 2.16.840.1.101.3.4.1.44 => AES_256$CFB$NoPadding
jca: AES_256/CFB/NOPADDING => AES_256$CFB$NoPadding
jca: 2.16.840.1.101.3.4.1.45 => AES_256$KW$NoPadding
jca: AES_256/KW/NOPADDING => AES_256$KW$NoPadding
jca: AESWRAP_256 => AES_256$KW$NoPadding
jca: 2.16.840.1.101.3.4.1.46 => AES_256$GCM$NoPadding
jca: AES_256/GCM/NOPADDING => AES_256$GCM$NoPadding
jca: 2.16.840.1.101.3.4.1.48 => AES_256$KWP$NoPadding
jca: AES_256/KWP/NOPADDING => AES_256$KWP$NoPadding
jca: AESWRAPPAD_256 => AES_256$KWP$NoPadding
jca: 2.16.840.1.101.3.4.2.1 => SHA_256
jca: SHA-256 => SHA_256
jca: SHA256 => SHA_256
jca: 2.16.840.1.101.3.4.2.2 => SHA_384
jca: SHA-384 => SHA_384
jca: SHA384 => SHA_384
jca: 2.16.840.1.101.3.4.2.3 => SHA_512
jca: SHA-512 => SHA_512
jca: SHA512 => SHA_512
jca: 2.16.840.1.101.3.4.2.4 => SHA_224
jca: SHA-224 => SHA_224
jca: SHA224 => SHA_224
jca: 2.16.840.1.101.3.4.2.5 => SHA_512$224
jca: SHA-512/224 => SHA_512$224
jca: SHA512/224 => SHA_512$224
jca: 2.16.840.1.101.3.4.2.6 => SHA_512$256
jca: SHA-512/256 => SHA_512$256
jca: SHA512/256 => SHA_512$256
jca: 2.16.840.1.101.3.4.2.7 => SHA3_224
jca: SHA3-224 => SHA3_224
jca: 2.16.840.1.101.3.4.2.8 => SHA3_256
jca: SHA3-256 => SHA3_256
jca: 2.16.840.1.101.3.4.2.9 => SHA3_384
jca: SHA3-384 => SHA3_384
jca: 2.16.840.1.101.3.4.2.10 => SHA3_512
jca: SHA3-512 => SHA3_512
jca: 2.16.840.1.101.3.4.2.11 => SHAKE128
jca: SHAKE128 => SHAKE128
jca: 2.16.840.1.101.3.4.2.12 => SHAKE256
jca: SHAKE256 => SHAKE256
jca: 2.16.840.1.101.3.4.2.13 => HmacSHA3_224
jca: HMACSHA3-224 => HmacSHA3_224
jca: 2.16.840.1.101.3.4.2.14 => HmacSHA3_256
jca: HMACSHA3-256 => HmacSHA3_256
jca: 2.16.840.1.101.3.4.2.15 => HmacSHA3_384
jca: HMACSHA3-384 => HmacSHA3_384
jca: 2.16.840.1.101.3.4.2.16 => HmacSHA3_512
jca: HMACSHA3-512 => HmacSHA3_512
jca: 2.16.840.1.101.3.4.2.17 => SHAKE128_LEN
jca: SHAKE128-LEN => SHAKE128_LEN
jca: 2.16.840.1.101.3.4.2.18 => SHAKE256_LEN
jca: SHAKE256-LEN => SHAKE256_LEN
jca: 2.16.840.1.101.3.4.3.1 => SHA224withDSA
jca: SHA224WITHDSA => SHA224withDSA
jca: 2.16.840.1.101.3.4.3.2 => SHA256withDSA
jca: SHA256WITHDSA => SHA256withDSA
jca: 2.16.840.1.101.3.4.3.3 => SHA384withDSA
jca: SHA384WITHDSA => SHA384withDSA
jca: 2.16.840.1.101.3.4.3.4 => SHA512withDSA
jca: SHA512WITHDSA => SHA512withDSA
jca: 2.16.840.1.101.3.4.3.5 => SHA3_224withDSA
jca: SHA3-224WITHDSA => SHA3_224withDSA
jca: 2.16.840.1.101.3.4.3.6 => SHA3_256withDSA
jca: SHA3-256WITHDSA => SHA3_256withDSA
jca: 2.16.840.1.101.3.4.3.7 => SHA3_384withDSA
jca: SHA3-384WITHDSA => SHA3_384withDSA
jca: 2.16.840.1.101.3.4.3.8 => SHA3_512withDSA
jca: SHA3-512WITHDSA => SHA3_512withDSA
jca: 2.16.840.1.101.3.4.3.9 => SHA3_224withECDSA
jca: SHA3-224WITHECDSA => SHA3_224withECDSA
jca: 2.16.840.1.101.3.4.3.10 => SHA3_256withECDSA
jca: SHA3-256WITHECDSA => SHA3_256withECDSA
jca: 2.16.840.1.101.3.4.3.11 => SHA3_384withECDSA
jca: SHA3-384WITHECDSA => SHA3_384withECDSA
jca: 2.16.840.1.101.3.4.3.12 => SHA3_512withECDSA
jca: SHA3-512WITHECDSA => SHA3_512withECDSA
jca: 2.16.840.1.101.3.4.3.13 => SHA3_224withRSA
jca: SHA3-224WITHRSA => SHA3_224withRSA
jca: 2.16.840.1.101.3.4.3.14 => SHA3_256withRSA
jca: SHA3-256WITHRSA => SHA3_256withRSA
jca: 2.16.840.1.101.3.4.3.15 => SHA3_384withRSA
jca: SHA3-384WITHRSA => SHA3_384withRSA
jca: 2.16.840.1.101.3.4.3.16 => SHA3_512withRSA
jca: SHA3-512WITHRSA => SHA3_512withRSA
jca: 1.2.840.113549.1.1 => PKCS1
jca: 1.2.840.113549.1.1.1 => RSA
jca: RSA => RSA
jca: 1.2.840.113549.1.1.2 => MD2withRSA
jca: MD2WITHRSA => MD2withRSA
jca: 1.2.840.113549.1.1.4 => MD5withRSA
jca: MD5WITHRSA => MD5withRSA
jca: 1.2.840.113549.1.1.5 => SHA1withRSA
jca: SHA1WITHRSA => SHA1withRSA
jca: 1.2.840.113549.1.1.7 => OAEP
jca: OAEP => OAEP
jca: 1.2.840.113549.1.1.8 => MGF1
jca: MGF1 => MGF1
jca: 1.2.840.113549.1.1.9 => PSpecified
jca: PSPECIFIED => PSpecified
jca: 1.2.840.113549.1.1.10 => RSASSA_PSS
jca: RSASSA-PSS => RSASSA_PSS
jca: PSS => RSASSA_PSS
jca: 1.2.840.113549.1.1.11 => SHA256withRSA
jca: SHA256WITHRSA => SHA256withRSA
jca: 1.2.840.113549.1.1.12 => SHA384withRSA
jca: SHA384WITHRSA => SHA384withRSA
jca: 1.2.840.113549.1.1.13 => SHA512withRSA
jca: SHA512WITHRSA => SHA512withRSA
jca: 1.2.840.113549.1.1.14 => SHA224withRSA
jca: SHA224WITHRSA => SHA224withRSA
jca: 1.2.840.113549.1.1.15 => SHA512$224withRSA
jca: SHA512/224WITHRSA => SHA512$224withRSA
jca: 1.2.840.113549.1.1.16 => SHA512$256withRSA
jca: SHA512/256WITHRSA => SHA512$256withRSA
jca: 1.2.840.113549.1.3.1 => DiffieHellman
jca: DIFFIEHELLMAN => DiffieHellman
jca: DH => DiffieHellman
jca: 1.2.840.113549.1.5.3 => PBEWithMD5AndDES
jca: PBEWITHMD5ANDDES => PBEWithMD5AndDES
jca: 1.2.840.113549.1.5.6 => PBEWithMD5AndRC2
jca: PBEWITHMD5ANDRC2 => PBEWithMD5AndRC2
jca: 1.2.840.113549.1.5.10 => PBEWithSHA1AndDES
jca: PBEWITHSHA1ANDDES => PBEWithSHA1AndDES
jca: 1.2.840.113549.1.5.11 => PBEWithSHA1AndRC2
jca: PBEWITHSHA1ANDRC2 => PBEWithSHA1AndRC2
jca: 1.2.840.113549.1.5.12 => PBKDF2WithHmacSHA1
jca: PBKDF2WITHHMACSHA1 => PBKDF2WithHmacSHA1
jca: 1.2.840.113549.1.5.13 => PBES2
jca: PBES2 => PBES2
jca: 1.2.840.113549.1.7 => PKCS7
jca: PKCS7 => PKCS7
jca: 1.2.840.113549.1.7.1 => Data
jca: DATA => Data
jca: 1.2.840.113549.1.7.2 => SignedData
jca: SIGNEDDATA => SignedData
jca: 1.2.840.1113549.1.7.1 => JDK_OLD_Data
jca: JDK_OLD_DATA => JDK_OLD_Data
jca: 1.2.840.1113549.1.7.2 => JDK_OLD_SignedData
jca: JDK_OLD_SIGNEDDATA => JDK_OLD_SignedData
jca: 1.2.840.113549.1.7.3 => EnvelopedData
jca: ENVELOPEDDATA => EnvelopedData
jca: 1.2.840.113549.1.7.4 => SignedAndEnvelopedData
jca: SIGNEDANDENVELOPEDDATA => SignedAndEnvelopedData
jca: 1.2.840.113549.1.7.5 => DigestedData
jca: DIGESTEDDATA => DigestedData
jca: 1.2.840.113549.1.7.6 => EncryptedData
jca: ENCRYPTEDDATA => EncryptedData
jca: 1.2.840.113549.1.9.1 => EmailAddress
jca: EMAILADDRESS => EmailAddress
jca: 1.2.840.113549.1.9.2 => UnstructuredName
jca: UNSTRUCTUREDNAME => UnstructuredName
jca: 1.2.840.113549.1.9.3 => ContentType
jca: CONTENTTYPE => ContentType
jca: 1.2.840.113549.1.9.4 => MessageDigest
jca: MESSAGEDIGEST => MessageDigest
jca: 1.2.840.113549.1.9.5 => SigningTime
jca: SIGNINGTIME => SigningTime
jca: 1.2.840.113549.1.9.6 => CounterSignature
jca: COUNTERSIGNATURE => CounterSignature
jca: 1.2.840.113549.1.9.7 => ChallengePassword
jca: CHALLENGEPASSWORD => ChallengePassword
jca: 1.2.840.113549.1.9.8 => UnstructuredAddress
jca: UNSTRUCTUREDADDRESS => UnstructuredAddress
jca: 1.2.840.113549.1.9.9 => ExtendedCertificateAttributes
jca: EXTENDEDCERTIFICATEATTRIBUTES => ExtendedCertificateAttributes
jca: 1.2.840.113549.1.9.10 => IssuerAndSerialNumber
jca: ISSUERANDSERIALNUMBER => IssuerAndSerialNumber
jca: 1.2.840.113549.1.9.14 => ExtensionRequest
jca: EXTENSIONREQUEST => ExtensionRequest
jca: 1.2.840.113549.1.9.15 => SMIMECapability
jca: SMIMECAPABILITY => SMIMECapability
jca: 1.2.840.113549.1.9.16.1.4 => TimeStampTokenInfo
jca: TIMESTAMPTOKENINFO => TimeStampTokenInfo
jca: 1.2.840.113549.1.9.16.2.12 => SigningCertificate
jca: SIGNINGCERTIFICATE => SigningCertificate
jca: 1.2.840.113549.1.9.16.2.14 => SignatureTimestampToken
jca: SIGNATURETIMESTAMPTOKEN => SignatureTimestampToken
jca: 1.2.840.113549.1.9.16.3.18 => CHACHA20_POLY1305
jca: CHACHA20-POLY1305 => CHACHA20_POLY1305
jca: 1.2.840.113549.1.9.20 => FriendlyName
jca: FRIENDLYNAME => FriendlyName
jca: 1.2.840.113549.1.9.21 => LocalKeyID
jca: LOCALKEYID => LocalKeyID
jca: 1.2.840.113549.1.9.22.1 => CertTypeX509
jca: CERTTYPEX509 => CertTypeX509
jca: 1.2.840.113549.1.9.52 => CMSAlgorithmProtection
jca: CMSALGORITHMPROTECTION => CMSAlgorithmProtection
jca: 1.2.840.113549.1.12.1.1 => PBEWithSHA1AndRC4_128
jca: PBEWITHSHA1ANDRC4_128 => PBEWithSHA1AndRC4_128
jca: 1.2.840.113549.1.12.1.2 => PBEWithSHA1AndRC4_40
jca: PBEWITHSHA1ANDRC4_40 => PBEWithSHA1AndRC4_40
jca: 1.2.840.113549.1.12.1.3 => PBEWithSHA1AndDESede
jca: PBEWITHSHA1ANDDESEDE => PBEWithSHA1AndDESede
jca: 1.2.840.113549.1.12.1.5 => PBEWithSHA1AndRC2_128
jca: PBEWITHSHA1ANDRC2_128 => PBEWithSHA1AndRC2_128
jca: 1.2.840.113549.1.12.1.6 => PBEWithSHA1AndRC2_40
jca: PBEWITHSHA1ANDRC2_40 => PBEWithSHA1AndRC2_40
jca: 1.2.840.113549.1.12.10.1.2 => PKCS8ShroudedKeyBag
jca: PKCS8SHROUDEDKEYBAG => PKCS8ShroudedKeyBag
jca: 1.2.840.113549.1.12.10.1.3 => CertBag
jca: CERTBAG => CertBag
jca: 1.2.840.113549.1.12.10.1.5 => SecretBag
jca: SECRETBAG => SecretBag
jca: 1.2.840.113549.2.2 => MD2
jca: MD2 => MD2
jca: 1.2.840.113549.2.5 => MD5
jca: MD5 => MD5
jca: 1.2.840.113549.2.7 => HmacSHA1
jca: HMACSHA1 => HmacSHA1
jca: 1.2.840.113549.2.8 => HmacSHA224
jca: HMACSHA224 => HmacSHA224
jca: 1.2.840.113549.2.9 => HmacSHA256
jca: HMACSHA256 => HmacSHA256
jca: 1.2.840.113549.2.10 => HmacSHA384
jca: HMACSHA384 => HmacSHA384
jca: 1.2.840.113549.2.11 => HmacSHA512
jca: HMACSHA512 => HmacSHA512
jca: 1.2.840.113549.2.12 => HmacSHA512$224
jca: HMACSHA512/224 => HmacSHA512$224
jca: 1.2.840.113549.2.13 => HmacSHA512$256
jca: HMACSHA512/256 => HmacSHA512$256
jca: 1.2.840.113549.3.2 => RC2$CBC$PKCS5Padding
jca: RC2/CBC/PKCS5PADDING => RC2$CBC$PKCS5Padding
jca: 1.2.840.113549.3.4 => ARCFOUR
jca: ARCFOUR => ARCFOUR
jca: RC4 => ARCFOUR
jca: 1.2.840.113549.3.7 => DESede$CBC$NoPadding
jca: DESEDE/CBC/NOPADDING => DESede$CBC$NoPadding
jca: 1.2.840.113549.3.9 => RC5$CBC$PKCS5Padding
jca: RC5/CBC/PKCS5PADDING => RC5$CBC$PKCS5Padding
jca: 1.2.840.10040.4.1 => DSA
jca: DSA => DSA
jca: 1.2.840.10040.4.3 => SHA1withDSA
jca: SHA1WITHDSA => SHA1withDSA
jca: DSS => SHA1withDSA
jca: 1.2.840.10045.2.1 => EC
jca: EC => EC
jca: 1.2.840.10045.3.0.5 => c2tnb191v1
jca: X9.62 C2TNB191V1 => c2tnb191v1
jca: 1.2.840.10045.3.0.6 => c2tnb191v2
jca: X9.62 C2TNB191V2 => c2tnb191v2
jca: 1.2.840.10045.3.0.7 => c2tnb191v3
jca: X9.62 C2TNB191V3 => c2tnb191v3
jca: 1.2.840.10045.3.0.11 => c2tnb239v1
jca: X9.62 C2TNB239V1 => c2tnb239v1
jca: 1.2.840.10045.3.0.12 => c2tnb239v2
jca: X9.62 C2TNB239V2 => c2tnb239v2
jca: 1.2.840.10045.3.0.13 => c2tnb239v3
jca: X9.62 C2TNB239V3 => c2tnb239v3
jca: 1.2.840.10045.3.0.18 => c2tnb359v1
jca: X9.62 C2TNB359V1 => c2tnb359v1
jca: 1.2.840.10045.3.0.20 => c2tnb431r1
jca: X9.62 C2TNB431R1 => c2tnb431r1
jca: 1.2.840.10045.3.1.1 => secp192r1
jca: SECP192R1 => secp192r1
jca: NIST P-192 => secp192r1
jca: X9.62 PRIME192V1 => secp192r1
jca: 1.2.840.10045.3.1.2 => prime192v2
jca: X9.62 PRIME192V2 => prime192v2
jca: 1.2.840.10045.3.1.3 => prime192v3
jca: X9.62 PRIME192V3 => prime192v3
jca: 1.2.840.10045.3.1.4 => prime239v1
jca: X9.62 PRIME239V1 => prime239v1
jca: 1.2.840.10045.3.1.5 => prime239v2
jca: X9.62 PRIME239V2 => prime239v2
jca: 1.2.840.10045.3.1.6 => prime239v3
jca: X9.62 PRIME239V3 => prime239v3
jca: 1.2.840.10045.3.1.7 => secp256r1
jca: SECP256R1 => secp256r1
jca: NIST P-256 => secp256r1
jca: X9.62 PRIME256V1 => secp256r1
jca: 1.2.840.10045.4.1 => SHA1withECDSA
jca: SHA1WITHECDSA => SHA1withECDSA
jca: 1.2.840.10045.4.3.1 => SHA224withECDSA
jca: SHA224WITHECDSA => SHA224withECDSA
jca: 1.2.840.10045.4.3.2 => SHA256withECDSA
jca: SHA256WITHECDSA => SHA256withECDSA
jca: 1.2.840.10045.4.3.3 => SHA384withECDSA
jca: SHA384WITHECDSA => SHA384withECDSA
jca: 1.2.840.10045.4.3.4 => SHA512withECDSA
jca: SHA512WITHECDSA => SHA512withECDSA
jca: 1.2.840.10045.4.3 => SpecifiedSHA2withECDSA
jca: SPECIFIEDSHA2WITHECDSA => SpecifiedSHA2withECDSA
jca: 1.2.840.10046.2.1 => X942_DH
jca: 1.3.36.3.3.2.8.1.1.1 => brainpoolP160r1
jca: BRAINPOOLP160R1 => brainpoolP160r1
jca: 1.3.36.3.3.2.8.1.1.3 => brainpoolP192r1
jca: BRAINPOOLP192R1 => brainpoolP192r1
jca: 1.3.36.3.3.2.8.1.1.5 => brainpoolP224r1
jca: BRAINPOOLP224R1 => brainpoolP224r1
jca: 1.3.36.3.3.2.8.1.1.7 => brainpoolP256r1
jca: BRAINPOOLP256R1 => brainpoolP256r1
jca: 1.3.36.3.3.2.8.1.1.9 => brainpoolP320r1
jca: BRAINPOOLP320R1 => brainpoolP320r1
jca: 1.3.36.3.3.2.8.1.1.11 => brainpoolP384r1
jca: BRAINPOOLP384R1 => brainpoolP384r1
jca: 1.3.36.3.3.2.8.1.1.13 => brainpoolP512r1
jca: BRAINPOOLP512R1 => brainpoolP512r1
jca: 1.3.132.0.1 => sect163k1
jca: SECT163K1 => sect163k1
jca: NIST K-163 => sect163k1
jca: 1.3.132.0.2 => sect163r1
jca: SECT163R1 => sect163r1
jca: 1.3.132.0.3 => sect239k1
jca: SECT239K1 => sect239k1
jca: 1.3.132.0.4 => sect113r1
jca: SECT113R1 => sect113r1
jca: 1.3.132.0.5 => sect113r2
jca: SECT113R2 => sect113r2
jca: 1.3.132.0.6 => secp112r1
jca: SECP112R1 => secp112r1
jca: 1.3.132.0.7 => secp112r2
jca: SECP112R2 => secp112r2
jca: 1.3.132.0.8 => secp160r1
jca: SECP160R1 => secp160r1
jca: 1.3.132.0.9 => secp160k1
jca: SECP160K1 => secp160k1
jca: 1.3.132.0.10 => secp256k1
jca: SECP256K1 => secp256k1
jca: 1.3.132.0.15 => sect163r2
jca: SECT163R2 => sect163r2
jca: NIST B-163 => sect163r2
jca: 1.3.132.0.16 => sect283k1
jca: SECT283K1 => sect283k1
jca: NIST K-283 => sect283k1
jca: 1.3.132.0.17 => sect283r1
jca: SECT283R1 => sect283r1
jca: NIST B-283 => sect283r1
jca: 1.3.132.0.22 => sect131r1
jca: SECT131R1 => sect131r1
jca: 1.3.132.0.23 => sect131r2
jca: SECT131R2 => sect131r2
jca: 1.3.132.0.24 => sect193r1
jca: SECT193R1 => sect193r1
jca: 1.3.132.0.25 => sect193r2
jca: SECT193R2 => sect193r2
jca: 1.3.132.0.26 => sect233k1
jca: SECT233K1 => sect233k1
jca: NIST K-233 => sect233k1
jca: 1.3.132.0.27 => sect233r1
jca: SECT233R1 => sect233r1
jca: NIST B-233 => sect233r1
jca: 1.3.132.0.28 => secp128r1
jca: SECP128R1 => secp128r1
jca: 1.3.132.0.29 => secp128r2
jca: SECP128R2 => secp128r2
jca: 1.3.132.0.30 => secp160r2
jca: SECP160R2 => secp160r2
jca: 1.3.132.0.31 => secp192k1
jca: SECP192K1 => secp192k1
jca: 1.3.132.0.32 => secp224k1
jca: SECP224K1 => secp224k1
jca: 1.3.132.0.33 => secp224r1
jca: SECP224R1 => secp224r1
jca: NIST P-224 => secp224r1
jca: 1.3.132.0.34 => secp384r1
jca: SECP384R1 => secp384r1
jca: NIST P-384 => secp384r1
jca: 1.3.132.0.35 => secp521r1
jca: SECP521R1 => secp521r1
jca: NIST P-521 => secp521r1
jca: 1.3.132.0.36 => sect409k1
jca: SECT409K1 => sect409k1
jca: NIST K-409 => sect409k1
jca: 1.3.132.0.37 => sect409r1
jca: SECT409R1 => sect409r1
jca: NIST B-409 => sect409r1
jca: 1.3.132.0.38 => sect571k1
jca: SECT571K1 => sect571k1
jca: NIST K-571 => sect571k1
jca: 1.3.132.0.39 => sect571r1
jca: SECT571R1 => sect571r1
jca: NIST B-571 => sect571r1
jca: 1.3.132.1.12 => ECDH
jca: ECDH => ECDH
jca: 1.3.14.3.2.7 => OIW_DES_CBC
jca: DES/CBC => OIW_DES_CBC
jca: DES => OIW_DES_CBC
jca: 1.3.14.3.2.12 => OIW_DSA
jca: 1.3.14.3.2.13 => OIW_JDK_SHA1withDSA
jca: 1.3.14.3.2.15 => OIW_SHA1withRSA_Odd
jca: 1.3.14.3.2.17 => DESede
jca: DESEDE => DESede
jca: 1.3.14.3.2.26 => SHA_1
jca: SHA-1 => SHA_1
jca: SHA => SHA_1
jca: SHA1 => SHA_1
jca: 1.3.14.3.2.27 => OIW_SHA1withDSA
jca: 1.3.14.3.2.29 => OIW_SHA1withRSA
jca: 1.3.101.110 => X25519
jca: X25519 => X25519
jca: 1.3.101.111 => X448
jca: X448 => X448
jca: 1.3.101.112 => Ed25519
jca: ED25519 => Ed25519
jca: 1.3.101.113 => Ed448
jca: ED448 => Ed448
jca: 0.9.2342.19200300.100.1.1 => UCL_UserID
jca: UCL_USERID => UCL_UserID
jca: 0.9.2342.19200300.100.1.25 => UCL_DomainComponent
jca: UCL_DOMAINCOMPONENT => UCL_DomainComponent
jca: 2.16.840.1.113730.1.1 => NETSCAPE_CertType
jca: NETSCAPE_CERTTYPE => NETSCAPE_CertType
jca: 2.16.840.1.113730.2.5 => NETSCAPE_CertSequence
jca: NETSCAPE_CERTSEQUENCE => NETSCAPE_CertSequence
jca: 2.16.840.1.113730.4.1 => NETSCAPE_ExportApproved
jca: NETSCAPE_EXPORTAPPROVED => NETSCAPE_ExportApproved
jca: 2.16.840.1.113894.746875.1.1 => ORACLE_TrustedKeyUsage
jca: ORACLE_TRUSTEDKEYUSAGE => ORACLE_TrustedKeyUsage
jca: 2.5.8.1.1 => ITUX509_RSA
jca: 1.3.6.1.4.1.42.2.11.2.1 => SkipIPAddress
jca: SKIPIPADDRESS => SkipIPAddress
jca: 1.3.6.1.4.1.42.2.17.1.1 => JAVASOFT_JDKKeyProtector
jca: JAVASOFT_JDKKEYPROTECTOR => JAVASOFT_JDKKeyProtector
jca: 1.3.6.1.4.1.42.2.19.1 => JAVASOFT_JCEKeyProtector
jca: JAVASOFT_JCEKEYPROTECTOR => JAVASOFT_JCEKeyProtector
jca: 1.3.6.1.4.1.311.10.3.3 => MICROSOFT_ExportApproved
jca: MICROSOFT_EXPORTAPPROVED => MICROSOFT_ExportApproved
ProviderList: ThreadLocal providers: [SUN, SunRsaSign, SunEC]
ProviderList: Disabling ThreadLocal providers
Error occurred during initialization of VM
java.util.ServiceConfigurationError: Locale provider adapter "CLDR"cannot be instantiated.
	at sun.util.locale.provider.LocaleProviderAdapter.forType(java.base@19-internal/LocaleProviderAdapter.java:199)
	at sun.util.locale.provider.LocaleServiceProviderPool.findProviders(java.base@19-internal/LocaleServiceProviderPool.java:302)
	at sun.util.locale.provider.LocaleServiceProviderPool.getLocalizedObjectImpl(java.base@19-internal/LocaleServiceProviderPool.java:274)
	at sun.util.locale.provider.LocaleServiceProviderPool.getLocalizedObject(java.base@19-internal/LocaleServiceProviderPool.java:256)
	at sun.util.locale.provider.CalendarDataUtility.retrieveFirstDayOfWeek(java.base@19-internal/CalendarDataUtility.java:76)
	at java.util.Calendar.setWeekCountData(java.base@19-internal/Calendar.java:3398)
	at java.util.Calendar.<init>(java.base@19-internal/Calendar.java:1607)
	at java.util.GregorianCalendar.<init>(java.base@19-internal/GregorianCalendar.java:738)
	at java.util.Calendar$Builder.build(java.base@19-internal/Calendar.java:1492)
	at sun.security.util.DisabledAlgorithmConstraints$DenyAfterConstraint.<init>(java.base@19-internal/DisabledAlgorithmConstraints.java:702)
	at sun.security.util.DisabledAlgorithmConstraints$Constraints.<init>(java.base@19-internal/DisabledAlgorithmConstraints.java:414)
	at sun.security.util.DisabledAlgorithmConstraints.<init>(java.base@19-internal/DisabledAlgorithmConstraints.java:144)
	at sun.security.util.DisabledAlgorithmConstraints.<init>(java.base@19-internal/DisabledAlgorithmConstraints.java:118)
	at sun.security.util.DisabledAlgorithmConstraints$JarHolder.<clinit>(java.base@19-internal/DisabledAlgorithmConstraints.java:96)
	at sun.security.util.DisabledAlgorithmConstraints.jarConstraints(java.base@19-internal/DisabledAlgorithmConstraints.java:108)
	at sun.security.pkcs.SignerInfo.<clinit>(java.base@19-internal/SignerInfo.java:61)
	at sun.security.pkcs.PKCS7.parseSignedData(java.base@19-internal/PKCS7.java:390)
	at sun.security.pkcs.PKCS7.parse(java.base@19-internal/PKCS7.java:174)
	at sun.security.pkcs.PKCS7.parse(java.base@19-internal/PKCS7.java:142)
	at sun.security.pkcs.PKCS7.<init>(java.base@19-internal/PKCS7.java:124)
	at sun.security.util.SignatureFileVerifier.<init>(java.base@19-internal/SignatureFileVerifier.java:118)
	at java.util.jar.JarVerifier.processEntry(java.base@19-internal/JarVerifier.java:308)
	at java.util.jar.JarVerifier.update(java.base@19-internal/JarVerifier.java:239)
	at java.util.jar.JarFile.initializeVerifier(java.base@19-internal/JarFile.java:762)
	at java.util.jar.JarFile.ensureInitialization(java.base@19-internal/JarFile.java:1033)
	at java.util.jar.JavaUtilJarAccessImpl.ensureInitialization(java.base@19-internal/JavaUtilJarAccessImpl.java:72)
	at jdk.internal.loader.URLClassPath$JarLoader$2.getManifest(java.base@19-internal/URLClassPath.java:888)
	at jdk.internal.loader.BuiltinClassLoader.defineClass(java.base@19-internal/BuiltinClassLoader.java:848)
	at jdk.internal.loader.BuiltinClassLoader.findClassOnClassPathOrNull(java.base@19-internal/BuiltinClassLoader.java:760)
	at jdk.internal.loader.BuiltinClassLoader.loadClassOrNull(java.base@19-internal/BuiltinClassLoader.java:681)
	at jdk.internal.loader.BuiltinClassLoader.loadClass(java.base@19-internal/BuiltinClassLoader.java:639)
	at jdk.internal.loader.ClassLoaders$AppClassLoader.loadClass(java.base@19-internal/ClassLoaders.java:188)
	at java.lang.ClassLoader.loadClass(java.base@19-internal/ClassLoader.java:521)
	at java.lang.Class.forName0(java.base@19-internal/Native Method)
	at java.lang.Class.forName(java.base@19-internal/Class.java:488)
	at java.lang.Class.forName(java.base@19-internal/Class.java:467)
	at java.lang.ClassLoader.initSystemClassLoader(java.base@19-internal/ClassLoader.java:1986)
	at java.lang.System.initPhase3(java.base@19-internal/System.java:2285)
Caused by: java.lang.reflect.InvocationTargetException
	at jdk.internal.reflect.DirectConstructorHandleAccessor.newInstance(java.base@19-internal/DirectConstructorHandleAccessor.java:79)
	at java.lang.reflect.Constructor.newInstanceWithCaller(java.base@19-internal/Constructor.java:499)
	at java.lang.reflect.Constructor.newInstance(java.base@19-internal/Constructor.java:483)
	at sun.util.locale.provider.LocaleProviderAdapter.forType(java.base@19-internal/LocaleProviderAdapter.java:188)
	at sun.util.locale.provider.LocaleServiceProviderPool.findProviders(java.base@19-internal/LocaleServiceProviderPool.java:302)
	at sun.util.locale.provider.LocaleServiceProviderPool.getLocalizedObjectImpl(java.base@19-internal/LocaleServiceProviderPool.java:274)
	at sun.util.locale.provider.LocaleServiceProviderPool.getLocalizedObject(java.base@19-internal/LocaleServiceProviderPool.java:256)
	at sun.util.locale.provider.CalendarDataUtility.retrieveFirstDayOfWeek(java.base@19-internal/CalendarDataUtility.java:76)
	at java.util.Calendar.setWeekCountData(java.base@19-internal/Calendar.java:3398)
	at java.util.Calendar.<init>(java.base@19-internal/Calendar.java:1607)
	at java.util.GregorianCalendar.<init>(java.base@19-internal/GregorianCalendar.java:738)
	at java.util.Calendar$Builder.build(java.base@19-internal/Calendar.java:1492)
	at sun.security.util.DisabledAlgorithmConstraints$DenyAfterConstraint.<init>(java.base@19-internal/DisabledAlgorithmConstraints.java:702)
	at sun.security.util.DisabledAlgorithmConstraints$Constraints.<init>(java.base@19-internal/DisabledAlgorithmConstraints.java:414)
	at sun.security.util.DisabledAlgorithmConstraints.<init>(java.base@19-internal/DisabledAlgorithmConstraints.java:144)
	at sun.security.util.DisabledAlgorithmConstraints.<init>(java.base@19-internal/DisabledAlgorithmConstraints.java:118)
	at sun.security.util.DisabledAlgorithmConstraints$JarHolder.<clinit>(java.base@19-internal/DisabledAlgorithmConstraints.java:96)
	at sun.security.util.DisabledAlgorithmConstraints.jarConstraints(java.base@19-internal/DisabledAlgorithmConstraints.java:108)
	at sun.security.pkcs.SignerInfo.<clinit>(java.base@19-internal/SignerInfo.java:61)
	at sun.security.pkcs.PKCS7.parseSignedData(java.base@19-internal/PKCS7.java:390)
	at sun.security.pkcs.PKCS7.parse(java.base@19-internal/PKCS7.java:174)
	at sun.security.pkcs.PKCS7.parse(java.base@19-internal/PKCS7.java:142)
	at sun.security.pkcs.PKCS7.<init>(java.base@19-internal/PKCS7.java:124)
	at sun.security.util.SignatureFileVerifier.<init>(java.base@19-internal/SignatureFileVerifier.java:118)
	at java.util.jar.JarVerifier.processEntry(java.base@19-internal/JarVerifier.java:308)
	at java.util.jar.JarVerifier.update(java.base@19-internal/JarVerifier.java:239)
	at java.util.jar.JarFile.initializeVerifier(java.base@19-internal/JarFile.java:762)
	at java.util.jar.JarFile.ensureInitialization(java.base@19-internal/JarFile.java:1033)
	at java.util.jar.JavaUtilJarAccessImpl.ensureInitialization(java.base@19-internal/JavaUtilJarAccessImpl.java:72)
	at jdk.internal.loader.URLClassPath$JarLoader$2.getManifest(java.base@19-internal/URLClassPath.java:888)
	at jdk.internal.loader.BuiltinClassLoader.defineClass(java.base@19-internal/BuiltinClassLoader.java:848)
	at jdk.internal.loader.BuiltinClassLoader.findClassOnClassPathOrNull(java.base@19-internal/BuiltinClassLoader.java:760)
	at jdk.internal.loader.BuiltinClassLoader.loadClassOrNull(java.base@19-internal/BuiltinClassLoader.java:681)
	at jdk.internal.loader.BuiltinClassLoader.loadClass(java.base@19-internal/BuiltinClassLoader.java:639)
	at jdk.internal.loader.ClassLoaders$AppClassLoader.loadClass(java.base@19-internal/ClassLoaders.java:188)
	at java.lang.ClassLoader.loadClass(java.base@19-internal/ClassLoader.java:521)
	at java.lang.Class.forName0(java.base@19-internal/Native Method)
	at java.lang.Class.forName(java.base@19-internal/Class.java:488)
	at java.lang.Class.forName(java.base@19-internal/Class.java:467)
	at java.lang.ClassLoader.initSystemClassLoader(java.base@19-internal/ClassLoader.java:1986)
	at java.lang.System.initPhase3(java.base@19-internal/System.java:2285)
Caused by: java.lang.IllegalStateException: getSystemClassLoader cannot be called during the system class loader instantiation
	at java.lang.ClassLoader.getSystemClassLoader(java.base@19-internal/ClassLoader.java:1941)
	at java.lang.ClassLoader.getSystemResources(java.base@19-internal/ClassLoader.java:1707)
	at java.util.ServiceLoader$LazyClassPathLookupIterator.nextProviderClass(java.base@19-internal/ServiceLoader.java:1193)
	at java.util.ServiceLoader$LazyClassPathLookupIterator.hasNextService(java.base@19-internal/ServiceLoader.java:1228)
	at java.util.ServiceLoader$LazyClassPathLookupIterator.hasNext(java.base@19-internal/ServiceLoader.java:1273)
	at java.util.ServiceLoader$2.hasNext(java.base@19-internal/ServiceLoader.java:1309)
	at java.util.ServiceLoader$3.hasNext(java.base@19-internal/ServiceLoader.java:1393)
	at sun.util.cldr.CLDRLocaleProviderAdapter.lambda$new$0(java.base@19-internal/CLDRLocaleProviderAdapter.java:86)
	at java.security.AccessController.doPrivileged(java.base@19-internal/AccessController.java:569)
	at sun.util.cldr.CLDRLocaleProviderAdapter.<init>(java.base@19-internal/CLDRLocaleProviderAdapter.java:85)
	at jdk.internal.reflect.DirectConstructorHandleAccessor.newInstance(java.base@19-internal/DirectConstructorHandleAccessor.java:67)
	at java.lang.reflect.Constructor.newInstanceWithCaller(java.base@19-internal/Constructor.java:499)
	at java.lang.reflect.Constructor.newInstance(java.base@19-internal/Constructor.java:483)
	at sun.util.locale.provider.LocaleProviderAdapter.forType(java.base@19-internal/LocaleProviderAdapter.java:188)
	at sun.util.locale.provider.LocaleServiceProviderPool.findProviders(java.base@19-internal/LocaleServiceProviderPool.java:302)
	at sun.util.locale.provider.LocaleServiceProviderPool.getLocalizedObjectImpl(java.base@19-internal/LocaleServiceProviderPool.java:274)
	at sun.util.locale.provider.LocaleServiceProviderPool.getLocalizedObject(java.base@19-internal/LocaleServiceProviderPool.java:256)
	at sun.util.locale.provider.CalendarDataUtility.retrieveFirstDayOfWeek(java.base@19-internal/CalendarDataUtility.java:76)
	at java.util.Calendar.setWeekCountData(java.base@19-internal/Calendar.java:3398)
	at java.util.Calendar.<init>(java.base@19-internal/Calendar.java:1607)
	at java.util.GregorianCalendar.<init>(java.base@19-internal/GregorianCalendar.java:738)
	at java.util.Calendar$Builder.build(java.base@19-internal/Calendar.java:1492)
	at sun.security.util.DisabledAlgorithmConstraints$DenyAfterConstraint.<init>(java.base@19-internal/DisabledAlgorithmConstraints.java:702)
	at sun.security.util.DisabledAlgorithmConstraints$Constraints.<init>(java.base@19-internal/DisabledAlgorithmConstraints.java:414)
	at sun.security.util.DisabledAlgorithmConstraints.<init>(java.base@19-internal/DisabledAlgorithmConstraints.java:144)
	at sun.security.util.DisabledAlgorithmConstraints.<init>(java.base@19-internal/DisabledAlgorithmConstraints.java:118)
	at sun.security.util.DisabledAlgorithmConstraints$JarHolder.<clinit>(java.base@19-internal/DisabledAlgorithmConstraints.java:96)
	at sun.security.util.DisabledAlgorithmConstraints.jarConstraints(java.base@19-internal/DisabledAlgorithmConstraints.java:108)
	at sun.security.pkcs.SignerInfo.<clinit>(java.base@19-internal/SignerInfo.java:61)
	at sun.security.pkcs.PKCS7.parseSignedData(java.base@19-internal/PKCS7.java:390)
	at sun.security.pkcs.PKCS7.parse(java.base@19-internal/PKCS7.java:174)
	at sun.security.pkcs.PKCS7.parse(java.base@19-internal/PKCS7.java:142)
	at sun.security.pkcs.PKCS7.<init>(java.base@19-internal/PKCS7.java:124)
	at sun.security.util.SignatureFileVerifier.<init>(java.base@19-internal/SignatureFileVerifier.java:118)
	at java.util.jar.JarVerifier.processEntry(java.base@19-internal/JarVerifier.java:308)
	at java.util.jar.JarVerifier.update(java.base@19-internal/JarVerifier.java:239)
	at java.util.jar.JarFile.initializeVerifier(java.base@19-internal/JarFile.java:762)
	at java.util.jar.JarFile.ensureInitialization(java.base@19-internal/JarFile.java:1033)
	at java.util.jar.JavaUtilJarAccessImpl.ensureInitialization(java.base@19-internal/JavaUtilJarAccessImpl.java:72)
	at jdk.internal.loader.URLClassPath$JarLoader$2.getManifest(java.base@19-internal/URLClassPath.java:888)
	at jdk.internal.loader.BuiltinClassLoader.defineClass(java.base@19-internal/BuiltinClassLoader.java:848)
	at jdk.internal.loader.BuiltinClassLoader.findClassOnClassPathOrNull(java.base@19-internal/BuiltinClassLoader.java:760)
	at jdk.internal.loader.BuiltinClassLoader.loadClassOrNull(java.base@19-internal/BuiltinClassLoader.java:681)
	at jdk.internal.loader.BuiltinClassLoader.loadClass(java.base@19-internal/BuiltinClassLoader.java:639)
	at jdk.internal.loader.ClassLoaders$AppClassLoader.loadClass(java.base@19-internal/ClassLoaders.java:188)
	at java.lang.ClassLoader.loadClass(java.base@19-internal/ClassLoader.java:521)
	at java.lang.Class.forName0(java.base@19-internal/Native Method)
	at java.lang.Class.forName(java.base@19-internal/Class.java:488)
	at java.lang.Class.forName(java.base@19-internal/Class.java:467)
	at java.lang.ClassLoader.initSystemClassLoader(java.base@19-internal/ClassLoader.java:1986)
	at java.lang.System.initPhase3(java.base@19-internal/System.java:2285)

Comments

A pull request was submitted for review. URL: https://git.openjdk.org/jdk17u-dev/pull/947 Date: 2022-12-03 22:42:54 +0000
23-12-2022
Fix Request (critical, OpenJDK 8u): I propose to fix this regression introduced in OpenJDK 8u362 (jdk8u tree) with the backport of JDK-8269039 ASAP, i.e. 8u362 not 8u372. This should be low-risk as it merely removes use of java.util.Calendar API usage in DisabledAlgorithmConstraints which can cause issues with applications that contain CalendarDataProvider's in signed jars. See JDK-8297684 and JDK-8298108 for details. I'll follow up with a backport of JDK-8298108 (different reg test) in jdk8u-dev. Patch wasn't clean. Reviewed by Andrew Hughes. The test fails prior the product fix and passes after.
23-12-2022
A pull request was submitted for review. URL: https://git.openjdk.org/jdk8u/pull/29 Date: 2022-12-22 15:43:20 +0000
22-12-2022
Fix Request (critical, OpenJDK 11u): I propose to fix this regression introduced in OpenJDK 11.0.17 with the backport of JDK-8269039 ASAP, i.e. 11.0.18 not 11.0.19. This should be low-risk as it merely removes use of java.util.Calendar API usage in DisabledAlgorithmConstraints which can cause issues with applications that contain CalendarDataProvider's in signed jars. See JDK-8297684 and JDK-8298108 for details. I'll follow up with a backport of JDK-8298108 (different reg test) in jdk11u-dev. Patch wasn't clean, but the only difference to the JDK 19 patch is a copyright header change in product code and some test-fix-ups so that it works with JDK 11. Patch got reviewed by Christoph Langer. The test fails prior the product fix and passes after.
22-12-2022
Fix Request (critical, OpenJDK 17u): I propose to fix this regression introduced in OpenJDK 17.0.5 with the backport of JDK-8269039 ASAP, i.e. 17.0.6 not 17.0.7. This should be low-risk as it merely removes use of java.util.Calendar API usage in DisabledAlgorithmConstraints which can cause issues with applications that contain CalendarDataProvider's in signed jars. See JDK-8297684 and JDK-8298108 for details. I'll follow up with a backport of JDK-8298108 (different reg test) in 17.0.7-dev. Patch wasn't clean, but the only difference to the JDK 19 patch is a copyright header change. Patch got reviewed by Christoph Langer. The test fails prior the product fix and passes after.
22-12-2022
A pull request was submitted for review. URL: https://git.openjdk.org/jdk11u/pull/65 Date: 2022-12-22 10:58:34 +0000
22-12-2022
A pull request was submitted for review. URL: https://git.openjdk.org/jdk17u/pull/363 Date: 2022-12-22 09:50:33 +0000
22-12-2022
Changeset: a0f6f240 Author: Sean Mullan <mullan@openjdk.org> Date: 2022-02-07 14:06:08 +0000 URL: https://git.openjdk.java.net/jdk/commit/a0f6f2409ea61ff9ed9dc2e2b46e309c751d456d
07-02-2022
A pull request was submitted for review. URL: https://git.openjdk.java.net/jdk/pull/7316 Date: 2022-02-01 21:54:29 +0000
01-02-2022