Bug ID: JDK-8301260 Add system property to toggle XML Signature secure validation mode

Type: Enhancement
Component: security-libs
Sub-Component: javax.xml.crypto

Priority: P3
Status: Resolved
Resolution: Fixed

Submitted: 2023-01-27
Updated: 2023-09-13
Resolved: 2023-02-09

Versions (Unresolved/Resolved/Fixed)

The Version table provides details related to the release that this issue/RFE will be addressed.

Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.

To download the current JDK release, click here.

JDK 21
21 b10Fixed

It would be useful to add a system property that can be used to enable/disable the XML Signature secure validation mode. This would be especially useful for testing purposes in older releases of the JDK (prior to 17), in which the secure validation mode is not yet enabled by default, and it is difficult to test (requires a code change or running with a SecurityManager).

The system property should supersede and have the same name as the XMLCryptoContext property that can be used to enable/disable the mode: "org.jcp.xml.dsig.secureValidation".

Changeset: 7901f459 Author: Sean Mullan <mullan@openjdk.org> Date: 2023-02-09 18:18:21 +0000 URL: https://git.openjdk.org/jdk/commit/7901f459dc8e0d3235e3e250d9a6bcf31cb031a2

09-02-2023

A pull request was submitted for review. URL: https://git.openjdk.org/jdk/pull/12365 Date: 2023-02-01 14:46:28 +0000

01-02-2023

CSR :	JDK-8301544 - Add system property to toggle XML Signature secure validation mode
Relates :	JDK-8259801 - Enable XML Signature secure validation mode by default