RELEASE NOTES FOR: openjdk8u432 ==================================================================================================== Notes generated: Sat Sep 07 05:05:55 CEST 2024 Hint: Prefix bug IDs with https://bugs.openjdk.org/browse/ to reach the relevant JIRA entry. JAVA ENHANCEMENT PROPOSALS (JEP): None. RELEASE NOTES: security-libs/javax.net.ssl: JDK-8279164: Disabled TLS_ECDH Cipher Suites The TLS_ECDH cipher suites have been disabled by default, by adding "ECDH" to the `jdk.tls.disabledAlgorithms` security property in the `java.security` configuration file. The TLS_ECDH cipher suites do not preserve forward-secrecy and are rarely used in practice. Note that some TLS_ECDH cipher suites were already disabled because they use algorithms that are disabled, such as 3DES and RC4. This action disables the rest. Any attempts to use cipher suites starting with "TLS_ECDH_" will fail with an `SSLHandshakeException`. Users can, at their own risk, re-enable these cipher suites by removing "ECDH" from the `jdk.tls.disabledAlgorithms` security property. Please note that this change has no effect on the TLS_ECDHE cipher suites, which are still enabled by default. core-libs/java.util.jar: JDK-8193682: Default JDK Compressor Will Be Closed when IOException Is Encountered `DeflaterOutputStream.close()` and `GZIPOutputStream.finish()` methods have been modified to close out the associated default JDK compressor before propagating a Throwable up the stack. `ZIPOutputStream.closeEntry()` method has been modified to close out the associated default JDK compressor before propagating an IOException, not of type ZipException, up the stack. ALL FIXED ISSUES, BY COMPONENT AND PRIORITY: client-libs: (P3) JDK-8298887: On the latest macOS+XCode the Robot API may report wrong colors client-libs/2d: (P3) JDK-8318951: Additional negative value check in JPEG decoding (P3) JDK-8311666: Disabled tests in test/jdk/sun/java2d/marlin (P4) JDK-8337312: [8u] Windows x86 VS2010 build broken by JDK-8320097 client-libs/java.awt: (P4) JDK-6544871: java/awt/event/KeyEvent/KeyTyped/CtrlASCII.html fails from jdk b09 on windows. client-libs/javax.sound: (P4) JDK-8266248: Compilation failure in PLATFORM_API_MacOSX_MidiUtils.c with Xcode 12.5 (P4) JDK-7188098: TEST_BUG: closed/javax/sound/midi/Synthesizer/Receiver/bug6186488.java fails client-libs/javax.swing: (P3) JDK-8327007: javax/swing/JSpinner/8008657/bug8008657.java fails (P4) JDK-8264328: Broken license in javax/swing/JComboBox/8072767/bug8072767.java (P4) JDK-8221903: PIT: javax/swing/RepaintManager/IconifyTest/IconifyTest.java fails on ubuntu18.04 core-libs: (P4) JDK-8326351: Update the Zlib version in open/src/java.base/share/legal/zlib.md to 1.3.1 core-libs/java.net: (P4) JDK-8238274: (sctp) JDK-7118373 is not fixed for SctpChannel core-libs/java.nio: (P4) JDK-8030795: java/nio/file/Files/probeContentType/ForceLoad.java failing with ServiceConfigurationError without jtreg -agentvm option core-libs/java.util: (P2) JDK-8284771: java/util/zip/CloseInflaterDeflaterTest.java failed with "AssertionError: Expected IOException to be thrown, but nothing was thrown" (P4) JDK-8335894: [8u] Fix SupplementalJapaneseEraTest.java for jdks with symlinked conf dir (P4) JDK-8299677: Formatter.format might take a long time to format an integer or floating-point core-libs/java.util.jar: (P4) JDK-8278794: Infinite loop in DeflaterOutputStream.finish() (P4) JDK-8193682: Infinite loop in ZipOutputStream.close() (P4) JDK-8315117: Update Zlib Data Compression Library to Version 1.3 (P4) JDK-8324632: Update Zlib Data Compression Library to Version 1.3.1 core-libs/java.util:i18n: (P3) JDK-8305400: ISO 4217 Amendment 175 Update (P3) JDK-8321480: ISO 4217 Amendment 176 Update (P3) JDK-8334653: ISO 4217 Amendment 177 Update core-svc/debugger: (P4) JDK-8030204: com/sun/jdi/JdbExprTest.sh: Required output "Can\\'t convert 2147483648 to int" not found (P4) JDK-4660158: TTY: NumberFormatException while trying to set values by 'set' command core-svc/javax.management: (P3) JDK-8145919: sun/management/jmxremote/bootstrap/RmiSslBootstrapTest failed with Connection failed for no credentials (P4) JDK-8335851: [8u] Test JMXStartStopTest.java fails after JDK-8334415 (P4) JDK-8035395: sun/management/jmxremote/startstop/JMXStartStopTest.java fails intermittently: Port already in use hotspot/compiler: (P3) JDK-8021775: compiler/8009761/Test8009761.java "Failed: init recursive calls: 51. After deopt 50" hotspot/gc: (P3) JDK-8316328: Test jdk/jfr/event/oldobject/TestSanityDefault.java times out for some heap sizes hotspot/jfr: (P4) JDK-8305931: jdk/jfr/jcmd/TestJcmdDumpPathToGCRoots.java failed with "Expected chains but found none" (P4) JDK-8326521: JFR: CompilerPhase event test fails on windows 32 bit (P4) JDK-8326529: JFR: Test for CompilerCompile events fails due to time out hotspot/runtime: (P4) JDK-8309138: Fix container tests for jdks with symlinked conf dir (P4) JDK-8152207: Perform array bound checks while getting a length of bytecode instructions hotspot/test: (P4) JDK-8337110: [8u] TestNoEagerReclaimOfHumongousRegions.java should be in gc/g1 directory infrastructure/build: (P4) JDK-8333669: [8u] GHA: Dead VS2010 download link (P4) JDK-8331730: [8u] GHA: update sysroot for cross builds to Debian bullseye (P4) JDK-8315863: [GHA] Update checkout action to use v4 (P4) JDK-8137329: [windows] Build broken on VS2010 after "8046148: JEP 158: Unified JVM Logging" (P4) JDK-8075511: Enable -Woverloaded-virtual C++ warning for HotSpot build (P4) JDK-8281096: Flags introduced by configure script are not passed to ADLC build (P4) JDK-8318039: GHA: Bump macOS and Xcode versions (P4) JDK-8336928: GHA: Bundle artifacts removal broken (P4) JDK-8324723: GHA: Upgrade some actions to avoid deprecated Node 16 infrastructure/licensing: (P4) JDK-8338144: [8u] Remove duplicate license files infrastructure/release_eng: (P4) JDK-8333126: Bump update version of OpenJDK: 8u432 security-libs/javax.net.ssl: (P3) JDK-8279164: Disable TLS_ECDH_* cipher suites tools: (P4) JDK-8320964: sun/tools/native2ascii/Native2AsciiTests.sh fails on Japanese