JDK-8313216 : Increase jdk.jar.maxSignatureFileSize default which is too low for JARs such as WhiteSource/Mend unified agent jar
  • Type: CSR
  • Component: security-libs
  • Sub-Component: java.security
  • Priority: P3
  • Status: Draft
  • Resolution: Unresolved
  • Fix Versions: 7-pool,8-pool,11-pool,17-pool,20-pool,21-pool
  • Submitted: 2023-07-26
  • Updated: 2023-07-26
Related Reports
CSR :  
JDK-8312489 - Increase jdk.jar.maxSignatureFileSize default which is too low for JARs such as WhiteSource/Mend unified agent jar
Description
Summary
-------

The system property `jdk.jar.maxSignatureFileSize` is used to configure the maximum number of bytes for the signature-related files in a signed JAR. Increase its default value from 8000000 bytes (8 MB) to 16000000 bytes (16 MB).

Problem
-------

The default value of the system property `jdk.jar.maxSignatureFileSize` is 8000000 bytes (8 MB), which is too low for JARs such as WhiteSource/Mend unified agent.

Solution
--------

Increase the default value of the system property `jdk.jar.maxSignatureFileSize` from 8000000 bytes (8 MB) to 16000000 bytes (16 MB).

Specification
-------------

- Document the change of default value of the system property `jdk.jar.maxSignatureFileSize` in a release note (JDK-8313215).
- Document the system property `jdk.jar.maxSignatureFileSize` in the security guides (JDK-8313219).