ccc5eab535
* RH2051605: Detect NSS at Runtime for FIPS detection * RH2036462: sun.security.pkcs11.wrapper.PKCS11.getInstance breakage * RH2090378: Revert to disabling system security properties and FIPS mode support together Turn off build-time NSS linking and go back to an explicit Requires on NSS Rebase RH1648249 nss.cfg patch so it applies after the FIPS patch Perform configuration changes (e.g. nss.cfg, nss.fips.cfg, tzdb.dat) in installjdk Enable system security properties in the RPM (now disabled by default in the FIPS repo) Improve security properties test to check both enabled and disabled behaviour Run security properties test with property debugging on Exclude x86 from builds as the bootstrap JDK is now completely broken and unusable
13 lines
640 B
Diff
13 lines
640 B
Diff
diff --git a/jdk/src/share/lib/security/java.security-linux b/jdk/src/share/lib/security/java.security-linux
|
|
index 9d1c8fe8a8e..a80a3c12abb 100644
|
|
--- a/jdk/src/share/lib/security/java.security-linux
|
|
+++ b/jdk/src/share/lib/security/java.security-linux
|
|
@@ -74,6 +74,7 @@ security.provider.6=sun.security.jgss.SunProvider
|
|
security.provider.7=com.sun.security.sasl.Provider
|
|
security.provider.8=org.jcp.xml.dsig.internal.dom.XMLDSigRI
|
|
security.provider.9=sun.security.smartcardio.SunPCSC
|
|
+#security.provider.10=sun.security.pkcs11.SunPKCS11 ${java.home}/lib/security/nss.cfg
|
|
|
|
#
|
|
# Security providers used when FIPS mode support is active
|