RELEASE NOTES: JDK 11.0.4

Notes generated: Mon Dec 02 14:10:20 CET 2024

JEPs

None.

RELEASE NOTES

security-libs/javax.xml.crypto

Issue Description
JDK-8217878

com.sun.org.apache.xml.internal.security.ignoreLineBreaks System Property


An Apache Santuario library version upgrade, used by the javax.xml.crypto.* packages, introduces a behavioral change where a new Base64 encoder uses "\r\n" as end-of-line terminator. By default, XML signatures signed using API calls form the javax.xml.crypto.dsig package includes the escaped '\r' character, encoded as " " or " ".

A new com.sun.org.apache.xml.internal.security.ignoreLineBreaks system property may be set to a value of "true" if an application is unable to handle the encoded output data changes where " " or " " get appended to new lines in encoding operations. The effect of this property is to not include the carriage return character in base64-encoded fields in XML signature generated by calls to the javax.xml.crypto.* packages.

Additional information can be found at https://issues.apache.org/jira/browse/SANTUARIO-482.


core-libs/java.lang

Issue Description
JDK-8212828

POSIX_SPAWN Option on Linux


As an additional way to launch processes on Linux, the jdk.lang.Process.launchMechanism property can be set to POSIX_SPAWN. This option has been available for a long time on other *nix platforms. The default launch mechanism (VFORK) on Linux is unchanged, so this additional option does not affect existing installations.

POSIX_SPAWN mitigates rare pathological cases when spawning child processes, but it has not yet been excessively tested. Prudence is advised when using POSIX_SPAWN in productive installations.


security-libs/javax.crypto:pkcs11

Issue Description
JDK-6913047

Memory Growth Issue in SunPKCS11 Fixed


A memory growth issue in the SunPKCS11 cryptographic provider that affects the NSS back-end has been fixed.

A system property, sun.security.pkcs11.disableKeyExtraction has been introduced to disable the fix. A "true" value disables the fix, while a "false" value (default) keeps it enabled.

When enabled, PKCS#11 attributes of the NSS native keys are copied to Java byte buffers after key creation. Once used, NSS keys are destroyed and native heap space is freed up. If NSS keys are required again, they are recreated with the previously saved attributes.

Further information and implementation details can be found in the CSR: JDK-8213430


client-libs/javax.swing

Issue Description
JDK-8218472

GTK+ 3.20 and Later Unsupported by Swing


Due to incompatible changes in the GTK+ 3 library versions 3.20 and later, the Swing GTK Look and Feel does not render some UI components when using this library. Therefore Linux installations with versions of GTK+ 3.20 and above are not supported for use by the Swing GTK Look And Feel in this release. Affected applications on such configurations should specify the system property -Djdk.gtk.version=2.2 to request GTK2+ based rendering instead.


JDK-8218469

GTK+ 3.20 and Later Unsupported by Swing


Due to incompatible changes in the GTK+ 3 library versions 3.20 and later, the Swing GTK Look and Feel does not render some UI components when using this library. Therefore Linux installations with versions of GTK+ 3.20 and above are not supported for use by the Swing GTK Look And Feel in this release.


GTK+ 3.20 and Later Unsupported by Swing


Due to incompatible changes in the GTK+ 3 library versions 3.20 and later, the Swing GTK Look and Feel does not render some UI components when using this library. Therefore Linux installations with versions of GTK+ 3.20 and above are not supported for use by the Swing GTK Look And Feel in this release. Affected applications on such configurations should specify the system property -Djdk.gtk.version=2.2 to request GTK2+ based rendering instead.


GTK+ 3.20 and Later Unsupported by Swing


Due to incompatible changes in the GTK+ 3 library versions 3.20 and later, the Swing GTK Look and Feel does not render some UI components when using this library. Therefore Linux installations with versions of GTK+ 3.20 and above are not supported for use by the Swing GTK Look And Feel in this release. Affected applications on such configurations should specify the system property -Djdk.gtk.version=2.2 to request GTK2+ based rendering instead.


JDK-8218479

GTK+ 3.20 and Later Unsupported by Swing


Due to incompatible changes in the GTK+ 3 library versions 3.20 and later, the Swing GTK Look and Feel does not render some UI components when using this library. Therefore Linux installations with versions of GTK+ 3.20 and above are not supported for use by the Swing GTK Look And Feel in this release. Affected applications on such configurations should specify the system property -Djdk.gtk.version=2.2 to request GTK2+ based rendering instead.


JDK-8218470

GTK+ 3.20 and Later Unsupported by Swing


Due to incompatible changes in the GTK+ 3 library versions 3.20 and later, the Swing GTK Look and Feel does not render some UI components when using this library. Therefore Linux installations with versions of GTK+ 3.20 and above are not supported for use by the Swing GTK Look And Feel in this release. Affected applications on such configurations should specify the system property -Djdk.gtk.version=2.2 to request GTK2+ based rendering instead.


JDK-8218473

GTK+ 3.20 and Later Unsupported by Swing


Due to incompatible changes in the GTK+ 3 library versions 3.20 and later, the Swing GTK Look and Feel does not render some UI components when using this library. Therefore Linux installations with versions of GTK+ 3.20 and above are not supported for use by the Swing GTK Look And Feel in this release. Affected applications on such configurations should specify the system property -Djdk.gtk.version=2.2 to request GTK2+ based rendering instead.


security-libs/java.security

Issue Description
JDK-8222136

Removal of Two Comodo Root CA Certificates


Two Comodo root CA certificates have expired and were removed from the cacerts keystore: + alias name "utnuserfirstclientauthemailca [jdk]"

Distinguished Name: CN=UTN-USERFirst-Client Authentication and Email, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, ST=UT, C=US

  • alias name "utnuserfirsthardwareca [jdk]"

    Distinguished Name: CN=UTN-USERFirst-Hardware, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, ST=UT, C=US


JDK-8223499

Removal of Two DocuSign Root CA Certificates


Two DocuSign root CA certificates have expired and were removed from the cacerts keystore: + alias name "certplusclass2primaryca [jdk]"

Distinguished Name: CN=Class 2 Primary CA, O=Certplus, C=FR

  • alias name "certplusclass3pprimaryca [jdk]"

    Distinguished Name: CN=Class 3P Primary CA, O=Certplus, C=FR


JDK-8195793

Removal of GTE CyberTrust Global Root


The GTE CyberTrust Global Root certificate is expired and has been removed from the cacerts keystore: + alias name "gtecybertrustglobalca [jdk]"

Distinguished Name: CN=GTE CyberTrust Global Root, OU="GTE CyberTrust Solutions, Inc.", O=GTE Corporation, C=US


JDK-8216577

Added GlobalSign R6 Root Certificate


The following root certificate has been added to the cacerts truststore: ``` + GlobalSign + globalsignrootcar6

DN: CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R6

```


JDK-8222137

Removal of T-Systems Deutsche Telekom Root CA 2 Certificate


The T-Systems Deutsche Telekom Root CA 2 certificate has expired and was removed from the cacerts keystore: + alias name "deutschetelekomrootca2 [jdk]"

Distinguished Name: CN=Deutsche Telekom Root CA 2, OU=T-TeleSec Trust Center, O=Deutsche Telekom AG, C=DE


FIXED ISSUES

client-libs

Priority Bug Summary
P2 JDK-8210782 Upgrade HarfBuzz to 2.3.1
P3 JDK-8214002 Cannot use italic font style if the font has embedded bitmap
P3 JDK-8213614 DnD operation change feature does not work with 64bit big endian CPU
P3 JDK-8214252 Expanded & Collapsed nodes of a JTree look the same on GTK3
P3 JDK-8215364 JavaFX crashes on Ubuntu 18.04 with Wayland while using Swing-FX interop
P3 JDK-8208702 javax/swing/reliability/HangDuringStaticInitialization.java may hang on macos
P3 JDK-8208996 X11 icon window color handing bug

client-libs/2d

Priority Bug Summary
P2 JDK-8218020 Fix version number in mesa.md 3rd party legal file
P2 JDK-8224474 harfbuzz 2.3.1 code fails to compile with gcc 4.4.7
P3 JDK-8221263 [TEST_BUG] RemotePrinterStatusRefresh test is hard to use
P3 JDK-8212202 [Windows] Exception if no printers are installed.
P3 JDK-8217263 Automate DashOffset test
P3 JDK-8217707 JNICALL declaration breaks Splash screen functions
P3 JDK-8221412 lookupPrintServices() does not always update the list of Windows remote printers
P4 JDK-8218854 FontMetrics.getMaxAdvance may be less than the maximum FontMetrics.charWidth
P4 JDK-8139178 Wrong fontMetrics when printing in Landscape (OpenJDK)

client-libs/java.awt

Priority Bug Summary
P2 JDK-8213944 Fix AIX build after the removal of Xrandr.h and add a configure check for it
P2 JDK-8213292 Input freezes after MacOS key-selector (press&hold) usage on macOS Mojave
P2 JDK-8220495 Update GIFlib library to the 5.1.8
P3 JDK-8214765 All TrayIcon MessageType icons does not show up with gtk3 option set
P3 JDK-8212676 AWT SystemColor setting on CDE
P3 JDK-8210880 Remove HPKeysym.h from JDK sources
P3 JDK-8210886 Remove references in xwindows.md to non-existent files.
P3 JDK-8210863 Remove Xrandr include files from JDK sources
P3 JDK-8211826 StringIndexOutOfBoundsException happens via GetStringUTFRegion()
P3 JDK-8213232 Unix/X11 setCompositionEnableNative issue
P3 JDK-8212678 Windows IME related patch
P3 JDK-8212677 X11 default visual support for IM status window on VNC
P3 JDK-8214109 XToolkit is not correctly displayed color on 16-bit high color setting
P4 JDK-8213213 Remove src/java.desktop/unix/classes/sun/awt/X11/keysym2ucs.h
P4 JDK-8211810 X11 Time stamp data should be unsigned

client-libs/java.awt:i18n

Priority Bug Summary
P3 JDK-8211393 Memory leak issue on awt_InputMethod.c

client-libs/java.beans

Priority Bug Summary
P3 JDK-8221244 Unexpected behavior of PropertyDescription.getReadMethod for boolean properties

client-libs/javax.accessibility

Priority Bug Summary
P3 JDK-8190361 Incorrect version info in jaccessinspector.exe and jaccesswalker.exe

client-libs/javax.swing

Priority Bug Summary
P2 JDK-8218473 JOptionPane display issue with GTKLookAndFeel
P2 JDK-8218472 JProgressBar display issue with GTKLookAndFeel
P2 JDK-8218470 JScrollBar display issue with GTKLookAndFeel
P2 JDK-8218469 JSlider display issue with slider for GTKLookAndFeel
P2 JDK-8218479 JTextPane display issue with GTKLookAndFeel
P2 JDK-8203627 Swing applications with JRadioButton and JCheckbox fail to render correctly when using GTK3 and the GTK L&F
P3 JDK-8210739 Calling JSpinner's setFont with null throws NullPointerException
P3 JDK-8218674 HTML Tooltip with "img src=" on component doesn't show
P3 JDK-8220349 The fix done for JDK-8214253 have caused issues in JTree behaviour
P3 JDK-8214112 The whole text in target JPasswordField image are not selected.
P3 JDK-8214111 There is no icon in all JOptionPane target image
P3 JDK-8214253 Tooltip is transparent rather than having a black background

core-libs

Priority Bug Summary
P1 JDK-8207748 Fix for 8202794 breaks tier1 builds
P4 JDK-8202794 Native Unix code should use readdir rather than readdir_r

core-libs/java.io:serialization

Priority Bug Summary
P4 JDK-8220166 Performance regression in deserialization (4-6% in SPECjbb)

core-libs/java.lang

Priority Bug Summary
P4 JDK-8212828 (process) Provide a way for Runtime.exec to use posix_spawn on linux
P4 JDK-8221400 java/lang/String/StringRepeat.java test requests too much heap

core-libs/java.lang.invoke

Priority Bug Summary
P4 JDK-8206955 MethodHandleProxies.asInterfaceInstance does not support default methods

core-libs/java.math

Priority Bug Summary
P4 JDK-8221401 java/math/BigInteger/LargeValueExceptions.java test should be disabled on 32-bit platforms

core-libs/java.net

Priority Bug Summary
P3 JDK-8217094 HttpClient SSL race if a socket IOException is raised before ALPN is available
P3 JDK-8170494 JNI exception pending in PlainDatagramSocketImpl.c
P4 JDK-8217311 Improve Exception thrown when MulticastSocket.setInterface fails on AIX(Unix)
P4 JDK-8216355 missing NULL checks in libnet in interface iteration and potential resource leak in getMacAddress

core-libs/java.nio

Priority Bug Summary
P3 JDK-8223597 (zipfs) jdk/nio/zipfs/ZipFSTester.java RuntimeException: CHECK_FAILED! (getAttribute.crc failed 6af4413c vs 0 ...)
P3 JDK-8222532 (zipfs) Performance regression when writing ZipFileSystem entries in parallel
P3 JDK-8210899 (zipfs) ZipFileSystem.EntryOutputStreamCRC32 mistakenly set the crc32 value into size field
P4 JDK-8207340 (fs) UnixNativeDispatcher close and readdir usages should be fixed
P4 JDK-8215472 (zipfs) Cleanups in implementation classes of jdk.zipfs and tests
P4 JDK-8222410 java/nio/file/attribute/BasicFileAttributeView/UnixSocketFile hangs when "nc" does not accept "-U"

core-libs/java.nio.charsets

Priority Bug Summary
P3 JDK-8217880 AIX build issue after JDK-8214533
P3 JDK-8214533 IBM-29626C is required for AIX default charset
P3 JDK-8220281 IBM-858 alias name is missing on IBM00858 charset
P3 JDK-8212794 IBM-964 is required for AIX default charset
P3 JDK-8213618 IBM970 charset has missing entry and remove unexpected entries
P4 JDK-8208634 Add x-IBM-1129 charset

core-libs/java.util.concurrent

Priority Bug Summary
P3 JDK-8222930 ConcurrentSkipListMap.clone() shares size variable between original and clone

core-libs/java.util.logging

Priority Bug Summary
P4 JDK-8222027 TEST_BUG: java/util/logging/LogManager/TestLoggerNames.java generates intermittent ClassCastException

core-libs/java.util:collections

Priority Bug Summary
P3 JDK-8221924 get(null) on single-entry unmodifiable Map returns null instead of throwing NPE

core-libs/java.util:i18n

Priority Bug Summary
P2 JDK-8214935 Upgrade IANA LSR data
P3 JDK-8226876 Assertion in sun/util/locale/provider/CalendarDataUtility on Windows after JDK-8218960
P3 JDK-8218960 CONFIG level logging statements printed in CLDRCalendarDataProviderImpl.java even when default log Level is INFO
P3 JDK-8218781 Localized names for Japanese Era Reiwa in COMPAT provider
P3 JDK-8213294 Update IANA Language Subtag Registry to Version 2018-10-31

hotspot/compiler

Priority Bug Summary
P2 JDK-8221083 [ppc64] Wrong oop compare in C1-generated code
P2 JDK-8224671 AArch64: mauve System.arraycopy test failure
P2 JDK-8213825 assert(false) failed: Non-balanced monitor enter/exit! Likely JNI locking
P2 JDK-8215757 C2: PhaseIdealLoop::create_new_if_for_predicate() computes wrong IDOM
P2 JDK-8219448 split-if update_uses accesses stale idom data
P3 JDK-8219335 "failed: unexpected type" assert failure in ConnectionGraph::split_unique_types() with unsafe accesses
P3 JDK-8220714 C2 Compilation failure when accessing off-heap memory using Unsafe
P3 JDK-8220374 C2: LoopStripMining doesn't strip as expected
P3 JDK-8188133 C2: Static field accesses in clinit can trigger deoptimizations
P3 JDK-8210803 Compilation failure in codeBlob.cpp for Windows 32-bit
P3 JDK-8217564 idempotent protection missing in crc32c.h
P3 JDK-8205574 Loop predication "assert(f <= 1 && f >= 0) failed Incorrect frequency"
P3 JDK-8220198 Lots of com/sun/crypto/provider/Cipher tests fail on x86_32 due to missing SHA512 stubs
P3 JDK-8219582 PPC: Crash after C1 checkcast patched and GC
P3 JDK-8209951 Problematic sparc intrinsic: com.sun.crypto.provider.CipherBlockChaining
P3 JDK-8202414 Unsafe write after primitive array creation may result in array length change
P3 JDK-8222032 x86_32 fails with "wrong size of mach node" on AVX-512 machine
P4 JDK-8224880 AArch64: java/javac error with AllocatePrefetchDistance
P4 JDK-8219006 AArch64: Register corruption in slow subtype check
P4 JDK-8219011 Implement MacroAssembler::warn method on AArch64
P4 JDK-8210320 PPC64: Fix uninitialized variable in C1 LIR assembler code
P4 JDK-8218991 s390: Add intrinsic for GHASH algorithm
P4 JDK-8221483 TestOopCmp.java fails due to "Multiple garbage collectors selected"
P4 JDK-8216556 Unnecessary liveness computation with JVMTI
P4 JDK-8221870 use driver to run CtwRunner in applications/ctw tests
P4 JDK-8222397 x86_32 tests with UseSHA1Intrinsics SEGV due to garbled registers

hotspot/gc

Priority Bug Summary
P1 JDK-8218060 JDK-8217786 breaks build due to remaining unused function
P1 JDK-8218063 JDK-8218060 breaks build for S390
P2 JDK-8225716 G1 GC: Undefined behaviour in G1BlockOffsetTablePart::block_at_or_preceding

hotspot/jfr

Priority Bug Summary
P2 JDK-8220293 Deadlock in JFR string pool
P3 JDK-8213617 JFR should record the PID of the recorded process
P3 JDK-8217647 JFR: recordings on 32-bit systems unreadable
P3 JDK-8215284 Reduce noise induced by periodic task getFileSize()
P4 JDK-8221479 [s390] Fix JFR profiling
P4 JDK-8213015 Inconsistent settings between JFR.configure and -XX:FlightRecorderOptions
P4 JDK-8219566 JFR did not collect call stacks when MaxJavaStackTraceDepth is set to zero

hotspot/jvmti

Priority Bug Summary
P4 JDK-8209415 Fix JVMTI test failure HS202

hotspot/runtime

Priority Bug Summary
P1 JDK-8215374 32-bit build failures after JDK-8181143 (Introduce diagnostic flag to abort VM on too long VM operations)
P2 JDK-8217765 Internal Error (javaCalls.cpp:61) guarantee(thread->can_call_java()) failed
P2 JDK-8212205 VM asserts after CDS archive has been unmapped
P3 JDK-8220441 [PPC64] Clobber memory effect missing for memory barriers in atomics
P3 JDK-8215342 [Zero] Build fails after JDK-8200613
P3 JDK-8221535 add steal tick related information to hs_error file [linux]
P3 JDK-8221437 assert(java_lang_invoke_ResolvedMethodName::vmtarget(resolved_method()) == m()) failed: Should not change after link resolution
P3 JDK-8216970 condy causes JVM crash
P3 JDK-8205611 Improve the wording of LinkageErrors to include module and class loader information
P3 JDK-8202835 jfr/event/os/TestSystemProcess.java fails on missing events
P3 JDK-8210457 JVM crash in ResolvedMethodTable::add_method(Handle)
P3 JDK-8220718 Missing ResourceMark in nmethod::metadata_do
P3 JDK-8219746 Provide virtualization related info in the hs_error file on linux ppc64 / ppc64le
P3 JDK-8217786 Provide virtualization related info in the hs_error file on linux s390x
P4 JDK-8221639 [i386] expand_exec_shield_cs_limit workaround is undefined code after JDK-8199717
P4 JDK-8215707 [macosx] fix pthread_getschedparam and pthread_setschedparam calls
P4 JDK-8224828 aarch64: rflags is not correct after safepoint poll
P4 JDK-8219698 aarch64: SIGILL triggered when specifying unsupported hardware features
P4 JDK-8225402 events logging in deoptimization.cpp should go to deopt-log
P4 JDK-8221175 Fix bad function case for controlled JVM crash on PPC64 big-endian
P4 JDK-8217879 hs_err should print more instructions in hex dump
P4 JDK-8181143 Introduce diagnostic flag to abort VM on too long VM operations
P4 JDK-8220781 linux-s390 : os::get_summary_cpu_info gives bad output
P4 JDK-8219574 Minimal VM build failure after JDK-8219414
P4 JDK-8219112 name_and_sig_as_C_string usages in frame_s390 miss ResourceMark
P4 JDK-8202353 os::readdir should use readdir instead of readdir_r
P4 JDK-8223266 PPC64: Check for branch to illegal address before checking for mem serialization
P4 JDK-8220794 PPC64: Fix signal handler for SIGSEGV on branch to illegal address
P4 JDK-8223395 PPC64: Improve comments in the JVM signal handler to match ISA text
P4 JDK-8219460 ppc: adjust NativeGeneralJump::insert_unconditional to stack allocated MacroAssembler
P4 JDK-8221470 Print methods in exception messages in java-like Syntax.
P4 JDK-8221833 Readability check in Symbol::is_valid not performed for some addresses
P4 JDK-8218811 replace open by os::open in hotspot coding
P4 JDK-8219584 Try to dump error file by thread which causes safepoint timeout

hotspot/svc

Priority Bug Summary
P3 JDK-8209414 AArch64: method handle invocation does not respect JVMTI interp_only mode
P4 JDK-8221915 cleanup ticks related coding in os_perf_aix.cpp [aix]

hotspot/svc-agent

Priority Bug Summary
P3 JDK-8202884 SA: Attach/detach might fail on Linux if debugee application create/destroy threads during attaching
P3 JDK-8200613 SA: jstack throws UnmappedAddressException with a CDS core file
P3 JDK-8204308 SA: serviceability/sa/TestInstanceKlassSize*.java fails when running in CDS mode
P4 JDK-8163805 hotspot/test/serviceability/sa/sadebugd/SADebugDTest.java failed with timed out
P4 JDK-8218733 SA: CollectedHeap provides broken implementation for used() and capacity()
P4 JDK-8223665 SA: debugd options should follow jhsdb style
P4 JDK-8219414 SA: jhsdb jsnap throws UnmappedAddressException with core generated by gcore
P4 JDK-8221917 serviceability/sa/TestPrintMdo.java fails on 32-bit platforms

infrastructure/build

Priority Bug Summary
P2 JDK-8222913 Add Jib support for VERSION_EXTRA*
P2 JDK-8210519 build/releaseFile/CheckSource.java failed additional sources found
P3 JDK-8210837 Add libXrandr-devel to the Linux devkits
P3 JDK-8215296 do not disable c99 on Solaris
P4 JDK-8222522 Add configure options for Mac Bundle creation
P4 JDK-8221880 Better customization for Windows RC properties FileDescription and ProductName
P4 JDK-8213515 Improve freetype detection on linux/ppc64/ppc64le/s390x
P4 JDK-8211350 Remove jprt support
P4 JDK-8221610 Resurrect (legacy) JRE bundle target

security-libs/java.security

Priority Bug Summary
P2 JDK-8216577 Add GlobalSign's R6 Root certificate
P2 JDK-8217690 Update public suffix version
P3 JDK-8222133 Add temporary exceptions for root certs that are due to expire soon
P3 JDK-8218618 Program fails when using JDK addressed by UNC path and using Security Manager
P3 JDK-8195793 Remove GTE CyberTrust Global Root
P3 JDK-8222137 Remove T-Systems root CA certificate
P3 JDK-8222136 Remove two Comodo root CA certificates that are expiring
P3 JDK-8223499 Remove two DocuSign root certificates that are expiring
P3 JDK-8202651 Test ComodoCA.java fails
P3 JDK-8211969 test/jdk/lib/security/CheckBlacklistedCerts.java searching for wrong paths
P4 JDK-8223555 Cleanups in cacerts tests
P4 JDK-8211971 Move security/cacerts/VerifyCACerts.java and security/CheckBlacklistedCerts.java
P4 JDK-8212562 To remove lib/security from test/jdk/TEST.groups

security-libs/javax.crypto

Priority Bug Summary
P2 JDK-8226880 Backport of JDK-8208698 (Improved ECC Implementation) should not bring parts of JDK-8205476 (KeyAgreement#generateSecret is not reset for ECDH based algorithm)
P4 JDK-8208698 Improved ECC Implementation

security-libs/javax.crypto:pkcs11

Priority Bug Summary
P2 JDK-8217088 Disable JDK-6913047 fix (SunPKCS11 memory leak) after JDK-8216597 (SIGBUS error in getNativeKeyInfo)
P2 JDK-8216597 SIGBUS in Java_sun_security_pkcs11_wrapper_PKCS11_getNativeKeyInfo after JDK-6913047
P3 JDK-6913047 Long term memory leak when using PKCS11 and JCE exceeds 32 bit process address space
P4 JDK-8220513 Wrapper Key may get deleted when closing sessions in SunPKCS11 crypto provider

security-libs/javax.net.ssl

Priority Bug Summary
P2 JDK-8216045 The size of key_exchange may be wrong on FFDHE
P3 JDK-8219389 Delegated task created by SSLEngine throws BufferUnderflowException
P3 JDK-8215790 Delegated task created by SSLEngine throws java.nio.BufferUnderflowException
P3 JDK-8215443 The use of TransportContext.fatal() leads to bad coding style

security-libs/javax.xml.crypto

Priority Bug Summary
P2 JDK-8217878 ENVELOPING XML signature no longer works
P3 JDK-8218629 XML Digital Signature throws NAMESPACE_ERR exception on OpenJDK 11, works 8/9/10

tools/javac

Priority Bug Summary
P3 JDK-8218152 [javac] fails and exits with no error if a bad annotation processor provided
P3 JDK-8210197 javac can't tell during speculative attribution if a diamond expression is creating an anonymous inner class or not
P3 JDK-8220625 tools/javac/classreader/8171132/BadConstantValue.java failed with "did not see expected error"

tools/javadoc(tool)

Priority Bug Summary
P3 JDK-8209914 javadoc search sometimes generates bad URIs
P3 JDK-8214468 Upgrade jQuery UI to 1.12.1 from 1.11.4

tools/jlink

Priority Bug Summary
P3 JDK-8215123 Crash in runtime image built with jlink --compress=2
P3 JDK-8215026 Incorrect amount of memory unmapped with ImageFileReader::close()

xml/javax.xml.transform

Priority Bug Summary
P4 JDK-8207760 SAXException: Invalid UTF-16 surrogate detected: d83c ?