xranby/#OpenJDK 17 sept 2013 log Secret

## #OpenJDK 17 sept 2013 log
(09:24:40) xranby: OpenJDK 7 basically need to push this changeset, that is in use by icedtea 7 2.4 : http://icedtea.classpath.org/hg/icedtea7-forest/jdk/rev/39d4113a023c
(09:28:19) xranby: if you for example look at OpenJDK 7u jdk source tree you can see that http://hg.openjdk.java.net/jdk7u/jdk7u/jdk/file/861e489158ef/src/share/classes/javax/crypto/Cipher.java  still contain the dobious cryptoPrem code
(09:28:27) xranby: with funny code like "      678     // determine the maximum allowable keysize."
(09:40:51) xranby: Ok i found the bug: http://bugs.sun.com/view_bug.do?bug_id=7188845 "We (Oracle) have been advised that commercial providers such as Oracle and our licensees are still bound by the same restrictions that forced us to put these restrictions in in the first place. "
(09:50:08) xranby: This is a SUNBUG entry for https://bugs.openjdk.java.net/show_bug.cgi?id=100062
(09:56:16) ptisnovs [~ptisnovs@nat-pool-brq-t.redhat.com] kom in i rummet.
(10:06:02) mjw [~mark@wildebeest.demon.nl] kom in i rummet.
(10:11:09) jerboaa [~jerboaa@nat-pool-muc-t.redhat.com] kom in i rummet.
(10:14:51) xranby: mjw: i have found a copy of *the bug* http://bugs.sun.com/view_bug.do?bug_id=7188845
(10:15:01) xranby: This is a SUNBUG entry for  100062
(10:15:43) mjw: xranby, thanks
(10:16:11) mjw: xranby, note that evaluation doesn't really make sense for openjdk, which is free software.
(10:16:31) xranby: agreed, at least your work passed the code review :)
(10:16:39) mjw: xranby, Only proprietary, secret crypto, has to be approved by our USA government friends
(10:17:29) xranby: do US still restrict crypto export?
(10:17:44) xranby: i mean when i used debian in th 90's there was these nonus repositorys
(10:17:48) mjw: xranby, for proprietary, closed source, crypto yes.
(10:17:58) xranby: today debian do not have nonus repo
(10:18:02) xranby: AFAIK
(10:18:12) mjw: Strangely, or happily, free software crypto, that comes with source code, is exempt.
(10:18:39) mjw: that is also why we could incorporate GNU Crypto into GNU Classpath at the time.
(10:19:07) xranby: thus it makes no sense not pushing this code into the free software openjdk
(10:19:13) mjw: Only when you play secret, closed source, proprietary games does the US government want to "approve" of your crypto code for "export".
(10:19:22) mjw: xranby, right
(10:19:49) mjw: xranby, I even left one hook in it. To do be able to restrict things.
(10:19:53) xranby: ok i will try push your work into openjdk6
(10:20:13) xranby: or maybe you can do it.. i dont have a java.net login
(10:20:13) mjw: xranby, but then you would, as the reviewer said, have to maintain more outside the free software repo.
(10:20:25) xranby: thus i can file the jira openjdk6 bug
(10:20:40) mjw: But IMHO the burden should be on the secret, proprietary "hackers", and not pollute the free software source code.
(10:20:58) mjw: I also don't have a java.net login
(10:21:17) mjw: last time I tried to read the "terms of service" I had to give up after 6 pages :)
(10:21:34) xranby:  APH: can we clean up the "restricted" crypto support in OpenJDK 6 now?
(10:21:55) xranby: afaik this project is no longer run by oracle
(10:22:09) mjw: nice
(10:22:27) mjw: because getting anything past Oracle engineers is not my strong point :)
(10:22:51) mjw: I always seem to end up in these months/years long struggles to get even the simplest patch in.
(10:22:58) mjw: I have just given up to be honest.
(10:26:00) xranby: (10:21:17) mjw: last time I tried to read the "terms of service" I had to give up after 6 pages :) <- yes i gave up as well
(10:31:43) xranby: that was not true.. aparently i do have an account created years back for a glassfish install
(10:46:51) blair lämnade rummet (quit: Ping timeout: 480 seconds).
(10:47:47) doko__ är nu känd som doko
(10:50:45) aph: xranby: I don't see why not. Patches welcome.
aph aph_
(10:51:17) xranby: aph: ok, i will recover my java.net password and file a bug and a patch in the openjdk6 jira
(10:51:34) aph: xranby: let's go!
	(09:24:40) xranby: OpenJDK 7 basically need to push this changeset, that is in use by icedtea 7 2.4 : http://icedtea.classpath.org/hg/icedtea7-forest/jdk/rev/39d4113a023c
	(09:28:19) xranby: if you for example look at OpenJDK 7u jdk source tree you can see that http://hg.openjdk.java.net/jdk7u/jdk7u/jdk/file/861e489158ef/src/share/classes/javax/crypto/Cipher.java still contain the dobious cryptoPrem code
	(09:28:27) xranby: with funny code like " 678 // determine the maximum allowable keysize."
	(09:40:51) xranby: Ok i found the bug: http://bugs.sun.com/view_bug.do?bug_id=7188845 "We (Oracle) have been advised that commercial providers such as Oracle and our licensees are still bound by the same restrictions that forced us to put these restrictions in in the first place. "
	(09:50:08) xranby: This is a SUNBUG entry for https://bugs.openjdk.java.net/show_bug.cgi?id=100062
	(09:56:16) ptisnovs [~ptisnovs@nat-pool-brq-t.redhat.com] kom in i rummet.
	(10:06:02) mjw [~mark@wildebeest.demon.nl] kom in i rummet.
	(10:11:09) jerboaa [~jerboaa@nat-pool-muc-t.redhat.com] kom in i rummet.
	(10:14:51) xranby: mjw: i have found a copy of the bug http://bugs.sun.com/view_bug.do?bug_id=7188845
	(10:15:01) xranby: This is a SUNBUG entry for 100062
	(10:15:43) mjw: xranby, thanks
	(10:16:11) mjw: xranby, note that evaluation doesn't really make sense for openjdk, which is free software.
	(10:16:31) xranby: agreed, at least your work passed the code review :)
	(10:16:39) mjw: xranby, Only proprietary, secret crypto, has to be approved by our USA government friends
	(10:17:29) xranby: do US still restrict crypto export?
	(10:17:44) xranby: i mean when i used debian in th 90's there was these nonus repositorys
	(10:17:48) mjw: xranby, for proprietary, closed source, crypto yes.
	(10:17:58) xranby: today debian do not have nonus repo
	(10:18:02) xranby: AFAIK
	(10:18:12) mjw: Strangely, or happily, free software crypto, that comes with source code, is exempt.
	(10:18:39) mjw: that is also why we could incorporate GNU Crypto into GNU Classpath at the time.
	(10:19:07) xranby: thus it makes no sense not pushing this code into the free software openjdk
	(10:19:13) mjw: Only when you play secret, closed source, proprietary games does the US government want to "approve" of your crypto code for "export".
	(10:19:22) mjw: xranby, right
	(10:19:49) mjw: xranby, I even left one hook in it. To do be able to restrict things.
	(10:19:53) xranby: ok i will try push your work into openjdk6
	(10:20:13) xranby: or maybe you can do it.. i dont have a java.net login
	(10:20:13) mjw: xranby, but then you would, as the reviewer said, have to maintain more outside the free software repo.
	(10:20:25) xranby: thus i can file the jira openjdk6 bug
	(10:20:40) mjw: But IMHO the burden should be on the secret, proprietary "hackers", and not pollute the free software source code.
	(10:20:58) mjw: I also don't have a java.net login
	(10:21:17) mjw: last time I tried to read the "terms of service" I had to give up after 6 pages :)
	(10:21:34) xranby: APH: can we clean up the "restricted" crypto support in OpenJDK 6 now?
	(10:21:55) xranby: afaik this project is no longer run by oracle
	(10:22:09) mjw: nice
	(10:22:27) mjw: because getting anything past Oracle engineers is not my strong point :)
	(10:22:51) mjw: I always seem to end up in these months/years long struggles to get even the simplest patch in.
	(10:22:58) mjw: I have just given up to be honest.
	(10:26:00) xranby: (10:21:17) mjw: last time I tried to read the "terms of service" I had to give up after 6 pages :) <- yes i gave up as well
	(10:31:43) xranby: that was not true.. aparently i do have an account created years back for a glassfish install
	(10:46:51) blair lämnade rummet (quit: Ping timeout: 480 seconds).
	(10:47:47) doko__ är nu känd som doko
	(10:50:45) aph: xranby: I don't see why not. Patches welcome.
	aph aph_
	(10:51:17) xranby: aph: ok, i will recover my java.net password and file a bug and a patch in the openjdk6 jira
	(10:51:34) aph: xranby: let's go!