RELEASE NOTES FOR: 9.0.4 ==================================================================================================== Notes generated: Mon Jan 03 22:54:45 CET 2022 Hint: Prefix bug IDs with https://bugs.openjdk.java.net/browse/ to reach the relevant JIRA entry. JAVA ENHANCEMENT PROPOSALS (JEP): None. RELEASE NOTES, BY COMPONENT: deploy/webstart: JDK-8182617: Parsing of <param> elements in JavaFX application JNLP JavaFX applications deployed with <application-desc type="JavaFX"> <param name="param1" value="foo"/> </application-desc> will have their <param> elements ignored. It is recommended that JavaFX applications relying on parameter values continue to use the <javafx-desc> element of the xml extension until this is resolved. JDK-8186316: JNLP files won't launch from IE11 on Windows 10 Creators Update Web-start applications cannot be launched when clicking JNLP link from IE 11 on Windows 10 Creators Update when 64-bit JRE is installed. Workaround is to uninstall 64-bit JRE and use only 32-bit JRE. JDK-8195651: JNLP files won't launch from IE11 on Windows 10 Creators Update Web-start applications cannot be launched when clicking JNLP link from IE 11 on Windows 10 Creators Update when 64-bit JRE is installed. Workaround is to uninstall 64-bit JRE and use only 32-bit JRE. JDK-8182617: Parsing of <param> elements in JavaFX application JNLP JavaFX applications deployed with <application-desc type="JavaFX"> <param name="param1" value="foo"/> </application-desc> will have their <param> elements ignored. It is recommended that JavaFX applications relying on parameter values continue to use the <javafx-desc> element of the xml extension until this is resolved. JDK-8186316: JNLP files won't launch from IE11 on Windows 10 Creators Update Web-start applications cannot be launched when clicking JNLP link from IE 11 on Windows 10 Creators Update when 64-bit JRE is installed. Workaround is to uninstall 64-bit JRE and use only 32-bit JRE. JDK-8195651: JNLP files won't launch from IE11 on Windows 10 Creators Update Web-start applications cannot be launched when clicking JNLP link from IE 11 on Windows 10 Creators Update when 64-bit JRE is installed. Workaround is to uninstall 64-bit JRE and use only 32-bit JRE. security-libs/java.security: JDK-8189357: TLS does not work by default on OpenJDK 9 The OpenJDK 9 binary for Linux x64 contains an empty `cacerts` keystore. This prevents TLS connections from being established because there are no Trusted Root Certificate Authorities installed. You may see an exception like the following: `javax.net.ssl.SSLException: java.lang.RuntimeException: Unexpected error: java.security.InvalidAlgorithmParameterException: the trustAnchors parameter must be non-empty` As a workaround, users can set the `javax.net.ssl.trustStore` System Property to use a different keystore. For example, the `ca-certificates` package on Oracle Linux 7 contains the set of Root CA certificates chosen by the Mozilla Foundation for use with the Internet PKI. This package installs a trust store at `/etc/pki/java/cacerts`, which can be used by OpenJDK 9. Only the OpenJDK 64 bit Linux download is impacted. This issue does not apply to any Oracle JRE/JDK download. Progress on open-sourcing the Oracle JDK Root CAs can be tracked through the issue JDK-8189131. JDK-8193890: JEP 319 Root Certificates Provides a default set of root Certification Authority (CA) certificates in the JDK. The `cacerts` keystore of the OpenJDK 9 binary for Linux x64 has been populated by [JEP 319: Root Certificates](http://openjdk.java.net/jeps/319) [1] with a set of root certificates issued by the CAs of Oracle's Java SE Root CA Program. This addresses the problem of the empty `cacerts` keystore in the OpenJDK 9 binary for Linux x64. The empty `cacerts` keystore had prevented TLS connections from being established because Trusted Root Certificate Authorities were not installed. As a workaround for OpenJDK 9 binaries, users had to set the `javax.net.ssl.trustStore` System Property to use a different keystore. [1] https://bugs.java.com/view_bug.do?bug_id=JDK-8191486 core-libs: JDK-8182409: Deprecate sun.misc.Unsafe.defineClass The method `sun.misc.Unsafe.defineClass` is deprecated for removal. Use the method `java.lang.invoke.MethodHandles.Lookup.defineClass` to define a class to the same class loader and in the same runtime package and protection domain of a given `Lookup`'s lookup class. hotspot/compiler: JDK-8184175: AVX-512 (AVX3) instructions set support JDK 9 will support code generation for AVX-512 (AVX3) instructions set on x86 CPUs, but not by default. A maximum of AVX2 is supported by default in JDK 9. The flag -XX:UseAVX=3 can be used to enable AVX-512 code generation on CPUs that support it. security-libs/javax.net.ssl: JDK-8189412: Disable exportable cipher suites To improve the strength of SSL/TLS connections, exportable cipher suites have been disabled in SSL/TLS connections in the JDK by the `jdk.tls.disabledAlgorithms` Security Property. JDK-8244613: Negotiated Finite Field Diffie-Hellman Ephemeral Parameters for TLS The JDK SunJSSE implementation now supports the TLS FFDHE mechanisms defined in RFC 7919. If a server cannot process the `supported_groups` TLS extension or the named groups in the extension, applications can either customize the supported group names with `jdk.tls.namedGroups`, or turn off the FFDHE mechanisms by setting the System Property `jsse.enableFFDHE` to `false`. JDK-8173597: Negotiated Finite Field Diffie-Hellman Ephemeral Parameters for TLS The JDK SunJSSE implementation now supports the TLS FFDHE mechanisms defined in RFC 7919. If a server cannot process the `supported_groups` TLS extension or the named groups in the extension, applications can either customize the supported group names with `jdk.tls.namedGroups`, or turn off the FFDHE mechanisms by setting the System Property `jsse.enableFFDHEExtension` to `false`. JDK-8192045: TLS Session Hash and Extended Master Secret Extension Support Support has been added for the TLS session hash and extended master secret extension (RFC 7627) in JDK JSSE provider. Note that in general, a server certificate change is restricted if endpoint identification is not enabled and the previous handshake is a session-resumption abbreviated initial handshake, unless the identities represented by both certificates can be regarded as the same. However, if the extension is enabled or negotiated, the server certificate changing restriction is not necessary and will be discarded accordingly. In case of compatibility issues, an application may disable negotiation of this extension by setting the System Property `jdk.tls.useExtendedMasterSecret` to `false` in the JDK. By setting the System Property `jdk.tls.allowLegacyResumption` to `false`, an application can reject abbreviated handshaking when the session hash and extended master secret extension are not negotiated. By setting the System Property `jdk.tls.allowLegacyMasterSecret` to `false`, an application can reject connections that do not support the session hash and extended master secret extension. JDK-8189412: Disable exportable cipher suites To improve the strength of SSL/TLS connections, exportable cipher suites have been disabled in SSL/TLS connections in the JDK by the `jdk.tls.disabledAlgorithms` Security Property. JDK-8244613: Negotiated Finite Field Diffie-Hellman Ephemeral Parameters for TLS The JDK SunJSSE implementation now supports the TLS FFDHE mechanisms defined in RFC 7919. If a server cannot process the `supported_groups` TLS extension or the named groups in the extension, applications can either customize the supported group names with `jdk.tls.namedGroups`, or turn off the FFDHE mechanisms by setting the System Property `jsse.enableFFDHE` to `false`. JDK-8173597: Negotiated Finite Field Diffie-Hellman Ephemeral Parameters for TLS The JDK SunJSSE implementation now supports the TLS FFDHE mechanisms defined in RFC 7919. If a server cannot process the `supported_groups` TLS extension or the named groups in the extension, applications can either customize the supported group names with `jdk.tls.namedGroups`, or turn off the FFDHE mechanisms by setting the System Property `jsse.enableFFDHEExtension` to `false`. JDK-8192045: TLS Session Hash and Extended Master Secret Extension Support Support has been added for the TLS session hash and extended master secret extension (RFC 7627) in JDK JSSE provider. Note that in general, a server certificate change is restricted if endpoint identification is not enabled and the previous handshake is a session-resumption abbreviated initial handshake, unless the identities represented by both certificates can be regarded as the same. However, if the extension is enabled or negotiated, the server certificate changing restriction is not necessary and will be discarded accordingly. In case of compatibility issues, an application may disable negotiation of this extension by setting the System Property `jdk.tls.useExtendedMasterSecret` to `false` in the JDK. By setting the System Property `jdk.tls.allowLegacyResumption` to `false`, an application can reject abbreviated handshaking when the session hash and extended master secret extension are not negotiated. By setting the System Property `jdk.tls.allowLegacyMasterSecret` to `false`, an application can reject connections that do not support the session hash and extended master secret extension. JDK-8189412: Disable exportable cipher suites To improve the strength of SSL/TLS connections, exportable cipher suites have been disabled in SSL/TLS connections in the JDK by the `jdk.tls.disabledAlgorithms` Security Property. JDK-8244613: Negotiated Finite Field Diffie-Hellman Ephemeral Parameters for TLS The JDK SunJSSE implementation now supports the TLS FFDHE mechanisms defined in RFC 7919. If a server cannot process the `supported_groups` TLS extension or the named groups in the extension, applications can either customize the supported group names with `jdk.tls.namedGroups`, or turn off the FFDHE mechanisms by setting the System Property `jsse.enableFFDHE` to `false`. JDK-8173597: Negotiated Finite Field Diffie-Hellman Ephemeral Parameters for TLS The JDK SunJSSE implementation now supports the TLS FFDHE mechanisms defined in RFC 7919. If a server cannot process the `supported_groups` TLS extension or the named groups in the extension, applications can either customize the supported group names with `jdk.tls.namedGroups`, or turn off the FFDHE mechanisms by setting the System Property `jsse.enableFFDHEExtension` to `false`. JDK-8192045: TLS Session Hash and Extended Master Secret Extension Support Support has been added for the TLS session hash and extended master secret extension (RFC 7627) in JDK JSSE provider. Note that in general, a server certificate change is restricted if endpoint identification is not enabled and the previous handshake is a session-resumption abbreviated initial handshake, unless the identities represented by both certificates can be regarded as the same. However, if the extension is enabled or negotiated, the server certificate changing restriction is not necessary and will be discarded accordingly. In case of compatibility issues, an application may disable negotiation of this extension by setting the System Property `jdk.tls.useExtendedMasterSecret` to `false` in the JDK. By setting the System Property `jdk.tls.allowLegacyResumption` to `false`, an application can reject abbreviated handshaking when the session hash and extended master secret extension are not negotiated. By setting the System Property `jdk.tls.allowLegacyMasterSecret` to `false`, an application can reject connections that do not support the session hash and extended master secret extension. ALL FIXED ISSUES, BY COMPONENT AND PRIORITY: client-libs/2d: (P2) JDK-8181192: [macos] javafx.print.PrinterJob.showPrintDialog() hangs on macOS (P2) JDK-8177393: Result of RescaleOp for 4BYTE_ABGR images may be 25% black (P4) JDK-8177628: Opensource unit/regression tests for ImageIO client-libs/java.awt: (P2) JDK-8179014: JFileChooser with Windows look and feel crashes on win 10 (P3) JDK-8066005: java.awt.event.KeyEvent.originalSource doesn't have "since" tag in Serialized Form (P3) JDK-8180326: Update the tables in java.desktop to be HTML-5 friendly (P4) JDK-8172510: [TEST_BUG][macosx] set autodelay in java/awt/List/ItemEventTest/ItemEventTest.java (P4) JDK-8180889: Cleanup of javadoc in java.datatransfer module client-libs/javax.accessibility: (P2) JDK-8175915: NullPointerException from JComboBox and JList when Accessibility enabled client-libs/javax.sound: (P3) JDK-8180452: Mark ClipCloseLoss.java as failing intermittently (P4) JDK-8178383: Validation of FileIO in the tests for JavaSound should be stricter client-libs/javax.swing: (P2) JDK-8178996: [macos] JComboBox doesn't display popup in mixed JavaFX Swing Application on 8u131 and Mac OS 10.12 (P2) JDK-8179665: [Windows] java.awt.IllegalComponentStateException: component must be showing on the screen to determine its location (P4) JDK-8169897: [PIT] javax/swing/plaf/basic/BasicGraphicsUtils/8132119/bug8132119.java fails (P4) JDK-8181877: Cleanup of javadoc in javax.accessibility package (P4) JDK-8181401: Error in Javadoc for JTabbedPane getAccessibleName() (P4) JDK-8181894: java.desktop module documentation has links to technotes (P4) JDK-8181640: Spelling mistake in javadoc: javax.swing.JEditorPane.scrollToReference(String) core-libs: (P1) JDK-8183161: Fix font-family style attributes in module declarations (P1) JDK-8182776: Fix typos in module declarations (P1) JDK-8183251: Meta "keywords" tag malformed in overview-summary.html and related pages (P2) JDK-8181292: Backport Rename internal Unsafe.compare methods from 10 to 9 (P2) JDK-8182416: Clean up module-info.java like move requires transitive adjacent to exports (P2) JDK-8181442: Deprecate sun.misc.Unsafe.defineClass (P3) JDK-8181639: Add tool and services information to module summary (P3) JDK-8180176: Broken javadoc links in java.logging and java.naming (P3) JDK-8181156: html5 doclint issues in java.base javadoc (P3) JDK-8181290: Invalid HTML 5 in core-libs docs (P3) JDK-8175131: sun.rmi.transport.tcp.TCPChannel.createConnection close connection on timeout (P3) JDK-8181148: Update the jdeps build tool to list exported packages instead of just internal APIs (P4) JDK-8181867: [tests] Reorganize EchoHandlers core-libs/java.io: (P3) JDK-7086489: File.lastModified should specify accuracy as well as resolution (P4) JDK-6791812: (file spec) Incompatible File.lastModified() and setLastModified() for negative time (P4) JDK-8180885: Create test to detect if TimeZone.setDefault affects File.setLastModifiedTime (P4) JDK-8180353: FileOutputStream documentation does not indicate properly whether files get truncated or not core-libs/java.io:serialization: (P3) JDK-8180082: Broken javadoc links (P3) JDK-8180319: Update Serialization spec to omit obsolete serialver -show and change history (P4) JDK-8180807: java.io.Serializable class-level readObject description error core-libs/java.lang: (P2) JDK-8182652: RuntimePermission("usePolicy") is not a Java SE permission (P2) JDK-8179592: Update tables in java.base to be HTML 5-friendly. (P3) JDK-8180137: fix broken link in java.lang.Iterable core-libs/java.lang.invoke: (P1) JDK-8184119: Incorrect return processing for the LF editor of MethodHandles.permuteArguments (P5) JDK-8180075: Javadoc of MethodHandles.Lookup::bind should note the difference from MethodHandle::bindTo core-libs/java.lang.module: (P2) JDK-8181087: Module system implementation refresh (6/2017 update) (P2) JDK-8182482: Module System spec updates core-libs/java.lang:class_loading: (P2) JDK-8181696: Package versioning link does not exist in JAR file specification (P4) JDK-8177328: java/lang/ClassLoader/securityManager/ClassLoaderTest.java times out with -Xcomp (P4) JDK-8180633: Remove intermittent key from java/lang/ClassLoader/Assert.java core-libs/java.lang:reflect: (P2) JDK-8074977: Constructor.getAnnotatedParameterTypes returns wrong value core-libs/java.net: (P2) JDK-8180424: Another build issue on AIX after 8034174 (P2) JDK-8181430: HTTP/2 client might deadlock when receiving data during the initial handshake (P2) JDK-8180044: java/net/httpclient/ManyRequests.java failed due to timeout (P2) JDK-8180498: Remove httpclient internal APIs which supply ByteBuffers to read calls (P2) JDK-8180155: WebSocket secure connection get stuck after onOpen (P3) JDK-8179697: Fix Html5 errors in java.naming, java.logging, jdk.httpserver, jdk.net, jdk.sctp (P3) JDK-8156518: WebSocket.Builder.connectTimeout(long timeout, TimeUnit unit) implicitly affect websocket connection timeout (P4) JDK-8180279: java/net/httpclient/whitebox/Driver.java failed due to timeout (P4) JDK-8180303: Remove technote doc link from ProxySelector/B8035158.java test (P4) JDK-7155591: test/java/net/MulticastSocket/SetOutgoingIf.java fails on macOS core-libs/java.nio: (P4) JDK-8180085: (ch) java/nio/channels/SocketChannel/VectorIO.java: add debug instrumentation (P4) JDK-8180431: Remove "intermittent" keyword from some no longer failing NIO tests core-libs/java.rmi: (P2) JDK-8180582: After updating to Java8u131, the bind to rmiregistry is rejected by registryFilter even though registryFilter is set (P2) JDK-8180949: Correctly handle exception in TCPChannel.createConnection core-libs/java.sql: (P3) JDK-8180256: Fix HTML 5 issues in java.sql and java.sql.rowset modules (P4) JDK-8180728: DatabaseMetaData.getRowIdLifetime() refers to an int return value rather than enum core-libs/java.time: (P2) JDK-8190258: (tz) Support tzdata2017c (P3) JDK-8180428: Clarify implementation note in Clock.java to match implementation changes made by JDK-8068730 (P4) JDK-8190259: test tck.java.time.zone.TCKZoneRules is broken by tzdata2017c core-libs/java.util: (P4) JDK-8181824: Broken javadoc link in java.util.BitSet core-libs/java.util.concurrent: (P2) JDK-8179515: Class java.util.concurrent.ThreadLocalRandom fails to Initialize when using SecurityManager (P3) JDK-8181104: Fix specs for updateAndGet and related methods core-libs/java.util.jar: (P1) JDK-8184306: zlib 1.2.11 upgrade triggers j.u.zip.Deflater regression (P2) JDK-8182023: some java.util.jar docs contain links to technotes (P2) JDK-8182494: Update jar specification for Automatic-Module-Name (P3) JDK-8150681: Update JAR specification for multi-release jar files core-libs/java.util:collections: (P3) JDK-8181334: add spec for Deque.addAll (P3) JDK-8177788: migrate collections technotes/guides into java/util/doc-files core-libs/java.util:i18n: (P2) JDK-8180375: Rename Provider to .spi.Provider core-libs/javax.lang.model: (P2) JDK-8182566: Including missing test update for JDK-8163989 (P3) JDK-8163989: Clarify ModuleElement spec core-libs/javax.sql: (P3) JDK-8181832: Broken link in javax/sql/rowset/spi/package-summary.html (P4) JDK-8180309: Minor update to javax.sql.rowset package.html core-libs/jdk.nashorn: (P3) JDK-8181191: getUint32 returning Long (P4) JDK-8179891: JavaDoc for for..in is incorrect core-svc: (P3) JDK-8182596: Fix broken links in com.sun.tools.attach.VirtualMachine core-svc/debugger: (P3) JDK-8181834: Broken link in jdk.jdi module documentation core-svc/java.lang.management: (P3) JDK-8179631: Fix Html5 errors in java.management, jdk.management, jdk.jdi and jdk.attach (P3) JDK-8179460: Fix unnecessary uses of {@docRoot} in serviceability APIs (P4) JDK-8175845: Provide javadoc descriptions for jdk.hotspot.agent module deploy: (P2) JDK-8181222: unreachable proxy server causes ConcurrentModificationException (P3) JDK-8180139: [test] Test for JDK-8176059: Better update checking for jdk9 (P4) JDK-8181821: Broken link in javadoc for JSObject.getWindow deploy/deployment_toolkit: (P2) JDK-8180052: Preexisting desktop shortcuts broken, and deployment cache not seen after JRE update deploy/javafx: (P2) JDK-8179200: "Request authentication" dialog from Java is blank deploy/webstart: (P2) JDK-8182495: jnlp element not corectly parsed. (P2) JDK-8185661: JNLP files won't launch from IE11 on Windows 10 Creators Update (P2) JDK-8160828: Unable to set "java.locale.providers" to use legacy JRE locale data docs: (P2) JDK-8182029: Make the top-level docs index.html to a HTML-level redirect to the API overview page (P4) JDK-8181082: class-level since tag issues in java.base & java.datatransfer module docs/tutorial: (P4) JDK-8071956: internationalization tutorial has wrong values for high surrogate range globalization/translation: (P3) JDK-8180167: JDK9 msg drop 40 l10n resource file update hotspot: (P2) JDK-8194739: Zero port of 8174962: Better interface invocations hotspot/compiler: (P1) JDK-8195685: AArch64 cannot build with JDK-8174962 (P1) JDK-8183551: Aarch64 platform specific code for 8173770 (P1) JDK-8183543: Aarch64: C2 compilation often fails with "failed spill-split-recycle sanity check" (P1) JDK-8183401: compiler/jvmci/jdk.vm.ci.code.test/src/jdk/vm/ci/code/test/NativeCallTest.java fails with: The VM does not support the minimum JVMCI API version required by Graal (P1) JDK-8181742: Load that bypasses arraycopy has wrong memory state (P1) JDK-8183103: Post loop vectorization produces incorrect results (P1) JDK-8184036: Restore -XX:UseAVX=3 as product value (P2) JDK-8182310: [AOT][JVMCI] Get host class of VM anonymous class (P2) JDK-8179954: AArch64: C1 and C2 volatile accesses are not sequentially consistent (P2) JDK-8179678: ArrayCopy with same src and dst can cause incorrect execution or compiler crash (P2) JDK-8181872: C1: possible overflow when strength reducing integer multiply by constant (P2) JDK-8179882: C2: Stale control info after cast node elimination during loop optimization pass (P2) JDK-8178800: compiler/c2/PolynomialRoot.java fails on Xeon Phi linux host with UseAVX=3 (P2) JDK-8180197: Failing assert: id must be initialized (P2) JDK-8181757: NonNMethod heap in segmented CodeCache is not scanned in some cases (P2) JDK-8180617: Null pointer dereference in InitializeNode::complete_stores (P2) JDK-8180575: Null pointer dereference in LoadNode::Identity() (P2) JDK-8180511: Null pointer dereference in Matcher::ReduceInst() (P2) JDK-8180576: Null pointer dereference in Matcher::xform() (P2) JDK-8180855: Null pointer dereference in OopMapSet::all_do of oopMap.cpp:394 (P2) JDK-8180813: Null pointer dereference of CodeCache::find_blob() result (P2) JDK-8180565: Null pointer dereferences of ConstMethod::method() hotspot/gc: (P1) JDK-8180048: Interned string and symbol table leak memory during parallel unlinking (P1) JDK-8185133: Reference pending list root might not get marked hotspot/runtime: (P1) JDK-8196136: AArch64: Correct register use in patch for JDK-8195685 (P1) JDK-8196221: AArch64: Mistake in committed patch for JDK-8195859 (P1) JDK-8195859: AArch64: vtableStubs gtest fails after 8174962 (P2) JDK-8190285: s390: Some java boolean checks are not correct (P2) JDK-8161145: The min/max macros make hotspot tests fail to build with GCC 6 (P3) JDK-8181906: AArch64: port bugfix for 7009641 to AArch64 (P4) JDK-8182581: aarch64: fix for crash caused by earlyret of compiled method hotspot/svc: (P3) JDK-8178536: OOM ERRORS + SERVICE-THREAD TAKES A PROCESSOR TO 100% hotspot/test: (P1) JDK-8181896: There are no hosts in Aurora to execute bigapps with large heap. (P4) JDK-8180004: jdk.test.lib.DynamicVMOption should be moved to jdk.test.lib.management (P4) JDK-8180037: move jdk.test.lib.InMemoryJavaCompiler to a separate package (P4) JDK-8180793: move jdk.test.lib.wrappers.* to jdk.test.lib package infrastructure: (P2) JDK-8183297: Allow duplicate bugid for changeset in jdk9 update forest infrastructure/build: (P1) JDK-8180453: [JVMCI] mx eclipseinit doesn't pick up generated sources (P1) JDK-8183166: lib\jawt.lib is missing from JDK 9 distribution for Windows (P1) JDK-8192876: MacOS build fails intermittently after JDK-8139653 (P2) JDK-8179105: A new property to specify import module to be included in unified docs bundle (P2) JDK-8180083: Adjust Jib and JDL configurations for 9 to support new generation Mach 5 (P2) JDK-8180328: Bad links in footer of all javadoc-generated pages (P2) JDK-8139653: Freetype bundled on macosx, but not correctly linked (P2) JDK-8182032: Make java.compiler upgradeable (P2) JDK-8178064: OpenJDK RI binary should include the license file for freetype (P2) JDK-8180208: Provide a new docs bundle page (P2) JDK-8180717: Upgrade the docs bundle index page (P3) JDK-8180281: --with-jtreg is broken for many use cases (P3) JDK-8175824: Adapt javadoc generation to different requirements for JDK and JavaSE (P3) JDK-8179453: Add a proper SetupProcessMarkdown (P3) JDK-8180540: Add pandoc build fix for windows (P3) JDK-8180318: Enable HTML 5 checking at compile time. (P3) JDK-8190725: Freetype license file provided with configure not included in images (P3) JDK-8180472: Pandoc should generate html5 from markdown (P3) JDK-8180420: Set PATH for dot and pandoc in JIB (P3) JDK-8182408: Simplify the API-specification overview page (P3) JDK-8181788: Unable to build JDK10 on SPARC-M8 machines (P3) JDK-8179892: Update build documentation for JDK 9 (P3) JDK-8180480: Use "requires transitive" relationship when determining modules for javadoc (P3) JDK-8180426: Use standard css file for new docs bundle index.html page (P4) JDK-8179537: Update testing.html and building.html for more clarity regarding JTREG javafx/build: (P3) JDK-8185138: Build hangs and fills up disk on Windows with VS 2013 or 2010 javafx/graphics: (P2) JDK-8187043: JavaFX fails to launch on some Windows platforms due to missing VS2017 libraries javafx/media: (P3) JDK-8181922: Provide media support for libav version 57 javafx/web: (P2) JDK-8184448: Crash while loading gif images with more frames (P2) JDK-8183292: Update to 604.1 version of WebKit (P2) JDK-8185132: window.requestAnimationFrame API is not working (P3) JDK-8178360: Build and integrate ICU from source (P3) JDK-8178440: Build libxml2 and libxslt from source (P3) JDK-8178319: Build sqlite3 from source (P3) JDK-8176729: com.sun.webkit.dom.NodeImpl#SelfDisposer is not called (P3) JDK-8179673: JVM Crash in WebPage.setBackgroundColor() during webpage navigation (Non Public API) (P3) JDK-8185970: Possible crash due to use-after-free (P4) JDK-8089283: Padding property of the select tag is incorrect in WebView (P4) JDK-8088681: Underscore not visible in HTML combo box options inside webview other-libs/corba: (P4) JDK-8176784: Amend HREF to technote/guides in CORBA API docs to unilinks for guides (P4) JDK-8181836: BadKindHelper.html and BoundsHelper.html contains broken link in the javadoc other-libs/other: (P2) JDK-8181195: Add @Deprecated(since="9", forRemoval=true) to the java.se.ee aggregator module security-libs/java.security: (P2) JDK-8181295: Document that SecurityManager::checkPackageAccess may be called by the VM (P2) JDK-8181978: Keystore probing mechanism fails for large PKCS12 keystores (P2) JDK-8189131: Open-source the Oracle JDK Root Certificates (P3) JDK-8180635: (doc) Clarify the compatibility and interoperability issue when using provider default values (P3) JDK-8181797: Broken links in specs/security/standard-names.html (P3) JDK-8178728: Check the AlgorithmParameters in algorithm constraints (P3) JDK-8191137: keytool fails to format resource strings for keys for some languages after JDK-8171319 security-libs/javax.crypto: (P2) JDK-8182609: Update ECC license file (P2) JDK-8180307: Update JDK 9 Required Cipher Algorithms (P3) JDK-8186093: A comment in the java.security configuration file incorrectly says that "strong but limited" is the default value security-libs/javax.net.ssl: (P2) JDK-8176745: Drop SSLContext TLSv1 cipher suite requirements (P2) JDK-8148421: Transport Layer Security (TLS) Session Hash and Extended Master Secret Extension (P3) JDK-8140436: Negotiated Finite Field Diffie-Hellman Ephemeral Parameters for TLS (P3) JDK-8163237: Restrict the use of EXPORT cipher suites (P4) JDK-8181439: Test the jdk.tls.namedGroups System Property security-libs/jdk.security: (P3) JDK-8182118: Package summary is missing in jdk.security.auth module security-libs/org.ietf.jgss:krb5: (P4) JDK-8181461: sun/security/krb5/auto/KdcPolicy.java fails with java.lang.Exception: Does not match tools/javac: (P2) JDK-8178152: Handling of incubating modules, the jdk.unsupported module and --add-exports with --release (P2) JDK-8182162: Remove -XD-Xmodule (P3) JDK-8181825: Add tool and services information to module summary tools/javadoc(tool): (P1) JDK-8182736: javadoc generates bad names and broken module graph links (P2) JDK-8182492: docs bundle needs legal notices for 3rd party libraries distributed for javadoc search (P2) JDK-8178043: Support grouping modules in unified javadoc (P3) JDK-8180486: extLink taglet needs escaped "&" (P3) JDK-8181441: Fix minor typo/link in the old standard doclet API documentation (P3) JDK-8179632: Fix the old doclet documentation tools/launcher: (P1) JDK-8183141: java --help-extra in non-English locales lists --permit-illegal-access which no longer exists (P2) JDK-8181033: Confusing message: A JNI error has occurred, please check your installation and try again (P2) JDK-8180447: Trailing space in JDK_JAVA_OPTIONS causes an application fail to launch (P3) JDK-8180574: tools/launcher/modules/patch/systemmodules/PatchSystemModules.java failed in upgradeHashedModule() and patchHashedModule() intermittently xml: (P2) JDK-8181702: Add @Deprecated(since="9", forRemoval=true) to the jdk.xml.bind and jdk.xml.ws modules (P3) JDK-8180385: Fix HTML5 issues in the java.xml module xml/jax-ws: (P2) JDK-8182137: Missing permissions in deprivileged java.xml.bind and java.xml.ws modules (P2) JDK-8176508: Update JAX-WS RI integration to latest version (P4) JDK-8182405: add legal file for freebxml xml/jaxp: (P4) JDK-8180349: Review JAXP Java SE 9 API javadocs xml/org.w3c.dom: (P3) JDK-8182111: Package summary is missing in jdk.xml.dom module