GNU Classpath

For over twenty years the Java SE Platform and the JDK have evolved in large, irregular, and somewhat unpredictable steps. Each major release has been driven by one or a few significant features, and so the schedule of each release has been adjusted ... [More] as needed—sometimes more than once!—in order to accommodate the development of those features. This approach made it possible to deliver big new features at a high level of quality, after thorough review and testing by early adopters. The cost, however, was that smaller API, language, and JVM features could only be delivered when the big features were ready. This was an acceptable tradeoff in the decades before and after the turn of the century, when Java competed with just a few platforms which evolved at a similar stately pace. Nowadays, however, Java competes with many platforms which evolve at a more rapid pace. For Java to remain competitive it must not just continue to move forward—it must move forward faster. Back on the train Five years ago I mused in this space on the tension between developers, who prefer rapid innovation, and enterprises, which prefer stability, and the fact that everyone prefers regular and predictable releases. To address these differing desires I proposed, back then, that we switch from the historical feature-driven release model to a time-driven “train” model, with a major release every two years. In this type of model the development process is a continuous pipeline of innovation that’s only loosely coupled to the actual release process, which itself has a constant cadence. Any particular feature, large or small, is merged only when it’s nearly finished. If a feature misses the current train then that’s unfortunate but it’s not the end of the world, since the next train will already be waiting and will also leave on schedule. This seemed like a good idea at the time but we failed to implement it—for good reasons. We took an additional eight months for Java 8 in order to address security issues and finish Project Lambda, which was preferable to delaying Lambda by two years. We initially planned Java 9 as a two-and-a-half year release in order to include Project Jigsaw, which was preferable to delaying Jigsaw by an additional eighteen months, yet in the end we wound up taking an additional year and so Java 9 will ship next month, three and a half years after Java 8. In retrospect, a two-year release cadence is simply too slow. To achieve a constant cadence we must ship major releases at a more rapid rate. Deferring a feature from one release to the next should be a tactical decision with minor inconveniences rather than a strategic decision with major consequences. So, let’s ship a major release every six months. That’s fast enough to minimize the pain of waiting for the next train, yet slow enough that we can still deliver each release at a high level of quality. Proposal Taking inspiration from the release models used by other platforms and by various operating-system distributions, I propose that after Java 9 we adopt a strict, time-based model with a new major release every six months, update releases every quarter, and a long-term support release every three years. Major releases can contain any type of feature, including not just new and improved APIs but also language and JVM features. New features will be merged only when they’re nearly finished, so that the release currently in development is feature-complete at all times. Major releases will ship in March and September of each year, starting in March of 2018. Update releases will be strictly limited to fixes of security issues, regressions, and bugs in newer features. Each major release will receive two updates before the next major release. Update releases will ship quarterly in January, April, July, and October, as they do today. Every three years, starting in September of 2018, the major release will be a long-term support release. Updates will be available for at least three years and quite possibly longer, depending upon your vendor. In this model the overall rate of change should be about the same as it is today; what’s different is that there will be many more opportunities to deliver innovation. The six-month major releases will be smaller than the multi-year major releases of the past, and therefore easier to adopt. Six-month major releases will also reduce the pressure to backport new features to older releases, since the next major release is never more than six months away. Developers who prefer rapid innovation, so that they can leverage new features in production as soon as possible, can use the most recent major release or an update release thereof and move on to the next one when it ships. They can deliver an application in a Docker image, or other type of container package, along with the exact Java release on which the application will run. Since the application and the Java release can always be tested together, in a modern continuous-integration and continuous-deployment pipeline, it will be straightforward to move from one Java release to the next. Enterprises that prefer stability, so that they can run multiple large applications on a single shared Java release, can instead use the current long-term support release. They can plan ahead to migrate from one long-term support release to the next, like clockwork, every three years. To make it clear that these are time-based releases, and to make it easy to figure out the release date of any specific release, the version strings of major releases will be of the form $YEAR.$MONTH. Thus next year’s March release will be 18.3, and the September release will be 18.9. Challenges This proposal aims to bring many benefits, but it will not be easy to implement. We must, above all, preserve Java’s key long-term values of compatibility, reliability, and thoughtful evolution. This shift will require major changes in how contributors in the OpenJDK Community produce the JDK itself; I’ve posted some initial thoughts as to how we might proceed there. It would be made easier if we could reduce the overhead of the Java Community Process, which governs the evolution of the Java SE Platform; my colleagues Brian Goetz and Georges Saab have already raised this topic with the JCP Executive Committee. In the meantime your comments and questions are welcome, either on the OpenJDK general discussion list (please subscribe to that list in order to post to it) or on Twitter, with the hashtag #javatrain. [Less]

LaternaMagica is the image viewing and exporting tool of the GNUstep Application Project.Quickly create a list of images and export it by converting the file type and resizing the images to a uniform size, to prepare your next slide show, a folder of ... [More] thumbnails or the folder to give your local printer and print out pictures.The new 0.5 version comes with a lot of fixes and improvements. Improved drag&drop support Improved recursion of folders, including drag&drop of folders Rotation has key shortcuts Image rotation is remembered for export Code cleanup, optimization and minor bug fixes  Exporting (including Scaling and Rotation) have many fixes: Better support of Alpha images Resolution and Size are better interpreted and preserved.  better scaling algorithm imported from PRICE [Less]

New releases which combine many improvements collected in the past three years!GNUMail and Pantomime found a home in the past years in the "GNUstep non-FSF" project on GNA. However, GNA shut down and the project was moved to ... [More] https://savannah.nongnu.org/projects/gnustep-nonfsf. This move was time consuming, left the repository unavailable for weeks, but we were able to recover the repository with full history. The code is on savannah.nongnu.org on SVN.During the move, Copyrights, Headers and Licenses were cleaned up. The X-Face code had no clear license and was removed. It is quite an obsolete feature anyway, I haven't seen it used since long time.The MacOS version works quite well and we provide now both a PPC and an Intel binary. The PowerPC version works well on vintage Macs so you can use GNUMail on your trusty iBook or iMac! GNUMail Thanks to improved Pantomime, more names and addresses appear correct and not quoted bug fixes in quoting and re-flow, which could lead to mails have missing text portions Allow creation of mail filters from To and Cc addresses Continued to reduce GNUstep specific code: EditWindow, Console, AboutPanel; Improved mail header view when resizing windows Version check fixed and re-instantiated to work against nongnu.org Fixed display of in-line attachment icons on GS code clean-up, memory leak fixes, improved portability (FreeBSD, OpenBSD, NetBSD) Pantomime improved header parsing, recognizes better address formats, on the TODO list since many years bug fixes in header and subject parsing which could lead to some mails not to load fully speed improvements code portability improvements misc fixes [Less]

The IcedTea project provides a harness to build the source code from OpenJDK using Free Software build tools, along with additional features such as the ability to build against system libraries and support for alternative virtual machines and ... [More] architectures beyond those supported by OpenJDK. This release updates our OpenJDK 7 support in the 2.6.x series with the July 2017 security fixes from OpenJDK 7 u151. If you find an issue with the release, please report it to our bug database under the appropriate component. Development discussion takes place on the distro-pkg-dev OpenJDK mailing list and patches are always welcome. Full details of the release can be found below. What’s New? New in release 2.6.11 (2017-08-08) Security fixes S8163958, CVE-2017-10102: Improved garbage collection S8167228: Update to libpng 1.6.28 S8169209, CVE-2017-10053: Improved image post-processing steps S8169392, CVE-2017-10067: Additional jar validation steps S8170966, CVE-2017-10081: Right parenthesis issue S8172204, CVE-2017-10087: Better Thread Pool execution S8172461, CVE-2017-10089: Service Registration Lifecycle S8172465, CVE-2017-10090: Better handling of channel groups S8172469, CVE-2017-10096: Transform Transformer Exceptions S8173286, CVE-2017-10101: Better reading of text catalogs S8173697, CVE-2017-10107: Less Active Activations S8173770, CVE-2017-10074: Image conversion improvements S8174098, CVE-2017-10110: Better image fetching S8174105, CVE-2017-10108: Better naming attribution S8174113, CVE-2017-10109: Better sourcing of code S8174770: Check registry registration location S8174873: Improved certificate processing S8175106, CVE-2017-10115: Higher quality DSA operations S8175110, CVE-2017-10118: Higher quality ECDSA operations S8176055: JMX diagnostic improvements S8176067, CVE-2017-10116: Proper directory lookup processing S8176760, CVE-2017-10135: Better handling of PKCS8 material S8178135, CVE-2017-10176: Additional elliptic curve support S8181420, CVE-2017-10074: PPC: Image conversion improvements S8183551, CVE-2017-10074, PR3423: AArch64: Image conversion improvements S8184119, CVE-2017-10111: Incorrect return processing for the LF editor of MethodHandles.permuteArguments Import of OpenJDK 7 u151 build 0 S7117357: Warnings in sun.instrument, tools and other sun.* classes S7117570: Warnings in sun.mangement.* and its subpackages S7143230: fix warnings in java.util.jar, sun.tools.jar, zipfs demo, etc. S8022440: suppress deprecation warnings in sun.rmi S8024069: replace_in_map() should operate on parent maps S8026796: Make replace_in_map() on parent maps generic S8030787: [Parfait] JNI-related warnings from b119 for jdk/src/share/native/sun/awt/image S8030875: Macros for checking and returning on exceptions S8031737: CHECK_NULL and CHECK_EXCEPTION macros cleanup S8034912: backport of 8031737 to jdk8u breaks linux buld. S8035629: [parfait] JNI exc pending in jdk/src/windows/native/sun/windows/ShellFolder2.cpp S8037287: Windows build failed after JDK-8030787 S8048703: ReplacedNodes dumps it’s content to tty S8080492: [Parfait] Uninitialised variable in jdk/src/java/desktop/windows/native/libawt/ S8139870: sun.management.LazyCompositeData.isTypeMatched() fails for composite types with items of ArrayType S8143377: Test PKCS8Test.java fails S8149450: LdapCtx.processReturnCode() throwing Null Pointer Exception S8155690: Update libPNG library to the latest up-to-date S8156804: Better constraint checking (sync with upstream version) S8162461: Hang due to JNI up-call made whilst holding JNI critical lock S8165231: java.nio.Bits.unaligned() doesn’t return true on ppc S8165367: Additional tests for JEP 288: Disable SHA-1 Certificates S8173145: Menu is activated after using mnemonic Alt/Key combination S8174164: SafePointNode::_replaced_nodes breaks with irreducible loops S8175097: [TESTBUG] 8174164 fix missed the test S8175251: Failed to load RSA private key from pkcs12 S8176731: JCK tests in api/javax_xml/transform/ spec conformance started failing after 8172469 S8176769: Remove accidental spec change in jdk8u S8177449: (tz) Support tzdata2017b S8178996: [macos] JComboBox doesn’t display popup in mixed JavaFX Swing Application on 8u131 and Mac OS 10.12 S8179014: JFileChooser with Windows look and feel crashes on win 10 S8179887: Build failure with glibc >= 2.24: error: ‘int readdir_r(DIR*, dirent*, dirent**)’ is deprecated S8180582: The bind to rmiregistry is rejected by registryFilter even though registryFilter is set S8181591: 8u141 L10n resource file update S8182054: Improve wsdl support S8184993: Jar file verification failing with SecurityException: digest missing xxx S8185501: Missing import in JAXP code S8185502: No overflow operator on OpenJDK 7 Import of OpenJDK 7 u151 build 1 S8185716: OpenJDK 7 PPC64 port uses a different ins_encode format in ppc.ad Backports S7177216, PR3398, RH1446700: native2ascii changes file permissions of input file S8179084, PR3410, RH1455694: HotSpot VM fails to start when AggressiveHeap is set S8181419, PR3414, RH1463144: Race in jdwp invoker handling may lead to crashes or invalid results AArch64 port S8144028, PR3431: Use AArch64 bit-test instructions in C2 S8152537, PR3431: aarch64: Make use of CBZ and CBNZ when comparing unsigned values with zero. The tarballs can be downloaded from: http://icedtea.classpath.org/download/source/icedtea-2.6.11.tar.gz http://icedtea.classpath.org/download/source/icedtea-2.6.11.tar.xz We provide both gzip and xz tarballs, so that those who are able to make use of the smaller tarball produced by xz may do so. The tarballs are accompanied by digital signatures available at: http://icedtea.classpath.org/download/source/icedtea-2.6.11.tar.gz.sig http://icedtea.classpath.org/download/source/icedtea-2.6.11.tar.xz.sig These are produced using my public key. See details below. PGP Key: ed25519/0xCFDA0F9B35964222 (hkp://keys.gnupg.net) Fingerprint = 5132 579D D154 0ED2 3E04 C5A0 CFDA 0F9B 3596 4222 GnuPG >= 2.1 is required to be able to handle this key. SHA256 checksums: 5dfbe0f40d8b6004d49add4ec398d1c91d4c02b11716297055e5d73919fb85be icedtea-2.6.11.tar.gz f100c3bfffa5ea0b9a2184346856a1d3db7f8d2a45c74523ad928dcf179ad0e3 icedtea-2.6.11.tar.gz.sig 20063c314535e4ed4b8099e497b880e4f346c85e7315a2573d0f398b973777c5 icedtea-2.6.11.tar.xz 43bf76c60d219ef76b0e03484ee92d0d7657dafae51f21ed088ee5bb5ee654ca icedtea-2.6.11.tar.xz.sig The checksums can be downloaded from: http://icedtea.classpath.org/download/source/icedtea-2.6.11.sha256 A 2.6.11 ebuild for Gentoo is available. The following people helped with these releases: Severin Gehwolf (S8181419/PR3414/RH1463144 JDWP race) Andrew Hughes (all other backports & bug fixes, release management) Roland Westrelin (S8183551/PR3423/CVE-2017-10074 AArch64 fix) We would also like to thank the bug reporters and testers! To get started: $ tar xzf icedtea-2.6.11.tar.gz or: $ tar x -I xz -f icedtea-2.6.11.tar.xz then: $ mkdir icedtea-build $ cd icedtea-build $ ../icedtea-2.6.11/configure $ make Full build requirements and instructions are available in the INSTALL file. Happy hacking! [Less]

An update on my notes to compile NetBSD kernels and userland.Build / update the tools:-U : for unprivilged building-u : to update-m : to specify architecture./build.sh -U -u tools To cross compile, this is enough:./build.sh -U -m i386 -u ... [More] toolsHowever, since I do want to build on the same computer and the build script would be confused, we add -T tools-${HOST_ARCH}-${TARGET_ARCH}./build.sh -U -m i386 -u -T tools-amd64-i386 toolsThen we build the kernel./build.sh -U kernel=CONFNAMEor for cross compilation:./build.sh -U -T tools-amd64-i386 -m i386 -u GENERICThe modules:./build.sh -U -u modules installmodules=/Now to build userland, including X11. I did not attempt to cross-build userland yet../build.sh -U -x -u distribution./build.sh -U -x -u distribution install=/ [Less]

We are pleased to announce the release of IcedTea 3.5.1! The IcedTea project provides a harness to build the source code from OpenJDK using Free Software build tools, along with additional features such as the ability to build against system ... [More] libraries and support for alternative virtual machines and architectures beyond those supported by OpenJDK. This release updates our OpenJDK 8 support with the additional fix provided in OpenJDK 8 u144. It also brings in the latest Shenandoah updates. If you find an issue with the release, please report it to our bug database under the appropriate component. Development discussion takes place on the distro-pkg-dev OpenJDK mailing list and patches are always welcome. Full details of the release can be found below. What’s New? New in release 3.5.1 (2017-07-27) Import of OpenJDK 8 u144 build 01 S8184993: Jar file verification failing with SecurityException: digest missing xxx Shenandoah Amend “ArrayCopy verification code fix” with 8u-specific node hierarchy test Amend “Refactor asm acmp” with a few missing changes [backport] aarch64 store check fix [backport] Account “shared” out-of-LAB allocations separately [backport] Adaptive should not be scared of user-requested System.gc() [backport] Added assertion for page alignment of heap’s base address [backport] Add “verify jcstress” acceptance test [backport] “Allocation failure” cause should not be overwritten [backport] ArrayCopy verification code fix [backport] Assorted cleanups [backport] “Before Full GC” verification is too strong for OOME-during-evac [backport] C1 stores constants without read barriers [backport] Cleanup AArch64 code [backport] Cleanup class unloading and string intern code [backport] Cleanup duplicated Shenandoah task queue declarations [backport] Cleanups [backport] Cleanup ShenandoahBarrierSet::write_barrier [backport] Cleanup ShenandoahHeap::do_evacuation [backport] Clean up unused fields and methods [backport] Cleanup: update-refs check in_collection_set twice [backport] Code cache roots styles [backport] Concurrent code cache evacuation + bugfixes [backport] Concurrent preclean + Fix weakref precleaning [backport] Correct prefetch offset for marked object iteration [backport] Deferred region cleanup. [backport] Dense ShenandoahHeapRegion printout [backport] Detailed ParallelCleanupTask statistics + Split out Full GC stats for parallel cleaning [backport] Disable aggressive+verification test configs (jtreg eats up last configuration) [backport] Do not abandon RP discovery on conc GC cancel, do that only before Full GC [backport] Eliminating _num_regions variable in ShenandoahHeap [backport] Ensure collection set and cset map are consistent [backport] Fallback to shared allocation if GCLAB is not available [backport] Fast synchronizer root scanning [backport] “F: Code Cache Roots” is missing from gc+stats [backport] Fix DerivedPointerTable handling when scanning roots twice in init-evac phase [backport] Fixed a few of early returns that calling register_gc_end() [backport] Fix live data accounting for humongous region [backport] Fix memory Phis with only data uses [backport] Fix recycled regions zapping [backport] Fix up pointer volatility [backport] Generic verification should not trust bitmaps [backport] Heap/matrix verification for all reachable objects [backport] Heap memory usage counting not longer needs to be atomic [backport] Heap region recycling should call explicit clear() and request zapping [backport] Heap region verification [backport] Implementation of interpreter matrix barrier on aarch64 [backport] Implement early update references phase. [backport] implicit null checks broken on aarch64 [backport] Increase timeout for EvilSyncBug test [backport] Lazy parallel code cache iterator [backport] Make statistics gathering span more operations [backport] Make sure atomic operations are done on “volatile” fields [backport] Make sure new_active_workers is used [backport] Make {T,GC}LAB statistics unconditional [backport] Mark-compact and heuristics should consistently process refs and unload classes [backport] minor fix to optimization of java mirror comparison [backport] more barrier on constant oop fixes + couple small unrelated fixes [backport] More collection set and matrix cleanup [backport] Nit: mark-compact phase 3 (Adjust Pointers) should announce itself as “Phase 3″ [backport] Optimize heap region size checks [backport] Optimize heap verification [backport] Out-of-TLAB evacuation should overwrite stale copies [backport] Parallel code cache scanning [backport] Parallel verification [backport] Print correct message about gross times in stats [backport] Print heap changes in phases that actually change heap occupancy [backport] Print more detailed final UR stats [backport] Print more details for weak ref and class unloading stats [backport] Properly react on -ClassUnloading [backport] Purge ealier version of redefined classes during class unloading [backport] Purge ratio, global, connections heuristics. [backport] Purge shenandoahHumongous.hpp [backport] Purge ShenandoahVerify(Reads|Writes)ToFromSpace. [backport] Reduce region retirement during tlab allocation [backport] Refactor asm acmp (x86, aarch64, renames) [backport] Refactor BrooksPointer asserts [backport] Refactor heap verification [backport] Reference processing deadlocks with -ParallelRefProcEnabled [backport] Reference processors might use non-forwarded alive checks [backport] Region sampling may not be enabled because last timetick is uninitialized [backport] Rehash ShenandoahHeap section in hs_err [backport] Reinstate “Purge” block in final-mark stats [backport] Relax assert to not fire at safepoint [backport] Remove heap printing routines from ShenandoahHeap [backport] Remove obsolete compile_resolve_oop_runtime() methods [backport] Rename final mark operations [backport] Rename ShenandoahBarriersForConst [backport] Replace ShHeapRegionSet::get with get_fast [backport] Report correct total garbage data. Print out garbage and cset data with -Xlog:gc+ergo [backport] Report oops and fwdptrs verification failures fully [backport] Result of write barrier on constant not used [backport] Separate Full GC root operations in GC stats [backport] ShenandoahCollectionSet refactor [backport] ShenandoahGCSession used wrong timer for full GC [backport] ShenandoahHeap::evacuate_object() with boolean result flag. [backport] Shenandoah options should be uintx [backport] shenandoah_wb should fallback to slow path with -UseTLAB + Fix aarch64 compilation error due to shenandoah_wb change [backport] ShenandoahWriteBarrierNode::memory_dominates_all_paths() assert failure when compiling methods using unsafe [backport] Shortcut reference processing when no work is available [backport] Simplify parallel synchronizer roots iterator [backport] Skip RESOLVE when references update is not needed [backport] Stats should attribute “Resize TLABs” properly, and mention “Pause” for init/final mark [backport] Stats should not record past-shutdown events [backport] “String/Symbol/CodeCache” -> “Str/Sym, Code Cache” [backport] Tests should use all heuristics and pass heap verification + Disable aggressive+verification test configs [backport] Total pauses should include final-mark pauses [backport] Trim down native GC footprint [backport] Update region sampling to include TLAB/GCLAB allocation data [backport] Update roots should always handle derived pointers [backport] Update ShenandoahHeapSampling to avoid double counting. [backport] Update statistics to capture thread data accurately [backport] Use CollectedHeap::base() instead of ShenandoahHeap::first_region_bottom() [backport] Use lock version heap region memory allocator [backport] Use scoped object for gc session/phases recording [backport] Variable steps in adaptive heuristics [backport] Verification error log is truncated [backport] Verification levels [backport] Verification should assert complete bitmaps in most phases + Disable complete bitmap verification in init mark [backport] Verifier performance improvements: scan objects once, avoid double oop checks [backport] Verifier should not assert cset in forwarded test block [backport] Verifier should print extended info on referenced location [backport] Verifier should use non-optimized root scans [backport] Verify marked objects [backport] Verify TAMS and object sizes [backport] write barrier can get stuck below predicates resulting in unschedulable graph S8140584: nmethod::oops_do_marking_epilogue always runs verification code S8180175, S8180599: Cherry-pick/synchronize Cleanup: Removed redundant ClassLoaderData::clear_claimed_marks() calls Cleanup shared code. Fixed memory leak in region garbage cache Fix return type of ShenandoahHeapRegion::region_size_words_jint() Improved comment about AArch64bit addressing in assembler. Leak mutex in ShenandoahTaskTerminator Make sure C2 arguments are not used when C2 is disabled. Refactor parallel ClassLoaderData iterator Revert G1 changes and bring shared BitMap Add missing cmpoops() declaration to AArch64 macro assembler. Back out matrix related code from AArch64 interpreter. Fix build without precompiled headers. Fixed build issues on Windows The tarballs can be downloaded from: http://icedtea.classpath.org/download/source/icedtea-3.5.1.tar.gz http://icedtea.classpath.org/download/source/icedtea-3.5.1.tar.xz We provide both gzip and xz tarballs, so that those who are able to make use of the smaller tarball produced by xz may do so. The tarballs are accompanied by digital signatures available at: http://icedtea.classpath.org/download/source/icedtea-3.5.1.tar.gz.sig http://icedtea.classpath.org/download/source/icedtea-3.5.1.tar.xz.sig These are produced using my public key. See details below. PGP Key: ed25519/0xCFDA0F9B35964222 (hkp://keys.gnupg.net) Fingerprint = 5132 579D D154 0ED2 3E04 C5A0 CFDA 0F9B 3596 4222 GnuPG >= 2.1 is required to be able to handle this key. SHA256 checksums: b229f2aa5d743ff850fa695e61f65139bb6eca1a9d10af5306ad3766fcea2eb2 icedtea-3.5.1.tar.gz 801497164168171b7aedae37aabde7821e0df0cfe76736054a2a91f96ae3d0b0 icedtea-3.5.1.tar.gz.sig 8eaa6ac93d4a1989460109246f78427acc5493f847c7b2fc80d3a5d918d811c9 icedtea-3.5.1.tar.xz 9ac863f00398ac51bf62aa4a1e22889baf5a088256755f3dde849849a2bc518f icedtea-3.5.1.tar.xz.sig The checksums can be downloaded from: http://icedtea.classpath.org/download/source/icedtea-3.5.1.sha256 A 3.5.1 ebuild for Gentoo is available. The following people helped with these releases: Andrew Hughes (all other bug fixes and backports, release management) Roman Kennke (Shenandoah backporting) We would also like to thank the bug reporters and testers! To get started: $ tar xzf icedtea-3.5.1.tar.gz or: $ tar x -I xz -f icedtea-3.5.1.tar.xz then: $ mkdir icedtea-build $ cd icedtea-build $ ../icedtea-3.5.1/configure $ make Full build requirements and instructions are available in the INSTALL file. Happy hacking! [Less]

Advogato has been archived. When I started working on Free Software advogato was the “social network” where people would keep their diaries (I don’t believe we called them blogs yet). I still remember how proud I was when people certified me as ... [More] Apprentice. A lot of people on Planet Classpath still have their diaries imported from Advogato. robilad, audriusa, saugart, rmathew, Anthony, kuzman, jvic, jserv, aph, twisti, Ringding please let me know if you found a new home for your diary. [Less]

We are pleased to announce the release of IcedTea 3.5.0! The IcedTea project provides a harness to build the source code from OpenJDK using Free Software build tools, along with additional features such as the ability to build against system ... [More] libraries and support for alternative virtual machines and architectures beyond those supported by OpenJDK. This release updates our OpenJDK 8 support with the July 2017 security fixes from OpenJDK 8 u141. If you find an issue with the release, please report it to our bug database under the appropriate component. Development discussion takes place on the distro-pkg-dev OpenJDK mailing list and patches are always welcome. Full details of the release can be found below. What’s New? New in release 3.5.0 (2017-07-20) Security fixes S8163958, CVE-2017-10102: Improved garbage collection S8167228: Update to libpng 1.6.28 S8169209, CVE-2017-10053: Improved image post-processing steps S8169392, CVE-2017-10067: Additional jar validation steps S8170966, CVE-2017-10081: Right parenthesis issue S8171539, CVE-2017-10078: Better script accessibility for JavaScript S8172204, CVE-2017-10087: Better Thread Pool execution S8172461, CVE-2017-10089: Service Registration Lifecycle S8172465, CVE-2017-10090: Better handling of channel groups S8172469, CVE-2017-10096: Transform Transformer Exceptions S8173286, CVE-2017-10101: Better reading of text catalogs S8173697, CVE-2017-10107: Less Active Activations S8173770, CVE-2017-10074: Image conversion improvements S8174098, CVE-2017-10110: Better image fetching S8174105, CVE-2017-10108: Better naming attribution S8174113, CVE-2017-10109: Better sourcing of code S8174770: Check registry registration location S8174873: Improved certificate procesing S8175106, CVE-2017-10115: Higher quality DSA operations S8175110, CVE-2017-10118: Higher quality ECDSA operations S8176055: JMX diagnostic improvements S8176067, CVE-2017-10116: Proper directory lookup processing S8176760, CVE-2017-10135: Better handling of PKCS8 material S8178135, CVE-2017-10176: Additional elliptic curve support S8179101, CVE-2017-10193: Improve algorithm constraints implementation S8179998, CVE-2017-10198: Clear certificate chain connections S8181420, CVE-2017-10074: PPC: Image conversion improvements S8183551, CVE-2017-10074, PR3423: AArch64: Image conversion improvements S8184185, CVE-2017-10111: Rearrange MethodHandle arrangements New features PR3392, RH1273760: Support using RSAandMGF1 with the SHA hash algorithms in the PKCS11 provider Import of OpenJDK 8 u141 build 15 S8139870: sun.management.LazyCompositeData.isTypeMatched() fails for composite types with items of ArrayType S8155690: Update libPNG library to the latest up-to-date S8159058: SAXParseException when sending soap message S8162461: Hang due to JNI up-call made whilst holding JNI critical lock S8163889: [macosx] Can’t print from browser on Mac OS X S8165231: java.nio.Bits.unaligned() doesn’t return true on ppc S8165367: Additional tests for JEP 288: Disable SHA-1 Certificates S8173145: Menu is activated after using mnemonic Alt/Key combination S8173207: Upgrade compression library S8175251: Failed to load RSA private key from pkcs12 S8176329: jdeps to detect MR jar file and output a warning S8176536: Improved algorithm constraints checking S8176731: JCK tests in api/javax_xml/transform/ spec conformance started failing after 8172469 S8176769: Remove accidental spec change in jdk8u S8177449: (tz) Support tzdata2017b S8178996: [macos] JComboBox doesn’t display popup in mixed JavaFX Swing Application on 8u131 and Mac OS 10.12 S8179014: JFileChooser with Windows look and feel crashes on win 10 S8180582: The bind to rmiregistry is rejected by registryFilter even though registryFilter is set S8181591: 8u141 L10n resource file update S8181698: Remove and retag 8u141-b12 tag from source repository S8181946: JDK 8 THIRD_PARTY_README – Minor Cleanup S8182054: Improve wsdl support S8184235: Backout JDK-8173207 from 8u141, 7u151 and higher updates source base Backports S8164293, PR3412, RH1459641: HotSpot leaking memory in long-running requests S8175813, PR3394, RH1448880: PPC64: “mbind: Invalid argument” when -XX:+UseNUMA is used S8175887, PR3415: C1 value numbering handling of Unsafe.get*Volatile is incorrect S8179084, PR3409, RH1455694: HotSpot VM fails to start when AggressiveHeap is set S8180048, PR3411, RH1449870: Interned string and symbol table leak memory during parallel unlinking S8181055, PR3394, RH1448880: PPC64: “mbind: Invalid argument” still seen after 8175813 S8181419, PR3413, RH1463144: Race in jdwp invoker handling may lead to crashes or invalid results AArch64 port S7009641, PR3423: Don’t fail VM when CodeCache is full S8182581, PR3423: aarch64: fix for crash caused by earlyret of compiled method AArch32 port PR3391: Revert PR3385 as -Xshare:dump does appear to work on AArch32 The tarballs can be downloaded from: http://icedtea.classpath.org/download/source/icedtea-3.5.0.tar.gz http://icedtea.classpath.org/download/source/icedtea-3.5.0.tar.xz We provide both gzip and xz tarballs, so that those who are able to make use of the smaller tarball produced by xz may do so. The tarballs are accompanied by digital signatures available at: http://icedtea.classpath.org/download/source/icedtea-3.5.0.tar.gz.sig http://icedtea.classpath.org/download/source/icedtea-3.5.0.tar.xz.sig These are produced using my public key. See details below. PGP Key: ed25519/0xCFDA0F9B35964222 (hkp://keys.gnupg.net) Fingerprint = 5132 579D D154 0ED2 3E04 C5A0 CFDA 0F9B 3596 4222 GnuPG >= 2.1 is required to be able to handle this key. SHA256 checksums: 2c92e18fa70edaf73517fcf91bc2a7cc2ec2aa8ffdf22bb974fa6f9bc3065f30 icedtea-3.5.0.tar.gz d27c337e87221c9de158f83e43823bf2c5ec2ebf78c8fa5b9a11b182acb68ee1 icedtea-3.5.0.tar.gz.sig 9aa89e00ecc07baa6b37a6b1e363c3d7128253e95374c74d1d2706f36c3ccab5 icedtea-3.5.0.tar.xz 59089156b3ea0973304c6d89d598ca6a149e594f9555fd35c9c0a78101ce7e65 icedtea-3.5.0.tar.xz.sig The checksums can be downloaded from: http://icedtea.classpath.org/download/source/icedtea-3.5.0.sha256 A 3.5.0 ebuild for Gentoo is available. The following people helped with these releases: Severin Gehwolf (S8181419/PR3413/RH1463144 JDWP race) Zhengyu Gu (S8175813 & S8181055/PR3394/RH1448880 NUMA issues) Andrew Hughes (all other bug fixes and backports, release management) Roland Westrelin (S8183551/CVE-2017-10074 AArch64 fix) We would also like to thank the bug reporters and testers! To get started: $ tar xzf icedtea-3.5.0.tar.gz or: $ tar x -I xz -f icedtea-3.5.0.tar.xz then: $ mkdir icedtea-build $ cd icedtea-build $ ../icedtea-3.5.0/configure $ make Full build requirements and instructions are available in the INSTALL file. Happy hacking! [Less]

Hi Fedora Packagers, rawhide rpmbuild contains various debuginfo improvements that hopefully will make various hacks in spec files redundant. If you have your own way of handling debuginfo packages, calling find-debuginfo.sh directly, need hacks for ... [More] working around debugedit limitations or split your debuginfo package by hand then please try out rpmbuild in rawhide and read below for some macros you can set to tweak debuginfo package generation. If you still need hacks in your spec file because setting macros isn’t enough to get the debuginfo packages you want then please let us know. Also please let us know about packages that need to set debuginfo rpm macros to non-default values because they would crash and burn with the default settings (best to file a bug against rpmbuild). The improvements have been mainly driven by the following two change proposals for f27 (some inspired by what other distros do): https://fedoraproject.org/wiki/Changes/ParallelInstallableDebuginfo https://fedoraproject.org/wiki/Changes/SubpackageAndSourceDebuginfo The first is completely done and has been enabled by default for some months now in rawhide. The second introduces two new macros to enable separate debugsource and sub-debuginfo packages, but has not been enabled by default yet. If people like the change and no bugs are found (and fesco and releng agree) we can enable them for the f27 mass rebuild. If your package already splits debuginfo packages in a (common) source package and/or sub-debuginfo packages, please try out the new macros introduced by the second change. You can enable the standard splitting by adding the following to your spec file: %global _debugsource_packages 1 %global _debuginfo_subpackages 1 Besides the above two changes debuginfo packages can now (and are by default in rawhide) build by running debug extraction in parallel. This should speed up building with lots of binaries/libraries. If you do invoke find-debuginfo.sh by hand you most likely will want to add %{?_smp_mflags} as argument to get the parallel processing speedup. If your package is invoking find-debuginfo.sh by hand also please take a look at all the new options that have been added. Also note that almost all options can be changed by setting (or undefining) rpm macros now. Using the rpm macros is preferred over invoking find-debuginfo.sh directly since it means you get any defaults and improvements that might need new find-debuginfo.sh arguments automatically. Here is an overview of various debuginfo rpm macros that you can define undefine in your spec file with the latest rpmbuild: # # Should an ELF file processed by find-debuginfo.sh having no build ID # terminate a build?  This is left undefined to disable it and defined to # enable. # %_missing_build_ids_terminate_build    1 # # Include minimal debug information in build binaries. # Requires _enable_debug_packages. # %_include_minidebuginfo        1 # # Include a .gdb_index section in the .debug files. # Requires _enable_debug_packages and gdb-add-index installed. # %_include_gdb_index    1 # # Defines how and if build_id links are generated for ELF files. # The following settings are supported: # # - none #   No build_id links are generated. # # - alldebug #   build_id links are generated only when the __debug_package global is #   defined. This will generate build_id links in the -debuginfo package #   for both the main file as /usr/lib/debug/.build-id/xx/yyy and for #   the .debug file as /usr/lib/debug/.build-id/xx/yyy.debug. #   This is the old style build_id links as generated by the original #   find-debuginfo.sh script. # # - separate #   build_id links are generate for all binary packages. If this is a #   main package (the __debug_package global isn't set) then the #   build_id link is generated as /usr/lib/.build-id/xx/yyy. If this is #   a -debuginfo package (the __debug_package global is set) then the #   build_id link is generated as /usr/lib/debug/.build-id/xx/yyy. # # - compat #   Same as for "separate" but if the __debug_package global is set then #   the -debuginfo package will have a compatibility link for the main #   ELF /usr/lib/debug/.build-id/xx/yyy -> /usr/lib/.build-id/xx/yyy %_build_id_links compat # Whether build-ids should be made unique between package version/releases # when generating debuginfo packages. If set to 1 this will pass # --build-id-seed "%{VERSION}-%{RELEASE}" to find-debuginfo.sh which will # pass it onto debugedit --build-id-seed to be used to prime the build-id # note hash. %_unique_build_ids      1 # Do not recompute build-ids but keep whatever is in the ELF file already. # Cannot be used together with _unique_build_ids (which forces recomputation). # Defaults to undefined (unset). #%_no_recompute_build_ids 1 # Whether .debug files should be made unique between package version, # release and architecture. If set to 1 this will pass # --unique-debug-suffix "-%{VERSION}-%{RELEASE}.%{_arch} find-debuginfo.sh # to create debuginfo files which end in --..debug # Requires _unique_build_ids. %_unique_debug_names    1 # Whether the /usr/debug/src/ directories should be unique between # package version, release and architecture. If set to 1 this will pass # --unique-debug-src-base "%{name}-%{VERSION}-%{RELEASE}.%{_arch}" to # find-debuginfo.sh to name the directory under /usr/debug/src as # --.. %_unique_debug_srcs     1 # Whether rpm should put debug source files into its own subpackage #%_debugsource_packages 1 # Whether rpm should create extra debuginfo packages for each subpackage #%_debuginfo_subpackages 1 # Number of debugging information entries (DIEs) above which # dwz will stop considering file for multifile optimizations # and enter a low memory mode, in which it will optimize # in about half the memory needed otherwise. %_dwz_low_mem_die_limit          10000000 # Number of DIEs above which dwz will stop processing # a file altogether. %_dwz_max_die_limit              50000000 %_find_debuginfo_dwz_opts --run-dwz\\\ --dwz-low-mem-die-limit %{_dwz_low_mem_die_limit}\\\ --dwz-max-die-limit %{_dwz_max_die_limit} If there are settings missing that would be useful, bugs with the default settings or defaults that should be changed please do file a bug report. [Less]

Valgrind 3.13.0 adds support for larger processes and programs, solidifies and improves support on existing platforms, and provides new heap-use reporting facilities. There are, as ever, many smaller refinements and bug fixes. See the release notes ... [More] for details. There are binaries for Fedora 26 (beta) for aarch64, armv7hl, i686, ppc64, ppc64le, x86_64. And Copr builds for Fedora 25 (i386, ppc64le, x86_64), CentOS 6 (i386, x86_64) and CentOS 7 (ppc64le, x86_64). I’ll keep the Copr builds up to date with any updates going into Fedora 26. [Less]