From owner-freebsd-java@FreeBSD.ORG Thu Sep 11 00:26:43 2003 Return-Path: Delivered-To: freebsd-java@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id D225B16A4BF for ; Thu, 11 Sep 2003 00:26:43 -0700 (PDT) Received: from relay1.cris.net (relay1.cris.net [212.110.128.64]) by mx1.FreeBSD.org (Postfix) with ESMTP id C76CA43FB1 for ; Thu, 11 Sep 2003 00:26:37 -0700 (PDT) (envelope-from phantom@phantom.cris.net) Received: from phantom.cris.net (root@phantom.cris.net [212.110.130.74]) by relay1.cris.net (8.12.6/8.12.6) with ESMTP id h8BAWAFW011852; Thu, 11 Sep 2003 10:32:11 GMT Received: (from phantom@localhost) by phantom.cris.net (8.12.6/8.12.2) id h8B7Yn3I085368; Thu, 11 Sep 2003 10:34:49 +0300 (EEST) (envelope-from phantom) Date: Thu, 11 Sep 2003 10:34:49 +0300 From: Alexey Zelkin To: Panagiotis Astithas Message-ID: <20030911103449.A85275@phantom.cris.net> References: <20030910131818.B78730@phantom.cris.net> <3F5F3246.8080206@netmode.ntua.gr> <20030910145338.GD23417@misty.eyesbeyond.com> <3F5F9E44.9020607@netmode.ntua.gr> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <3F5F9E44.9020607@netmode.ntua.gr>; from past@netmode.ntua.gr on Thu, Sep 11, 2003 at 12:57:24AM +0300 X-Operating-System: FreeBSD 4.7-STABLE i386 cc: Greg Lewis cc: java@freebsd.org Subject: Re: jdk14 patchset 4-pre1 X-BeenThere: freebsd-java@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Porting Java to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 11 Sep 2003 07:26:43 -0000 hi, On Thu, Sep 11, 2003 at 12:57:24AM +0300, Panagiotis Astithas wrote: > Greg Lewis wrote: > > On Wed, Sep 10, 2003 at 05:16:38PM +0300, Panagiotis Astithas wrote: > > > >>since I will be making a test build of the 4-pre1 patchset, I will grab > >>the opportunity to ask about the Sun-provided SCSL security stuff. > >> > >>When I get to the page to download the sources, besides the usual > >>j2sdk-1_4_1-src-scsl.zip, I can download another file, called > >>j2sdk-sec-1_4_1-src-scsl.zip. The latter contains cryptographic code, > >>but I am puzzled about its purpose. For all I can say, this contains > >>source code for classes that are built with the port anyway, but perhaps > >>this other bundle has some benefits, such as stronger encryption? If > >>this is so, how could we include it in the build? The bundle contains > >>only java files, plus a Windows C file, that I believe we can ignore. > >>Also, will the final binary release of 1.4.1 contain these cryptography > >>extensions, or the current ones? > > > > > > As I understand it, these are the source files for the bundled > > crytographic JARs, in case you want to compile them yourself. I don't > > believe the source code provides anything the bundled versions don't. > > Correct me if I'm wrong, but the standard bundle seems to contain only > stub classes, while the security bundle contains concrete > implementations. For instance, I look for Cipher.java in the standard > bundle and I can find it under a directory blah/stub/blah, containing a > comment on top about export restrictions and such. Am I missing > something here? > > Of course, then I have the question how the heck my secure web > application is working all this time :-) I hit this issue some time ago too :-) Actually, due to export restrictions, crypto stuff is distributed by compiled JAR, and in sources only stubs to allow crypto related stuff be compiled. After build complete, JAR with stubs is simply replaced with real one, IIRC.