RELEASE NOTES FOR: 11.0.4 ==================================================================================================== Notes generated: Wed Oct 02 05:28:52 CEST 2024 Hint: Prefix bug IDs with https://bugs.openjdk.org/browse/ to reach the relevant JIRA entry. JAVA ENHANCEMENT PROPOSALS (JEP): None. RELEASE NOTES: security-libs/javax.xml.crypto: JDK-8217878: com.sun.org.apache.xml.internal.security.ignoreLineBreaks System Property An Apache Santuario library version upgrade, used by the javax.xml.crypto.* packages, introduces a behavioral change where a new Base64 encoder uses "\r\n" as end-of-line terminator. By default, XML signatures signed using API calls form the javax.xml.crypto.dsig package includes the escaped '\r' character, encoded as " " or " ". A new `com.sun.org.apache.xml.internal.security.ignoreLineBreaks` system property may be set to a value of "true" if an application is unable to handle the encoded output data changes where " " or " " get appended to new lines in encoding operations. The effect of this property is to not include the carriage return character in base64-encoded fields in XML signature generated by calls to the javax.xml.crypto.* packages. Additional information can be found at https://issues.apache.org/jira/browse/SANTUARIO-482. core-libs/java.lang: JDK-8212828: POSIX_SPAWN Option on Linux As an additional way to launch processes on Linux, the `jdk.lang.Process.launchMechanism` property can be set to `POSIX_SPAWN`. This option has been available for a long time on other *nix platforms. The default launch mechanism (`VFORK`) on Linux is unchanged, so this additional option does not affect existing installations. `POSIX_SPAWN` mitigates rare pathological cases when spawning child processes, but it has not yet been excessively tested. Prudence is advised when using `POSIX_SPAWN` in productive installations. security-libs/javax.crypto:pkcs11: JDK-6913047: Memory Growth Issue in SunPKCS11 Fixed A memory growth issue in the SunPKCS11 cryptographic provider that affects the NSS back-end has been fixed. A system property, `sun.security.pkcs11.disableKeyExtraction` has been introduced to disable the fix. A "`true`" value disables the fix, while a "`false`" value (default) keeps it enabled. When enabled, PKCS#11 attributes of the NSS native keys are copied to Java byte buffers after key creation. Once used, NSS keys are destroyed and native heap space is freed up. If NSS keys are required again, they are recreated with the previously saved attributes. Further information and implementation details can be found in the CSR: JDK-8213430 client-libs/javax.swing: JDK-8218472: GTK+ 3.20 and Later Unsupported by Swing Due to incompatible changes in the GTK+ 3 library versions 3.20 and later, the Swing GTK Look and Feel does not render some UI components when using this library. Therefore Linux installations with versions of GTK+ 3.20 and above are not supported for use by the Swing GTK Look And Feel in this release. Affected applications on such configurations should specify the system property `-Djdk.gtk.version=2.2` to request GTK2+ based rendering instead. JDK-8218469: GTK+ 3.20 and Later Unsupported by Swing Due to incompatible changes in the GTK+ 3 library versions 3.20 and later, the Swing GTK Look and Feel does not render some UI components when using this library. Therefore Linux installations with versions of GTK+ 3.20 and above are not supported for use by the Swing GTK Look And Feel in this release. JDK-8218469: GTK+ 3.20 and Later Unsupported by Swing Due to incompatible changes in the GTK+ 3 library versions 3.20 and later, the Swing GTK Look and Feel does not render some UI components when using this library. Therefore Linux installations with versions of GTK+ 3.20 and above are not supported for use by the Swing GTK Look And Feel in this release. Affected applications on such configurations should specify the system property `-Djdk.gtk.version=2.2` to request GTK2+ based rendering instead. JDK-8218469: GTK+ 3.20 and Later Unsupported by Swing Due to incompatible changes in the GTK+ 3 library versions 3.20 and later, the Swing GTK Look and Feel does not render some UI components when using this library. Therefore Linux installations with versions of GTK+ 3.20 and above are not supported for use by the Swing GTK Look And Feel in this release. Affected applications on such configurations should specify the system property -Djdk.gtk.version=2.2 to request GTK2+ based rendering instead. JDK-8218479: GTK+ 3.20 and Later Unsupported by Swing Due to incompatible changes in the GTK+ 3 library versions 3.20 and later, the Swing GTK Look and Feel does not render some UI components when using this library. Therefore Linux installations with versions of GTK+ 3.20 and above are not supported for use by the Swing GTK Look And Feel in this release. Affected applications on such configurations should specify the system property `-Djdk.gtk.version=2.2` to request GTK2+ based rendering instead. JDK-8218470: GTK+ 3.20 and Later Unsupported by Swing Due to incompatible changes in the GTK+ 3 library versions 3.20 and later, the Swing GTK Look and Feel does not render some UI components when using this library. Therefore Linux installations with versions of GTK+ 3.20 and above are not supported for use by the Swing GTK Look And Feel in this release. Affected applications on such configurations should specify the system property `-Djdk.gtk.version=2.2` to request GTK2+ based rendering instead. JDK-8218473: GTK+ 3.20 and Later Unsupported by Swing Due to incompatible changes in the GTK+ 3 library versions 3.20 and later, the Swing GTK Look and Feel does not render some UI components when using this library. Therefore Linux installations with versions of GTK+ 3.20 and above are not supported for use by the Swing GTK Look And Feel in this release. Affected applications on such configurations should specify the system property `-Djdk.gtk.version=2.2` to request GTK2+ based rendering instead. security-libs/java.security: JDK-8222136: Removal of Two Comodo Root CA Certificates Two Comodo root CA certificates have expired and were removed from the `cacerts` keystore: + alias name "utnuserfirstclientauthemailca [jdk]" Distinguished Name: CN=UTN-USERFirst-Client Authentication and Email, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, ST=UT, C=US + alias name "utnuserfirsthardwareca [jdk]" Distinguished Name: CN=UTN-USERFirst-Hardware, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, ST=UT, C=US JDK-8223499: Removal of Two DocuSign Root CA Certificates Two DocuSign root CA certificates have expired and were removed from the `cacerts` keystore: + alias name "certplusclass2primaryca [jdk]" Distinguished Name: CN=Class 2 Primary CA, O=Certplus, C=FR + alias name "certplusclass3pprimaryca [jdk]" Distinguished Name: CN=Class 3P Primary CA, O=Certplus, C=FR JDK-8195793: Removal of GTE CyberTrust Global Root The GTE CyberTrust Global Root certificate is expired and has been removed from the `cacerts` keystore: + alias name "gtecybertrustglobalca [jdk]" Distinguished Name: CN=GTE CyberTrust Global Root, OU="GTE CyberTrust Solutions, Inc.", O=GTE Corporation, C=US JDK-8216577: Added GlobalSign R6 Root Certificate The following root certificate has been added to the cacerts truststore: ``` + GlobalSign + globalsignrootcar6 DN: CN=GlobalSign, O=GlobalSign, OU=GlobalSign Root CA - R6 ``` JDK-8222137: Removal of T-Systems Deutsche Telekom Root CA 2 Certificate The T-Systems Deutsche Telekom Root CA 2 certificate has expired and was removed from the `cacerts` keystore: + alias name "deutschetelekomrootca2 [jdk]" Distinguished Name: CN=Deutsche Telekom Root CA 2, OU=T-TeleSec Trust Center, O=Deutsche Telekom AG, C=DE ALL FIXED ISSUES, BY COMPONENT AND PRIORITY: client-libs: (P2) JDK-8210782: Upgrade HarfBuzz to 2.3.1 (P3) JDK-8214002: Cannot use italic font style if the font has embedded bitmap (P3) JDK-8213614: DnD operation change feature does not work with 64bit big endian CPU (P3) JDK-8214252: Expanded & Collapsed nodes of a JTree look the same on GTK3 (P3) JDK-8215364: JavaFX crashes on Ubuntu 18.04 with Wayland while using Swing-FX interop (P3) JDK-8208702: javax/swing/reliability/HangDuringStaticInitialization.java may hang on macos (P3) JDK-8208996: X11 icon window color handing bug client-libs/2d: (P2) JDK-8218020: Fix version number in mesa.md 3rd party legal file (P2) JDK-8224474: harfbuzz 2.3.1 code fails to compile with gcc 4.4.7 (P3) JDK-8221263: [TEST_BUG] RemotePrinterStatusRefresh test is hard to use (P3) JDK-8212202: [Windows] Exception if no printers are installed. (P3) JDK-8217263: Automate DashOffset test (P3) JDK-8217707: JNICALL declaration breaks Splash screen functions (P3) JDK-8221412: lookupPrintServices() does not always update the list of Windows remote printers (P4) JDK-8218854: FontMetrics.getMaxAdvance may be less than the maximum FontMetrics.charWidth (P4) JDK-8139178: Wrong fontMetrics when printing in Landscape (OpenJDK) client-libs/java.awt: (P2) JDK-8213944: Fix AIX build after the removal of Xrandr.h and add a configure check for it (P2) JDK-8213292: Input freezes after MacOS key-selector (press&hold) usage on macOS Mojave (P2) JDK-8220495: Update GIFlib library to the 5.1.8 (P3) JDK-8214765: All TrayIcon MessageType icons does not show up with gtk3 option set (P3) JDK-8212676: AWT SystemColor setting on CDE (P3) JDK-8210880: Remove HPKeysym.h from JDK sources (P3) JDK-8210886: Remove references in xwindows.md to non-existent files. (P3) JDK-8210863: Remove Xrandr include files from JDK sources (P3) JDK-8211826: StringIndexOutOfBoundsException happens via GetStringUTFRegion() (P3) JDK-8213232: Unix/X11 setCompositionEnableNative issue (P3) JDK-8212678: Windows IME related patch (P3) JDK-8212677: X11 default visual support for IM status window on VNC (P3) JDK-8214109: XToolkit is not correctly displayed color on 16-bit high color setting (P4) JDK-8213213: Remove src/java.desktop/unix/classes/sun/awt/X11/keysym2ucs.h (P4) JDK-8211810: X11 Time stamp data should be unsigned client-libs/java.awt:i18n: (P3) JDK-8211393: Memory leak issue on awt_InputMethod.c client-libs/java.beans: (P3) JDK-8221244: Unexpected behavior of PropertyDescription.getReadMethod for boolean properties client-libs/javax.accessibility: (P3) JDK-8190361: Incorrect version info in jaccessinspector.exe and jaccesswalker.exe client-libs/javax.swing: (P2) JDK-8218473: JOptionPane display issue with GTKLookAndFeel (P2) JDK-8218472: JProgressBar display issue with GTKLookAndFeel (P2) JDK-8218470: JScrollBar display issue with GTKLookAndFeel (P2) JDK-8218469: JSlider display issue with slider for GTKLookAndFeel (P2) JDK-8218479: JTextPane display issue with GTKLookAndFeel (P2) JDK-8203627: Swing applications with JRadioButton and JCheckbox fail to render correctly when using GTK3 and the GTK L&F (P3) JDK-8210739: Calling JSpinner's setFont with null throws NullPointerException (P3) JDK-8218674: HTML Tooltip with "img src=" on component doesn't show (P3) JDK-8220349: The fix done for JDK-8214253 have caused issues in JTree behaviour (P3) JDK-8214112: The whole text in target JPasswordField image are not selected. (P3) JDK-8214111: There is no icon in all JOptionPane target image (P3) JDK-8214253: Tooltip is transparent rather than having a black background core-libs: (P1) JDK-8207748: Fix for 8202794 breaks tier1 builds (P4) JDK-8202794: Native Unix code should use readdir rather than readdir_r core-libs/java.io:serialization: (P4) JDK-8220166: Performance regression in deserialization (4-6% in SPECjbb) core-libs/java.lang: (P4) JDK-8212828: (process) Provide a way for Runtime.exec to use posix_spawn on linux (P4) JDK-8221400: java/lang/String/StringRepeat.java test requests too much heap core-libs/java.lang.invoke: (P4) JDK-8206955: MethodHandleProxies.asInterfaceInstance does not support default methods core-libs/java.math: (P4) JDK-8221401: java/math/BigInteger/LargeValueExceptions.java test should be disabled on 32-bit platforms core-libs/java.net: (P3) JDK-8217094: HttpClient SSL race if a socket IOException is raised before ALPN is available (P3) JDK-8170494: JNI exception pending in PlainDatagramSocketImpl.c (P4) JDK-8217311: Improve Exception thrown when MulticastSocket.setInterface fails on AIX(Unix) (P4) JDK-8216355: missing NULL checks in libnet in interface iteration and potential resource leak in getMacAddress core-libs/java.nio: (P3) JDK-8223597: (zipfs) jdk/nio/zipfs/ZipFSTester.java RuntimeException: CHECK_FAILED! (getAttribute.crc failed 6af4413c vs 0 ...) (P3) JDK-8222532: (zipfs) Performance regression when writing ZipFileSystem entries in parallel (P3) JDK-8210899: (zipfs) ZipFileSystem.EntryOutputStreamCRC32 mistakenly set the crc32 value into size field (P4) JDK-8207340: (fs) UnixNativeDispatcher close and readdir usages should be fixed (P4) JDK-8215472: (zipfs) Cleanups in implementation classes of jdk.zipfs and tests (P4) JDK-8222410: java/nio/file/attribute/BasicFileAttributeView/UnixSocketFile hangs when "nc" does not accept "-U" core-libs/java.nio.charsets: (P3) JDK-8217880: AIX build issue after JDK-8214533 (P3) JDK-8214533: IBM-29626C is required for AIX default charset (P3) JDK-8220281: IBM-858 alias name is missing on IBM00858 charset (P3) JDK-8212794: IBM-964 is required for AIX default charset (P3) JDK-8213618: IBM970 charset has missing entry and remove unexpected entries (P4) JDK-8208634: Add x-IBM-1129 charset core-libs/java.util.concurrent: (P3) JDK-8222930: ConcurrentSkipListMap.clone() shares size variable between original and clone core-libs/java.util.logging: (P4) JDK-8222027: TEST_BUG: java/util/logging/LogManager/TestLoggerNames.java generates intermittent ClassCastException core-libs/java.util:collections: (P3) JDK-8221924: get(null) on single-entry unmodifiable Map returns null instead of throwing NPE core-libs/java.util:i18n: (P2) JDK-8214935: Upgrade IANA LSR data (P3) JDK-8226876: Assertion in sun/util/locale/provider/CalendarDataUtility on Windows after JDK-8218960 (P3) JDK-8218960: CONFIG level logging statements printed in CLDRCalendarDataProviderImpl.java even when default log Level is INFO (P3) JDK-8218781: Localized names for Japanese Era Reiwa in COMPAT provider (P3) JDK-8213294: Update IANA Language Subtag Registry to Version 2018-10-31 hotspot/compiler: (P2) JDK-8221083: [ppc64] Wrong oop compare in C1-generated code (P2) JDK-8224671: AArch64: mauve System.arraycopy test failure (P2) JDK-8213825: assert(false) failed: Non-balanced monitor enter/exit! Likely JNI locking (P2) JDK-8215757: C2: PhaseIdealLoop::create_new_if_for_predicate() computes wrong IDOM (P2) JDK-8219448: split-if update_uses accesses stale idom data (P3) JDK-8219335: "failed: unexpected type" assert failure in ConnectionGraph::split_unique_types() with unsafe accesses (P3) JDK-8220714: C2 Compilation failure when accessing off-heap memory using Unsafe (P3) JDK-8220374: C2: LoopStripMining doesn't strip as expected (P3) JDK-8188133: C2: Static field accesses in clinit can trigger deoptimizations (P3) JDK-8210803: Compilation failure in codeBlob.cpp for Windows 32-bit (P3) JDK-8217564: idempotent protection missing in crc32c.h (P3) JDK-8205574: Loop predication "assert(f <= 1 && f >= 0) failed Incorrect frequency" (P3) JDK-8220198: Lots of com/sun/crypto/provider/Cipher tests fail on x86_32 due to missing SHA512 stubs (P3) JDK-8219582: PPC: Crash after C1 checkcast patched and GC (P3) JDK-8209951: Problematic sparc intrinsic: com.sun.crypto.provider.CipherBlockChaining (P3) JDK-8202414: Unsafe write after primitive array creation may result in array length change (P3) JDK-8222032: x86_32 fails with "wrong size of mach node" on AVX-512 machine (P4) JDK-8224880: AArch64: java/javac error with AllocatePrefetchDistance (P4) JDK-8219006: AArch64: Register corruption in slow subtype check (P4) JDK-8219011: Implement MacroAssembler::warn method on AArch64 (P4) JDK-8210320: PPC64: Fix uninitialized variable in C1 LIR assembler code (P4) JDK-8218991: s390: Add intrinsic for GHASH algorithm (P4) JDK-8221483: TestOopCmp.java fails due to "Multiple garbage collectors selected" (P4) JDK-8216556: Unnecessary liveness computation with JVMTI (P4) JDK-8221870: use driver to run CtwRunner in applications/ctw tests (P4) JDK-8222397: x86_32 tests with UseSHA1Intrinsics SEGV due to garbled registers hotspot/gc: (P1) JDK-8218060: JDK-8217786 breaks build due to remaining unused function (P1) JDK-8218063: JDK-8218060 breaks build for S390 (P2) JDK-8225716: G1 GC: Undefined behaviour in G1BlockOffsetTablePart::block_at_or_preceding hotspot/jfr: (P2) JDK-8220293: Deadlock in JFR string pool (P3) JDK-8213617: JFR should record the PID of the recorded process (P3) JDK-8217647: JFR: recordings on 32-bit systems unreadable (P3) JDK-8215284: Reduce noise induced by periodic task getFileSize() (P4) JDK-8221479: [s390] Fix JFR profiling (P4) JDK-8213015: Inconsistent settings between JFR.configure and -XX:FlightRecorderOptions (P4) JDK-8219566: JFR did not collect call stacks when MaxJavaStackTraceDepth is set to zero hotspot/jvmti: (P4) JDK-8209415: Fix JVMTI test failure HS202 hotspot/runtime: (P1) JDK-8215374: 32-bit build failures after JDK-8181143 (Introduce diagnostic flag to abort VM on too long VM operations) (P2) JDK-8217765: Internal Error (javaCalls.cpp:61) guarantee(thread->can_call_java()) failed (P2) JDK-8212205: VM asserts after CDS archive has been unmapped (P3) JDK-8220441: [PPC64] Clobber memory effect missing for memory barriers in atomics (P3) JDK-8215342: [Zero] Build fails after JDK-8200613 (P3) JDK-8221535: add steal tick related information to hs_error file [linux] (P3) JDK-8221437: assert(java_lang_invoke_ResolvedMethodName::vmtarget(resolved_method()) == m()) failed: Should not change after link resolution (P3) JDK-8216970: condy causes JVM crash (P3) JDK-8205611: Improve the wording of LinkageErrors to include module and class loader information (P3) JDK-8202835: jfr/event/os/TestSystemProcess.java fails on missing events (P3) JDK-8210457: JVM crash in ResolvedMethodTable::add_method(Handle) (P3) JDK-8220718: Missing ResourceMark in nmethod::metadata_do (P3) JDK-8219746: Provide virtualization related info in the hs_error file on linux ppc64 / ppc64le (P3) JDK-8217786: Provide virtualization related info in the hs_error file on linux s390x (P4) JDK-8221639: [i386] expand_exec_shield_cs_limit workaround is undefined code after JDK-8199717 (P4) JDK-8215707: [macosx] fix pthread_getschedparam and pthread_setschedparam calls (P4) JDK-8224828: aarch64: rflags is not correct after safepoint poll (P4) JDK-8219698: aarch64: SIGILL triggered when specifying unsupported hardware features (P4) JDK-8225402: events logging in deoptimization.cpp should go to deopt-log (P4) JDK-8221175: Fix bad function case for controlled JVM crash on PPC64 big-endian (P4) JDK-8217879: hs_err should print more instructions in hex dump (P4) JDK-8181143: Introduce diagnostic flag to abort VM on too long VM operations (P4) JDK-8220781: linux-s390 : os::get_summary_cpu_info gives bad output (P4) JDK-8219574: Minimal VM build failure after JDK-8219414 (P4) JDK-8219112: name_and_sig_as_C_string usages in frame_s390 miss ResourceMark (P4) JDK-8202353: os::readdir should use readdir instead of readdir_r (P4) JDK-8223266: PPC64: Check for branch to illegal address before checking for mem serialization (P4) JDK-8220794: PPC64: Fix signal handler for SIGSEGV on branch to illegal address (P4) JDK-8223395: PPC64: Improve comments in the JVM signal handler to match ISA text (P4) JDK-8219460: ppc: adjust NativeGeneralJump::insert_unconditional to stack allocated MacroAssembler (P4) JDK-8221470: Print methods in exception messages in java-like Syntax. (P4) JDK-8221833: Readability check in Symbol::is_valid not performed for some addresses (P4) JDK-8218811: replace open by os::open in hotspot coding (P4) JDK-8219584: Try to dump error file by thread which causes safepoint timeout hotspot/svc: (P3) JDK-8209414: AArch64: method handle invocation does not respect JVMTI interp_only mode (P4) JDK-8221915: cleanup ticks related coding in os_perf_aix.cpp [aix] hotspot/svc-agent: (P3) JDK-8202884: SA: Attach/detach might fail on Linux if debugee application create/destroy threads during attaching (P3) JDK-8200613: SA: jstack throws UnmappedAddressException with a CDS core file (P3) JDK-8204308: SA: serviceability/sa/TestInstanceKlassSize*.java fails when running in CDS mode (P4) JDK-8163805: hotspot/test/serviceability/sa/sadebugd/SADebugDTest.java failed with timed out (P4) JDK-8218733: SA: CollectedHeap provides broken implementation for used() and capacity() (P4) JDK-8223665: SA: debugd options should follow jhsdb style (P4) JDK-8219414: SA: jhsdb jsnap throws UnmappedAddressException with core generated by gcore (P4) JDK-8221917: serviceability/sa/TestPrintMdo.java fails on 32-bit platforms infrastructure/build: (P2) JDK-8222913: Add Jib support for VERSION_EXTRA* (P2) JDK-8210519: build/releaseFile/CheckSource.java failed additional sources found (P3) JDK-8210837: Add libXrandr-devel to the Linux devkits (P3) JDK-8215296: do not disable c99 on Solaris (P4) JDK-8222522: Add configure options for Mac Bundle creation (P4) JDK-8221880: Better customization for Windows RC properties FileDescription and ProductName (P4) JDK-8213515: Improve freetype detection on linux/ppc64/ppc64le/s390x (P4) JDK-8211350: Remove jprt support (P4) JDK-8221610: Resurrect (legacy) JRE bundle target security-libs/java.security: (P2) JDK-8216577: Add GlobalSign's R6 Root certificate (P2) JDK-8217690: Update public suffix version (P3) JDK-8222133: Add temporary exceptions for root certs that are due to expire soon (P3) JDK-8218618: Program fails when using JDK addressed by UNC path and using Security Manager (P3) JDK-8195793: Remove GTE CyberTrust Global Root (P3) JDK-8222137: Remove T-Systems root CA certificate (P3) JDK-8222136: Remove two Comodo root CA certificates that are expiring (P3) JDK-8223499: Remove two DocuSign root certificates that are expiring (P3) JDK-8202651: Test ComodoCA.java fails (P3) JDK-8211969: test/jdk/lib/security/CheckBlacklistedCerts.java searching for wrong paths (P4) JDK-8223555: Cleanups in cacerts tests (P4) JDK-8211971: Move security/cacerts/VerifyCACerts.java and security/CheckBlacklistedCerts.java (P4) JDK-8212562: To remove lib/security from test/jdk/TEST.groups security-libs/javax.crypto: (P2) JDK-8226880: Backport of JDK-8208698 (Improved ECC Implementation) should not bring parts of JDK-8205476 (KeyAgreement#generateSecret is not reset for ECDH based algorithm) (P4) JDK-8208698: Improved ECC Implementation security-libs/javax.crypto:pkcs11: (P2) JDK-8217088: Disable JDK-6913047 fix (SunPKCS11 memory leak) after JDK-8216597 (SIGBUS error in getNativeKeyInfo) (P2) JDK-8216597: SIGBUS in Java_sun_security_pkcs11_wrapper_PKCS11_getNativeKeyInfo after JDK-6913047 (P3) JDK-6913047: Long term memory leak when using PKCS11 and JCE exceeds 32 bit process address space (P4) JDK-8220513: Wrapper Key may get deleted when closing sessions in SunPKCS11 crypto provider security-libs/javax.net.ssl: (P2) JDK-8216045: The size of key_exchange may be wrong on FFDHE (P3) JDK-8219389: Delegated task created by SSLEngine throws BufferUnderflowException (P3) JDK-8215790: Delegated task created by SSLEngine throws java.nio.BufferUnderflowException (P3) JDK-8215443: The use of TransportContext.fatal() leads to bad coding style security-libs/javax.xml.crypto: (P2) JDK-8217878: ENVELOPING XML signature no longer works (P3) JDK-8218629: XML Digital Signature throws NAMESPACE_ERR exception on OpenJDK 11, works 8/9/10 tools/javac: (P3) JDK-8218152: [javac] fails and exits with no error if a bad annotation processor provided (P3) JDK-8210197: javac can't tell during speculative attribution if a diamond expression is creating an anonymous inner class or not (P3) JDK-8220625: tools/javac/classreader/8171132/BadConstantValue.java failed with "did not see expected error" tools/javadoc(tool): (P3) JDK-8209914: javadoc search sometimes generates bad URIs (P3) JDK-8214468: Upgrade jQuery UI to 1.12.1 from 1.11.4 tools/jlink: (P3) JDK-8215123: Crash in runtime image built with jlink --compress=2 (P3) JDK-8215026: Incorrect amount of memory unmapped with ImageFileReader::close() xml/javax.xml.transform: (P4) JDK-8207760: SAXException: Invalid UTF-16 surrogate detected: d83c ?