Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8238555 Allow initialization of SunPKCS11 with NSS when there are external FIPS modules in the NSSDB
  3. JDK-8240191

Release Note: Allow SunPKCS11 initialization with NSS when external FIPS modules are present in the Security Modules Database

    Details

      Description

      The SunPKCS11 security provider can now be initialized with NSS when FIPS-enabled external modules are configured in the Security Modules Database (NSSDB). Prior to this change, the SunPKCS11 provider would throw a RuntimeException with the message: "FIPS flag set for non-internal module" when such a library was configured for NSS in non-FIPS mode.

      This change allows the JDK to work properly with recent NSS releases in GNU/Linux operating systems when the system-wide FIPS policy is turned on.

      Further information can be found in JDK-8238555.

        Attachments

          Activity

            People

            • Assignee:
              mbalao Martin Balao
              Reporter:
              mbalao Martin Balao
            • Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: