From owner-freebsd-java@FreeBSD.ORG Wed Sep 10 14:57:44 2003 Return-Path: Delivered-To: freebsd-java@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 98FD116A4BF for ; Wed, 10 Sep 2003 14:57:44 -0700 (PDT) Received: from diomedes.noc.ntua.gr (diomedes.noc.ntua.gr [147.102.222.220]) by mx1.FreeBSD.org (Postfix) with ESMTP id 3D09143FBF for ; Wed, 10 Sep 2003 14:57:43 -0700 (PDT) (envelope-from past@netmode.ntua.gr) Received: from netmode.ece.ntua.gr (dolly.netmode.ece.ntua.gr [147.102.13.10]) by diomedes.noc.ntua.gr (8.12.9/8.12.9) with ESMTP id h8ALvfUk078175; Thu, 11 Sep 2003 00:57:41 +0300 (EEST) (envelope-from past@netmode.ntua.gr) Received: from netmode.ntua.gr (ppp-229-010.dialup.ntua.gr [147.102.229.10]) by netmode.ece.ntua.gr (8.12.9/8.12.9) with ESMTP id h8AM1UQq024635; Thu, 11 Sep 2003 01:01:45 +0300 (EEST) (envelope-from past@netmode.ntua.gr) Message-ID: <3F5F9E44.9020607@netmode.ntua.gr> Date: Thu, 11 Sep 2003 00:57:24 +0300 From: Panagiotis Astithas User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.4) Gecko/20030624 X-Accept-Language: en-us, en, el MIME-Version: 1.0 To: Greg Lewis References: <20030910131818.B78730@phantom.cris.net> <3F5F3246.8080206@netmode.ntua.gr> <20030910145338.GD23417@misty.eyesbeyond.com> In-Reply-To: <20030910145338.GD23417@misty.eyesbeyond.com> Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit cc: java@freebsd.org cc: Alexey Zelkin Subject: Re: jdk14 patchset 4-pre1 X-BeenThere: freebsd-java@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Porting Java to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 10 Sep 2003 21:57:44 -0000 Greg Lewis wrote: > On Wed, Sep 10, 2003 at 05:16:38PM +0300, Panagiotis Astithas wrote: > >>since I will be making a test build of the 4-pre1 patchset, I will grab >>the opportunity to ask about the Sun-provided SCSL security stuff. >> >>When I get to the page to download the sources, besides the usual >>j2sdk-1_4_1-src-scsl.zip, I can download another file, called >>j2sdk-sec-1_4_1-src-scsl.zip. The latter contains cryptographic code, >>but I am puzzled about its purpose. For all I can say, this contains >>source code for classes that are built with the port anyway, but perhaps >>this other bundle has some benefits, such as stronger encryption? If >>this is so, how could we include it in the build? The bundle contains >>only java files, plus a Windows C file, that I believe we can ignore. >>Also, will the final binary release of 1.4.1 contain these cryptography >>extensions, or the current ones? > > > As I understand it, these are the source files for the bundled > crytographic JARs, in case you want to compile them yourself. I don't > believe the source code provides anything the bundled versions don't. Correct me if I'm wrong, but the standard bundle seems to contain only stub classes, while the security bundle contains concrete implementations. For instance, I look for Cipher.java in the standard bundle and I can find it under a directory blah/stub/blah, containing a comment on top about export restrictions and such. Am I missing something here? Of course, then I have the question how the heck my secure web application is working all this time :-) -- Panagiotis Astithas Electrical & Computer Engineer, PhD Network Management Center National Technical University of Athens, Greece