rh-openjdk · gnu-andrew · Mar 2, 2026 · Feb 17, 2026
diff --git a/src/java.base/share/classes/java/security/Provider.java b/src/java.base/share/classes/java/security/Provider.java
@@ -1207,31 +1207,26 @@ public Set<Service> getServices() {
     private static final class RedHatFIPSFilter {
         static final boolean IS_ON = Boolean.parseBoolean(
                 Security.getProperty("__redhat_fips_filter__"));
-        private static final Set<String> ANY_SERVICE_TYPE = Set.of();
         private static final Map<String, Set<String>> ALLOW_LIST = Map.of(
-                "SunPKCS11-FIPS", ANY_SERVICE_TYPE,
                 "SUN", Set.of(
                         "AlgorithmParameterGenerator",
                         "AlgorithmParameters", "CertificateFactory",
                         "CertPathBuilder", "CertPathValidator", "CertStore",
                         "Configuration", "KeyStore"),
                 "SunEC", Set.of(
                         "AlgorithmParameters", "KeyFactory"),
-                "SunJSSE", ANY_SERVICE_TYPE,
                 "SunJCE", Set.of(
                         "AlgorithmParameters",
                         "AlgorithmParameterGenerator", "KeyFactory",
                         "SecretKeyFactory"),
                 "SunRsaSign", Set.of(
-                        "KeyFactory", "AlgorithmParameters"),
-                "XMLDSig", ANY_SERVICE_TYPE
+                        "KeyFactory", "AlgorithmParameters")
         );
 
         static boolean isAllowed(String provName, String serviceType) {
             Set<String> allowedServiceTypes = ALLOW_LIST.get(provName);
-            return allowedServiceTypes != null &&
-                    (allowedServiceTypes == ANY_SERVICE_TYPE ||
-                            allowedServiceTypes.contains(serviceType));
+            return allowedServiceTypes == null ||
+                    allowedServiceTypes.contains(serviceType);
         }
     }
     /* ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ FIPS PATCH ^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ */