From jboes at openjdk.java.net Wed Dec 1 10:40:31 2021 From: jboes at openjdk.java.net (Julia Boes) Date: Wed, 1 Dec 2021 10:40:31 GMT Subject: Integrated: 8277459: Add jwebserver tool In-Reply-To: References: Message-ID: On Mon, 22 Nov 2021 09:43:19 GMT, Julia Boes wrote: > This change introduces jwebserver, a dedicated JDK tool for the Simple Web Server. > > A description is provided in a follow-up comment. This pull request has now been integrated. Changeset: f505396c Author: Julia Boes URL: https://git.openjdk.java.net/jdk/commit/f505396cccdd00a284b516dee1e314d1bf285f9e Stats: 682 lines in 17 files changed: 587 ins; 27 del; 68 mod 8277459: Add jwebserver tool Reviewed-by: michaelm, dfuchs, ihse ------------- PR: https://git.openjdk.java.net/jdk/pull/6497 From aleonard at openjdk.java.net Wed Dec 1 15:22:09 2021 From: aleonard at openjdk.java.net (Andrew Leonard) Date: Wed, 1 Dec 2021 15:22:09 GMT Subject: RFR: 8277762: Allow configuration of HOTSPOT_BUILD_USER [v2] In-Reply-To: References: Message-ID: > To better allow "reproducible builds", a new configure parameter is added to set the USERNAME build variable, rather than always using the current user: > --with-build-user= > HOTSPOT_BUILD_USER is then set to a reproducible USERNAME if required. > > Signed-off-by: Andrew Leonard Andrew Leonard has updated the pull request with a new target base due to a merge or a rebase. The incremental webrev excludes the unrelated changes brought in by the merge/rebase. The pull request contains five additional commits since the last revision: - 8277762: Allow configuration of HOTSPOT_BUILD_USER Signed-off-by: Andrew Leonard - Merge branch 'master' of https://github.com/openjdk/jdk into builduser - 8277762: Allow configuration of HOTSPOT_BUILD_USER Signed-off-by: Andrew Leonard - 8277762: Allow configuration of HOTSPOT_BUILD_USER Signed-off-by: Andrew Leonard - 8277762: Allow configuration of HOTSPOT_BUILD_USER Signed-off-by: Andrew Leonard ------------- Changes: - all: https://git.openjdk.java.net/jdk/pull/6542/files - new: https://git.openjdk.java.net/jdk/pull/6542/files/f9fb274a..3896df55 Webrevs: - full: https://webrevs.openjdk.java.net/?repo=jdk&pr=6542&range=01 - incr: https://webrevs.openjdk.java.net/?repo=jdk&pr=6542&range=00-01 Stats: 6325 lines in 236 files changed: 4145 ins; 1326 del; 854 mod Patch: https://git.openjdk.java.net/jdk/pull/6542.diff Fetch: git fetch https://git.openjdk.java.net/jdk pull/6542/head:pull/6542 PR: https://git.openjdk.java.net/jdk/pull/6542 From aleonard at openjdk.java.net Wed Dec 1 15:22:10 2021 From: aleonard at openjdk.java.net (Andrew Leonard) Date: Wed, 1 Dec 2021 15:22:10 GMT Subject: RFR: 8277762: Allow configuration of HOTSPOT_BUILD_USER [v2] In-Reply-To: References:

Message-ID: <-4k2pUB0nx_RZK_xf1PFsraYWcdLqkIzAJOAz1S53_o=.0bb74970-126a-4cf5-93a7-345c07f32730@github.com> On Wed, 24 Nov 2021 18:59:03 GMT, Erik Joelsson wrote: >> it's also used in make/hotspot/lib/CompileJvm.gmk, but agree moving to jdk-versions.m4 makes sense > > Right, I meant the only place it's used within configure. done, moved ------------- PR: https://git.openjdk.java.net/jdk/pull/6542 From aleonard at openjdk.java.net Wed Dec 1 15:27:32 2021 From: aleonard at openjdk.java.net (Andrew Leonard) Date: Wed, 1 Dec 2021 15:27:32 GMT Subject: RFR: 8277762: Allow configuration of HOTSPOT_BUILD_USER [v2] In-Reply-To: References:

Message-ID: On Wed, 1 Dec 2021 15:22:09 GMT, Andrew Leonard wrote: >> To better allow "reproducible builds", a new configure parameter is added to set the USERNAME build variable, rather than always using the current user: >> --with-build-user= >> HOTSPOT_BUILD_USER is then set to a reproducible USERNAME if required. >> >> Signed-off-by: Andrew Leonard > > Andrew Leonard has updated the pull request with a new target base due to a merge or a rebase. The incremental webrev excludes the unrelated changes brought in by the merge/rebase. The pull request contains five additional commits since the last revision: > > - 8277762: Allow configuration of HOTSPOT_BUILD_USER > > Signed-off-by: Andrew Leonard > - Merge branch 'master' of https://github.com/openjdk/jdk into builduser > - 8277762: Allow configuration of HOTSPOT_BUILD_USER > > Signed-off-by: Andrew Leonard > - 8277762: Allow configuration of HOTSPOT_BUILD_USER > > Signed-off-by: Andrew Leonard > - 8277762: Allow configuration of HOTSPOT_BUILD_USER > > Signed-off-by: Andrew Leonard Looks good! ------------- Marked as reviewed by erikj (Reviewer). PR: https://git.openjdk.java.net/jdk/pull/6542 From weijun at openjdk.java.net Wed Dec 1 17:11:43 2021 From: weijun at openjdk.java.net (Weijun Wang) Date: Wed, 1 Dec 2021 17:11:43 GMT Subject: RFR: 8255266: 2021-11-27 public suffix list update v 3c213aa Message-ID: Update Public Suffix List data to the latest version at https://github.com/publicsuffix/list. ------------- Commit messages: - 8255266: 2021-11-27 public suffix list update v 3c213aa Changes: https://git.openjdk.java.net/jdk/pull/6643/files Webrev: https://webrevs.openjdk.java.net/?repo=jdk&pr=6643&range=00 Issue: https://bugs.openjdk.java.net/browse/JDK-8255266 Stats: 1254 lines in 5 files changed: 887 ins; 215 del; 152 mod Patch: https://git.openjdk.java.net/jdk/pull/6643.diff Fetch: git fetch https://git.openjdk.java.net/jdk pull/6643/head:pull/6643 PR: https://git.openjdk.java.net/jdk/pull/6643 From aleonard at openjdk.java.net Wed Dec 1 18:16:28 2021 From: aleonard at openjdk.java.net (Andrew Leonard) Date: Wed, 1 Dec 2021 18:16:28 GMT Subject: Integrated: 8277762: Allow configuration of HOTSPOT_BUILD_USER In-Reply-To: References: Message-ID: On Wed, 24 Nov 2021 16:49:31 GMT, Andrew Leonard wrote: > To better allow "reproducible builds", a new configure parameter is added to set the USERNAME build variable, rather than always using the current user: > --with-build-user= > HOTSPOT_BUILD_USER is then set to a reproducible USERNAME if required. > > Signed-off-by: Andrew Leonard This pull request has now been integrated. Changeset: f41e768b Author: Andrew Leonard URL: https://git.openjdk.java.net/jdk/commit/f41e768bba2b2ce3b3cc5813ccb1ac4984dcefbd Stats: 17 lines in 2 files changed: 11 ins; 5 del; 1 mod 8277762: Allow configuration of HOTSPOT_BUILD_USER Reviewed-by: erikj ------------- PR: https://git.openjdk.java.net/jdk/pull/6542 From aleonard at openjdk.java.net Wed Dec 1 18:36:36 2021 From: aleonard at openjdk.java.net (Andrew Leonard) Date: Wed, 1 Dec 2021 18:36:36 GMT Subject: RFR: 8278080: Add --with-cacerts-src='user cacerts folder' to enable determinsitic cacerts generation Message-ID: Addition of a configure option --with-cacerts-src='user cacerts folder' to allow developers to specify their own cacerts PEM folder for generation of the cacerts store using the deterministic openjdk GenerateCacerts tool. Signed-off-by: Andrew Leonard ------------- Commit messages: - 8278080: Add --with-cacerts-src='user cacerts folder' to enable determinsitic cacerts generation - 8278080: Add --with-cacerts-src='user cacerts folder' to enable determinsitic cacerts generation Changes: https://git.openjdk.java.net/jdk/pull/6647/files Webrev: https://webrevs.openjdk.java.net/?repo=jdk&pr=6647&range=00 Issue: https://bugs.openjdk.java.net/browse/JDK-8278080 Stats: 21 lines in 3 files changed: 21 ins; 0 del; 0 mod Patch: https://git.openjdk.java.net/jdk/pull/6647.diff Fetch: git fetch https://git.openjdk.java.net/jdk pull/6647/head:pull/6647 PR: https://git.openjdk.java.net/jdk/pull/6647 From mikael at openjdk.java.net Wed Dec 1 18:45:43 2021 From: mikael at openjdk.java.net (Mikael Vidstedt) Date: Wed, 1 Dec 2021 18:45:43 GMT Subject: RFR: 8266839: Enable pandoc on macosx-aarch64 at Oracle Message-ID: Enabling pandoc on macosx-aarch64 at Oracle to produce man pages etc. Testing: * Passes tier1 * Verified that the product bundle includes man pages as expected * Sampling a few of the man pages they look as expected ------------- Commit messages: - 8266839: Enable pandoc on macosx-aarch64 Changes: https://git.openjdk.java.net/jdk/pull/6650/files Webrev: https://webrevs.openjdk.java.net/?repo=jdk&pr=6650&range=00 Issue: https://bugs.openjdk.java.net/browse/JDK-8266839 Stats: 13 lines in 1 file changed: 11 ins; 0 del; 2 mod Patch: https://git.openjdk.java.net/jdk/pull/6650.diff Fetch: git fetch https://git.openjdk.java.net/jdk pull/6650/head:pull/6650 PR: https://git.openjdk.java.net/jdk/pull/6650 From erikj at openjdk.java.net Wed Dec 1 18:51:27 2021 From: erikj at openjdk.java.net (Erik Joelsson) Date: Wed, 1 Dec 2021 18:51:27 GMT Subject: RFR: 8278080: Add --with-cacerts-src='user cacerts folder' to enable determinsitic cacerts generation In-Reply-To: References: Message-ID: On Wed, 1 Dec 2021 18:30:06 GMT, Andrew Leonard wrote: > Addition of a configure option --with-cacerts-src='user cacerts folder' to allow developers to specify their own cacerts PEM folder for generation of the cacerts store using the deterministic openjdk GenerateCacerts tool. > > Signed-off-by: Andrew Leonard make/autoconf/jdk-options.m4 line 176: > 174: [specify alternative cacerts source folder containing certificates])]) > 175: AC_MSG_CHECKING([for cacerts source]) > 176: if test "x$with_cacerts_src" == x; then Before this if block, please assign an empty value to CACERTS_SRC. Otherwise, if the user happens to have that variable set in the environment, that value will get recorded by configure, which is usually not something we want. ------------- PR: https://git.openjdk.java.net/jdk/pull/6647 From erikj at openjdk.java.net Wed Dec 1 18:53:30 2021 From: erikj at openjdk.java.net (Erik Joelsson) Date: Wed, 1 Dec 2021 18:53:30 GMT Subject: RFR: 8266839: Enable pandoc on macosx-aarch64 at Oracle In-Reply-To: References: Message-ID: On Wed, 1 Dec 2021 18:37:53 GMT, Mikael Vidstedt wrote: > Enabling pandoc on macosx-aarch64 at Oracle to produce man pages etc. > > Testing: > > * Passes tier1 > * Verified that the product bundle includes man pages as expected > * Sampling a few of the man pages they look as expected Looks good. Would it be possible to rebuild pandoc packages for all platforms with the same version? (As a separate change at some point) ------------- Marked as reviewed by erikj (Reviewer). PR: https://git.openjdk.java.net/jdk/pull/6650 From mikael at openjdk.java.net Wed Dec 1 20:12:28 2021 From: mikael at openjdk.java.net (Mikael Vidstedt) Date: Wed, 1 Dec 2021 20:12:28 GMT Subject: RFR: 8266839: Enable pandoc on macosx-aarch64 at Oracle In-Reply-To: References: Message-ID: On Wed, 1 Dec 2021 18:37:53 GMT, Mikael Vidstedt wrote: > Enabling pandoc on macosx-aarch64 at Oracle to produce man pages etc. > > Testing: > > * Passes tier1 > * Verified that the product bundle includes man pages as expected > * Sampling a few of the man pages they look as expected Yes, I agree that we can and should investigate using the same pandoc version across all the platforms. ------------- PR: https://git.openjdk.java.net/jdk/pull/6650 From mikael at openjdk.java.net Wed Dec 1 20:25:26 2021 From: mikael at openjdk.java.net (Mikael Vidstedt) Date: Wed, 1 Dec 2021 20:25:26 GMT Subject: Integrated: 8266839: Enable pandoc on macosx-aarch64 at Oracle In-Reply-To: References: Message-ID: On Wed, 1 Dec 2021 18:37:53 GMT, Mikael Vidstedt wrote: > Enabling pandoc on macosx-aarch64 at Oracle to produce man pages etc. > > Testing: > > * Passes tier1 > * Verified that the product bundle includes man pages as expected > * Sampling a few of the man pages they look as expected This pull request has now been integrated. Changeset: 51d6d7a3 Author: Mikael Vidstedt URL: https://git.openjdk.java.net/jdk/commit/51d6d7a36b760b2b2b77269cc06438108a9931a2 Stats: 13 lines in 1 file changed: 11 ins; 0 del; 2 mod 8266839: Enable pandoc on macosx-aarch64 at Oracle Reviewed-by: erikj ------------- PR: https://git.openjdk.java.net/jdk/pull/6650 From serb at openjdk.java.net Thu Dec 2 00:12:30 2021 From: serb at openjdk.java.net (Sergey Bylokhov) Date: Thu, 2 Dec 2021 00:12:30 GMT Subject: RFR: 8278080: Add --with-cacerts-src='user cacerts folder' to enable determinsitic cacerts generation In-Reply-To: References: Message-ID: On Wed, 1 Dec 2021 18:30:06 GMT, Andrew Leonard wrote: > Addition of a configure option --with-cacerts-src='user cacerts folder' to allow developers to specify their own cacerts PEM folder for generation of the cacerts store using the deterministic openjdk GenerateCacerts tool. > > Signed-off-by: Andrew Leonard I have a question related to the custom cacerts which can be added to the OpenJDK bundle. How do you pass the tests like test/jdk/sun/security/lib/cacerts/VerifyCACerts.java using that custom jdk bundle? Probably we can add an additional configuration to that test so it will check the custom cacerts passed to the build as well? ------------- PR: https://git.openjdk.java.net/jdk/pull/6647 From duke at openjdk.java.net Thu Dec 2 09:20:53 2021 From: duke at openjdk.java.net (Alan Hayward) Date: Thu, 2 Dec 2021 09:20:53 GMT Subject: RFR: 8277204: Implementation of JEP 8264130: PAC-RET protection for Linux/AArch64 [v8] In-Reply-To: References: Message-ID: > PAC is an optional feature in AArch64 8.3 and is compulsory in v9. One > of its uses is to protect against ROP based attacks. This is done by > signing the Link Register whenever it is stored on the stack, and > authenticating the value when it is loaded back from the stack. If an > attacker were to try to change control flow by editing the stack then > the authentication check of the Link Register will fail, causing a > segfault when the function returns. > > On a system with PAC enabled, it is expected that all applications will > be compiled with ROP protection. Fedora 33 and upwards already provide > this. By compiling for ARMv8.0, GCC and LLVM will only use the set of > PAC instructions that exist in the NOP space - on hardware without PAC, > these instructions act as NOPs, allowing backward compatibility for > negligible performance cost (2 NOPs per non-leaf function). > > Hardware is currently limited to the Apple M1 MacBooks. All testing has > been done within a Fedora Docker image. A run of SpecJVM showed no > difference to that of noise - which was surprising. > > The most important part of this patch is simply compiling using branch > protection provided by GCC/LLVM. This protects all C++ code from being > used in ROP attacks, removing all static ROP gadgets from use. > > The remainder of the patch adds ROP protection to runtime generated > code, in both stubs and compiled Java code. Attacks here are much harder > as ROP gadgets must be found dynamically at runtime. If/when AOT > compilation is added to JDK, then all stubs and compiled Java will be > susceptible ROP gadgets being found by static analysis and therefore > potentially as vulnerable as C++ code. > > There are a number of places where the VM changes control flow by > rewriting the stack or otherwise. I?ve done some analysis as to how > these could also be used for attacks (which I didn?t want to post here). > These areas can be protected ensuring the pointers to various stubs and > entry points are stored in memory as signed pointers. These changes are > simple to make (they can be reduced to a type change in common code and > a few addition sign/auth calls in the backend), but there a lot of them > and the total code change is fairly large. I?m happy to provide a few > work in progress patches. > > In order to match the security benefits of the Apple Arm64e ABI across > the whole of JDK, then all the changes mentioned above would be > required. Alan Hayward has updated the pull request incrementally with one additional commit since the last revision: Fix up UseROPProtection flag ------------- Changes: - all: https://git.openjdk.java.net/jdk/pull/6334/files - new: https://git.openjdk.java.net/jdk/pull/6334/files/280abc41..995d8aa3 Webrevs: - full: https://webrevs.openjdk.java.net/?repo=jdk&pr=6334&range=07 - incr: https://webrevs.openjdk.java.net/?repo=jdk&pr=6334&range=06-07 Stats: 18 lines in 1 file changed: 10 ins; 5 del; 3 mod Patch: https://git.openjdk.java.net/jdk/pull/6334.diff Fetch: git fetch https://git.openjdk.java.net/jdk pull/6334/head:pull/6334 PR: https://git.openjdk.java.net/jdk/pull/6334 From duke at openjdk.java.net Thu Dec 2 09:20:57 2021 From: duke at openjdk.java.net (Alan Hayward) Date: Thu, 2 Dec 2021 09:20:57 GMT Subject: RFR: 8277204: Implementation of JEP 8264130: PAC-RET protection for Linux/AArch64 [v7] In-Reply-To: References:

Message-ID: <5IotnN-721orMatHakGGJ0sIMpiWb506D-mrK5aFMCI=.45757405-3547-498e-b280-3e5f42e9eda6@github.com> On Mon, 22 Nov 2021 17:35:41 GMT, Alan Hayward wrote: >> PAC is an optional feature in AArch64 8.3 and is compulsory in v9. One >> of its uses is to protect against ROP based attacks. This is done by >> signing the Link Register whenever it is stored on the stack, and >> authenticating the value when it is loaded back from the stack. If an >> attacker were to try to change control flow by editing the stack then >> the authentication check of the Link Register will fail, causing a >> segfault when the function returns. >> >> On a system with PAC enabled, it is expected that all applications will >> be compiled with ROP protection. Fedora 33 and upwards already provide >> this. By compiling for ARMv8.0, GCC and LLVM will only use the set of >> PAC instructions that exist in the NOP space - on hardware without PAC, >> these instructions act as NOPs, allowing backward compatibility for >> negligible performance cost (2 NOPs per non-leaf function). >> >> Hardware is currently limited to the Apple M1 MacBooks. All testing has >> been done within a Fedora Docker image. A run of SpecJVM showed no >> difference to that of noise - which was surprising. >> >> The most important part of this patch is simply compiling using branch >> protection provided by GCC/LLVM. This protects all C++ code from being >> used in ROP attacks, removing all static ROP gadgets from use. >> >> The remainder of the patch adds ROP protection to runtime generated >> code, in both stubs and compiled Java code. Attacks here are much harder >> as ROP gadgets must be found dynamically at runtime. If/when AOT >> compilation is added to JDK, then all stubs and compiled Java will be >> susceptible ROP gadgets being found by static analysis and therefore >> potentially as vulnerable as C++ code. >> >> There are a number of places where the VM changes control flow by >> rewriting the stack or otherwise. I?ve done some analysis as to how >> these could also be used for attacks (which I didn?t want to post here). >> These areas can be protected ensuring the pointers to various stubs and >> entry points are stored in memory as signed pointers. These changes are >> simple to make (they can be reduced to a type change in common code and >> a few addition sign/auth calls in the backend), but there a lot of them >> and the total code change is fairly large. I?m happy to provide a few >> work in progress patches. >> >> In order to match the security benefits of the Apple Arm64e ABI across >> the whole of JDK, then all the changes mentioned above would be >> required. > > Alan Hayward has updated the pull request with a new target base due to a merge or a rebase. The pull request now contains 13 commits: > > - Merge master > - Merge master > - Rename pauth_authenticate_or_strip_return_address > - Fix windows aarch64 by restoring pauth file split > - Don't keep LR live across restore_live_registers > - Merge master > - Document pauth functions && remove OS split > - Update UseROPProtection description > - Simplify branch protection configure check > - 8264130: PAC-RET protection for Linux/AArch64 > > PAC is an optional feature in AArch64 8.3 and is compulsory in v9. One > of its uses is to protect against ROP based attacks. This is done by > signing the Link Register whenever it is stored on the stack, and > authenticating the value when it is loaded back from the stack. If an > attacker were to try to change control flow by editing the stack then > the authentication check of the Link Register will fail, causing a > segfault when the function returns. > > On a system with PAC enabled, it is expected that all applications will > be compiled with ROP protection. Fedora 33 and upwards already provide > this. By compiling for ARMv8.0, GCC and LLVM will only use the set of > PAC instructions that exist in the NOP space - on hardware without PAC, > these instructions act as NOPs, allowing backward compatibility for > negligible performance cost (2 NOPs per non-leaf function). > > Hardware is currently limited to the Apple M1 MacBooks. All testing has > been done within a Fedora Docker image. A run of SpecJVM showed no > difference to that of noise - which was surprising. > > The most important part of this patch is simply compiling using branch > protection provided by GCC/LLVM. This protects all C++ code from being > used in ROP attacks, removing all static ROP gadgets from use. > > The remainder of the patch adds ROP protection to runtime generated > code, in both stubs and compiled Java code. Attacks here are much harder > as ROP gadgets must be found dynamically at runtime. If/when AOT > compilation is added to JDK, then all stubs and compiled Java will be > susceptible ROP gadgets being found by static analysis and therefore > potentially as vulnerable as C++ code. > > There are a number of places where the VM changes control flow by > rewriting the stack or otherwise. I?ve done some analysis as to how > these could also be used for attacks (which I didn?t want to post here). > These areas can be protected ensuring the pointers to various stubs and > entry points are stored in memory as signed pointers. These changes are > simple to make (they can be reduced to a type change in common code and > a few addition sign/auth calls in the backend), but there a lot of them > and the total code change is fairly large. I?m happy to provide a few > work in progress patches. > > In order to match the security benefits of the Apple Arm64e ABI across > the whole of JDK, then all the changes mentioned above would be > required. > - ... and 3 more: https://git.openjdk.java.net/jdk/compare/ca31ed53...280abc41 @dholmes-ora Fixed flags based on comments on the CSR: > However, the proposed implementation does not match the description. VM_Version::initialize() is called after argument processing so even if the user has explicitly set the flag to false, if this is a PAC enabled system it will be turned back on. The code needs to check if the flag has been set before overriding the value; further the warning at line 389 should only be given if the user actually turned the flag on. But this should be taken up in the PR. ------------- PR: https://git.openjdk.java.net/jdk/pull/6334 From aleonard at openjdk.java.net Thu Dec 2 10:59:20 2021 From: aleonard at openjdk.java.net (Andrew Leonard) Date: Thu, 2 Dec 2021 10:59:20 GMT Subject: RFR: 8278080: Add --with-cacerts-src='user cacerts folder' to enable deterministic cacerts generation In-Reply-To: References:

Message-ID: On Thu, 2 Dec 2021 00:09:31 GMT, Sergey Bylokhov wrote: > I have a question related to the custom cacerts which can be added to the OpenJDK bundle. How do you pass the tests like test/jdk/sun/security/lib/cacerts/VerifyCACerts.java using that custom jdk bundle? Probably we can add an additional configuration to that test so it will check the custom cacerts passed to the build as well? @mrserb So VerifyCACerts is specific to the make/data/cacerts certificates, the README specifically states there that when those are updated VerifyCACerts needs updating. It checks things like fingerprints etc.. If a developer or other provider decide to provide their own cacerts file, then it is up to them to have verified and trust those certificates. They won't run the VerifyCACerts which is specific to the openjdk certs. This is the case at Adoptium for example, which uses the Mozilla trusted CA certs. ------------- PR: https://git.openjdk.java.net/jdk/pull/6647 From aleonard at openjdk.java.net Thu Dec 2 12:13:03 2021 From: aleonard at openjdk.java.net (Andrew Leonard) Date: Thu, 2 Dec 2021 12:13:03 GMT Subject: RFR: 8278080: Add --with-cacerts-src='user cacerts folder' to enable deterministic cacerts generation [v2] In-Reply-To: References: Message-ID: > Addition of a configure option --with-cacerts-src='user cacerts folder' to allow developers to specify their own cacerts PEM folder for generation of the cacerts store using the deterministic openjdk GenerateCacerts tool. > > Signed-off-by: Andrew Leonard Andrew Leonard has updated the pull request with a new target base due to a merge or a rebase. The incremental webrev excludes the unrelated changes brought in by the merge/rebase. The pull request contains four additional commits since the last revision: - 8278080: Add --with-cacerts-src='user cacerts folder' to enable deterministic cacerts generation Signed-off-by: Andrew Leonard - Merge branch 'master' of https://github.com/openjdk/jdk into cacertssrc - 8278080: Add --with-cacerts-src='user cacerts folder' to enable determinsitic cacerts generation Signed-off-by: Andrew Leonard - 8278080: Add --with-cacerts-src='user cacerts folder' to enable determinsitic cacerts generation Signed-off-by: Andrew Leonard ------------- Changes: - all: https://git.openjdk.java.net/jdk/pull/6647/files - new: https://git.openjdk.java.net/jdk/pull/6647/files/1084c4e1..16c5ca6b Webrevs: - full: https://webrevs.openjdk.java.net/?repo=jdk&pr=6647&range=01 - incr: https://webrevs.openjdk.java.net/?repo=jdk&pr=6647&range=00-01 Stats: 1879 lines in 62 files changed: 1045 ins; 297 del; 537 mod Patch: https://git.openjdk.java.net/jdk/pull/6647.diff Fetch: git fetch https://git.openjdk.java.net/jdk pull/6647/head:pull/6647 PR: https://git.openjdk.java.net/jdk/pull/6647 From aleonard at openjdk.java.net Thu Dec 2 12:13:07 2021 From: aleonard at openjdk.java.net (Andrew Leonard) Date: Thu, 2 Dec 2021 12:13:07 GMT Subject: RFR: 8278080: Add --with-cacerts-src='user cacerts folder' to enable deterministic cacerts generation [v2] In-Reply-To: References:

Message-ID: On Wed, 1 Dec 2021 18:47:41 GMT, Erik Joelsson wrote: >> Andrew Leonard has updated the pull request with a new target base due to a merge or a rebase. The incremental webrev excludes the unrelated changes brought in by the merge/rebase. The pull request contains four additional commits since the last revision: >> >> - 8278080: Add --with-cacerts-src='user cacerts folder' to enable deterministic cacerts generation >> >> Signed-off-by: Andrew Leonard >> - Merge branch 'master' of https://github.com/openjdk/jdk into cacertssrc >> - 8278080: Add --with-cacerts-src='user cacerts folder' to enable determinsitic cacerts generation >> >> Signed-off-by: Andrew Leonard >> - 8278080: Add --with-cacerts-src='user cacerts folder' to enable determinsitic cacerts generation >> >> Signed-off-by: Andrew Leonard > > make/autoconf/jdk-options.m4 line 176: > >> 174: [specify alternative cacerts source folder containing certificates])]) >> 175: AC_MSG_CHECKING([for cacerts source]) >> 176: if test "x$with_cacerts_src" == x; then > > Before this if block, please assign an empty value to CACERTS_SRC. Otherwise, if the user happens to have that variable set in the environment, that value will get recorded by configure, which is usually not something we want. done ------------- PR: https://git.openjdk.java.net/jdk/pull/6647 From dholmes at openjdk.java.net Thu Dec 2 12:24:24 2021 From: dholmes at openjdk.java.net (David Holmes) Date: Thu, 2 Dec 2021 12:24:24 GMT Subject: RFR: 8277204: Implementation of JEP 8264130: PAC-RET protection for Linux/AArch64 [v7] In-Reply-To: <5IotnN-721orMatHakGGJ0sIMpiWb506D-mrK5aFMCI=.45757405-3547-498e-b280-3e5f42e9eda6@github.com> References:

<5IotnN-721orMatHakGGJ0sIMpiWb506D-mrK5aFMCI=.45757405-3547-498e-b280-3e5f42e9eda6@github.com> Message-ID: On Thu, 2 Dec 2021 09:16:59 GMT, Alan Hayward wrote: > @dholmes-ora > > Fixed flags based on comments on the CSR: Flag updates look good - thanks. ------------- PR: https://git.openjdk.java.net/jdk/pull/6334 From erikj at openjdk.java.net Thu Dec 2 13:58:25 2021 From: erikj at openjdk.java.net (Erik Joelsson) Date: Thu, 2 Dec 2021 13:58:25 GMT Subject: RFR: 8278080: Add --with-cacerts-src='user cacerts folder' to enable deterministic cacerts generation [v2] In-Reply-To: References:

Message-ID: <9birWuJ4GIzSwQHZSrNlLO2fvrHy7bAxvEBqq4t80vc=.c7f7884e-c33e-45ff-b8d6-e3ee84efdb74@github.com> On Thu, 2 Dec 2021 14:29:00 GMT, Sean Mullan wrote: > I don?t have any major concerns with this change, as long as the default cacerts are still the ones that are in the JDK. As an aside, using Mozilla's root certificates might be fine for TLS certificates, but if you need to support code signing certificates you may run into issues with missing CAs as Mozilla's Root program does not support that use case. Also, by overriding the roots included in the JDK, you are taking on the responsibility (which is significant, in my opinion) of ensuring that those roots are trusted and have not been compromised, revoked, have weak keys, etc. @seanjmullan Thanks Sean, I'll pass your comment on, cheers Andrew ------------- PR: https://git.openjdk.java.net/jdk/pull/6647 From aleonard at openjdk.java.net Thu Dec 2 15:40:33 2021 From: aleonard at openjdk.java.net (Andrew Leonard) Date: Thu, 2 Dec 2021 15:40:33 GMT Subject: Integrated: 8278080: Add --with-cacerts-src='user cacerts folder' to enable deterministic cacerts generation In-Reply-To: References: Message-ID: On Wed, 1 Dec 2021 18:30:06 GMT, Andrew Leonard wrote: > Addition of a configure option --with-cacerts-src='user cacerts folder' to allow developers to specify their own cacerts PEM folder for generation of the cacerts store using the deterministic openjdk GenerateCacerts tool. > > Signed-off-by: Andrew Leonard This pull request has now been integrated. Changeset: dc2abc9f Author: Andrew Leonard URL: https://git.openjdk.java.net/jdk/commit/dc2abc9f05c2b7c52aeb242082359c48963f9854 Stats: 22 lines in 3 files changed: 22 ins; 0 del; 0 mod 8278080: Add --with-cacerts-src='user cacerts folder' to enable deterministic cacerts generation Reviewed-by: erikj ------------- PR: https://git.openjdk.java.net/jdk/pull/6647 From ihse at openjdk.java.net Thu Dec 2 17:39:29 2021 From: ihse at openjdk.java.net (Magnus Ihse Bursie) Date: Thu, 2 Dec 2021 17:39:29 GMT Subject: RFR: 8278080: Add --with-cacerts-src='user cacerts folder' to enable deterministic cacerts generation [v2] In-Reply-To: References:

Message-ID: On Thu, 2 Dec 2021 17:33:49 GMT, Magnus Ihse Bursie wrote: >> Andrew Leonard has updated the pull request with a new target base due to a merge or a rebase. The incremental webrev excludes the unrelated changes brought in by the merge/rebase. The pull request contains four additional commits since the last revision: >> >> - 8278080: Add --with-cacerts-src='user cacerts folder' to enable deterministic cacerts generation >> >> Signed-off-by: Andrew Leonard >> - Merge branch 'master' of https://github.com/openjdk/jdk into cacertssrc >> - 8278080: Add --with-cacerts-src='user cacerts folder' to enable determinsitic cacerts generation >> >> Signed-off-by: Andrew Leonard >> - 8278080: Add --with-cacerts-src='user cacerts folder' to enable determinsitic cacerts generation >> >> Signed-off-by: Andrew Leonard > > make/modules/java.base/Gendata.gmk line 76: > >> 74: ifneq ($(CACERTS_SRC), ) >> 75: GENDATA_CACERTS_SRC := $(CACERTS_SRC) >> 76: endif > > Does this even work?! You are reassigning the variable after it has been used. The := assignment means that it not a macro. I would have expected to see something like: ifneq ($(CACERTS_SRC), ) GENDATA_CACERTS_SRC := $(CACERTS_SRC) else GENDATA_CACERTS_SRC := $(TOPDIR)/make/data/cacerts/ endif at line 63. ------------- PR: https://git.openjdk.java.net/jdk/pull/6647 From aleonard at openjdk.java.net Thu Dec 2 17:50:15 2021 From: aleonard at openjdk.java.net (Andrew Leonard) Date: Thu, 2 Dec 2021 17:50:15 GMT Subject: RFR: 8278080: Add --with-cacerts-src='user cacerts folder' to enable deterministic cacerts generation [v2] In-Reply-To: References:

Message-ID: On Thu, 2 Dec 2021 17:35:36 GMT, Magnus Ihse Bursie wrote: >> make/modules/java.base/Gendata.gmk line 76: >> >>> 74: ifneq ($(CACERTS_SRC), ) >>> 75: GENDATA_CACERTS_SRC := $(CACERTS_SRC) >>> 76: endif >> >> Does this even work?! You are reassigning the variable after it has been used. The := assignment means that it not a macro. > > I would have expected to see something like: > > ifneq ($(CACERTS_SRC), ) > GENDATA_CACERTS_SRC := $(CACERTS_SRC) > else > GENDATA_CACERTS_SRC := $(TOPDIR)/make/data/cacerts/ > endif > > at line 63. you make a valid point, but i've tested this numerous times, but let me check again ------------- PR: https://git.openjdk.java.net/jdk/pull/6647 From aleonard at openjdk.java.net Thu Dec 2 17:50:15 2021 From: aleonard at openjdk.java.net (Andrew Leonard) Date: Thu, 2 Dec 2021 17:50:15 GMT Subject: RFR: 8278080: Add --with-cacerts-src='user cacerts folder' to enable deterministic cacerts generation [v2] In-Reply-To: References:

Message-ID: On Thu, 2 Dec 2021 17:46:35 GMT, Andrew Leonard wrote: >> I would have expected to see something like: >> >> ifneq ($(CACERTS_SRC), ) >> GENDATA_CACERTS_SRC := $(CACERTS_SRC) >> else >> GENDATA_CACERTS_SRC := $(TOPDIR)/make/data/cacerts/ >> endif >> >> at line 63. > > you make a valid point, but i've tested this numerous times, but let me check again my assumption was the recipe gets resolved later ------------- PR: https://git.openjdk.java.net/jdk/pull/6647 From aleonard at openjdk.java.net Thu Dec 2 18:07:16 2021 From: aleonard at openjdk.java.net (Andrew Leonard) Date: Thu, 2 Dec 2021 18:07:16 GMT Subject: RFR: 8278080: Add --with-cacerts-src='user cacerts folder' to enable deterministic cacerts generation [v2] In-Reply-To: References:

Message-ID: On Thu, 2 Dec 2021 17:48:04 GMT, Andrew Leonard wrote: >> you make a valid point, but i've tested this numerous times, but let me check again > > my assumption was the recipe gets resolved later this was my understanding: https://www.gnu.org/software/make/manual/html_node/Variables-in-Recipes.html This occurs after make has finished reading all the makefiles and the target is determined to be out of date; so, the recipes for targets which are not rebuilt are never expanded. but i'm going to double check I was checking the resultant cacerts correctly in my tests ------------- PR: https://git.openjdk.java.net/jdk/pull/6647 From darcy at openjdk.java.net Thu Dec 2 18:29:41 2021 From: darcy at openjdk.java.net (Joe Darcy) Date: Thu, 2 Dec 2021 18:29:41 GMT Subject: RFR: JDK-8273146: Start of release updates for JDK 19 [v7] In-Reply-To: References: Message-ID: > The time to get JDK 19 underway draws nigh, please review this usual set of start-of-release updates, including CSRs for the javac and javax.lang.model updates: > > JDK-8277512: Add SourceVersion.RELEASE_19 > https://bugs.openjdk.java.net/browse/JDK-8277512 > > JDK-8277514: Add source 19 and target 19 to javac > https://bugs.openjdk.java.net/browse/JDK-8277514 > > Clean local tier 1 test runs for langtools, jdk, and hotspot. Joe Darcy has updated the pull request with a new target base due to a merge or a rebase. The pull request now contains 12 commits: - Merge branch 'master' into JDK-8273146 - Merge branch 'master' into JDK-8273146 - Merge branch 'master' into JDK-8273146 - Merge branch 'master' into JDK-8273146 - Update symbol information for JDK 18 b25. - Merge branch 'master' into JDK-8273146 - Merge branch 'master' into JDK-8273146 - Remove SharedSpaces options from VMDeprecatedOptions.java. - Merge branch 'master' into JDK-8273146 - Respond to review feedback. - ... and 2 more: https://git.openjdk.java.net/jdk/compare/8b042d14...b1b4ae2b ------------- Changes: https://git.openjdk.java.net/jdk/pull/6493/files Webrev: https://webrevs.openjdk.java.net/?repo=jdk&pr=6493&range=06 Stats: 3280 lines in 67 files changed: 3237 ins; 4 del; 39 mod Patch: https://git.openjdk.java.net/jdk/pull/6493.diff Fetch: git fetch https://git.openjdk.java.net/jdk pull/6493/head:pull/6493 PR: https://git.openjdk.java.net/jdk/pull/6493 From erikj at openjdk.java.net Thu Dec 2 18:49:18 2021 From: erikj at openjdk.java.net (Erik Joelsson) Date: Thu, 2 Dec 2021 18:49:18 GMT Subject: RFR: 8278080: Add --with-cacerts-src='user cacerts folder' to enable deterministic cacerts generation [v2] In-Reply-To: References:

Message-ID: <7mR_iCEJRYWqMJhIXOvexTc-Jen4AVFTge91tV1YqSg=.442238f0-c217-4541-8d2c-b1e099814019@github.com> On Thu, 2 Dec 2021 18:03:50 GMT, Andrew Leonard wrote: >> my assumption was the recipe gets resolved later > > this was my understanding: https://www.gnu.org/software/make/manual/html_node/Variables-in-Recipes.html > > This occurs after make has finished reading all the makefiles and the target is determined to be out of date; so, the recipes for targets which are not rebuilt are never expanded. > > but i'm going to double check I was checking the resultant cacerts correctly in my tests Oh, I didn't expand the diff far enough to actually see the context correctly when I reviewed this as I would never have imagined the conditional to be placed after the rule. While this will work as so far as using the correct files, incremental builds will not be correct, because the rules are defined in the first pass. I very much agree with Magnus that this conditional belongs around line 63. ------------- PR: https://git.openjdk.java.net/jdk/pull/6647 From ihse at openjdk.java.net Thu Dec 2 18:53:45 2021 From: ihse at openjdk.java.net (Magnus Ihse Bursie) Date: Thu, 2 Dec 2021 18:53:45 GMT Subject: RFR: 8277069: [REDO] JDK-8276743 Make openjdk build Zip Archive generation "reproducible" Message-ID: This is basically Andrew's old patch that was backed out, with a single change: I'm using ZipFile instead of ZipInputStream to read in the original zip. The latter is not capable of reading the extended attributes that contain the unix permissions. (Why this is so, is not fully clear to me. What's worse, it's by no means clear from the documentation. We should probably file a follow-up bug to improve the Javadoc for ZipInputStream, warning the users to stay away if they can.) I have also added the possibility to opt-out of reproducible building by an argument to SetupZipArchive. This is used in the closed Oracle part of the build, where we create some temporary zip files that are later discarded, and not part of the deliverables. This saves us some unnecessary overhead. ------------- Commit messages: - Allow user to override reproducible building of zip file - Use ZipFile instead of ZipInputStream, which can handle Unix permissions - 8276743: Make openjdk build Zip Archive generation "reproducible" Changes: https://git.openjdk.java.net/jdk/pull/6673/files Webrev: https://webrevs.openjdk.java.net/?repo=jdk&pr=6673&range=00 Issue: https://bugs.openjdk.java.net/browse/JDK-8277069 Stats: 262 lines in 4 files changed: 255 ins; 0 del; 7 mod Patch: https://git.openjdk.java.net/jdk/pull/6673.diff Fetch: git fetch https://git.openjdk.java.net/jdk pull/6673/head:pull/6673 PR: https://git.openjdk.java.net/jdk/pull/6673 From ihse at openjdk.java.net Thu Dec 2 19:05:22 2021 From: ihse at openjdk.java.net (Magnus Ihse Bursie) Date: Thu, 2 Dec 2021 19:05:22 GMT Subject: RFR: 8277069: [REDO] JDK-8276743 Make openjdk build Zip Archive generation "reproducible" In-Reply-To: References: Message-ID: On Thu, 2 Dec 2021 14:55:14 GMT, Magnus Ihse Bursie wrote: > This is basically Andrew's old patch that was backed out, with a single change: I'm using ZipFile instead of ZipInputStream to read in the original zip. The latter is not capable of reading the extended attributes that contain the unix permissions. (Why this is so, is not fully clear to me. What's worse, it's by no means clear from the documentation. We should probably file a follow-up bug to improve the Javadoc for ZipInputStream, warning the users to stay away if they can.) > > I have also added the possibility to opt-out of reproducible building by an argument to SetupZipArchive. This is used in the closed Oracle part of the build, where we create some temporary zip files that are later discarded, and not part of the deliverables. This saves us some unnecessary overhead. I tried to find a way to make GitHub display the difference wrt the original, backed out, patch, but utterly failed. So here's a simple diff. This is the only way in which this patch differs from the original. --- ./make/jdk/src/classes/build/tools/makezipreproducible/MakeZipReproducible.java 2021-12-02 19:57:38.000000000 +0100 +++ ../../jdk-ALT/open/make/jdk/src/classes/build/tools/makezipreproducible/MakeZipReproducible.java 2021-12-02 15:11:22.000000000 +0100 @@ -162,13 +162,8 @@ // Process input zip file and add to sorted entries set boolean processInputEntries(File inFile) throws IOException { - try (FileInputStream fis = new FileInputStream(inFile); - ZipInputStream zis = new ZipInputStream(fis)) { - ZipEntry entry; - while ((entry = zis.getNextEntry()) != null) { - entries.put(entry.getName(), entry); - } - } + ZipFile zipFile = new ZipFile(inFile); + zipFile.stream().forEach(entry -> entries.put(entry.getName(), entry)); return true; } ------------- PR: https://git.openjdk.java.net/jdk/pull/6673 From aleonard at openjdk.java.net Thu Dec 2 19:15:22 2021 From: aleonard at openjdk.java.net (Andrew Leonard) Date: Thu, 2 Dec 2021 19:15:22 GMT Subject: RFR: 8278080: Add --with-cacerts-src='user cacerts folder' to enable deterministic cacerts generation [v2] In-Reply-To: <7mR_iCEJRYWqMJhIXOvexTc-Jen4AVFTge91tV1YqSg=.442238f0-c217-4541-8d2c-b1e099814019@github.com> References:

<7mR_iCEJRYWqMJhIXOvexTc-Jen4AVFTge91tV1YqSg=.442238f0-c217-4541-8d2c-b1e099814019@github.com> Message-ID: On Thu, 2 Dec 2021 18:46:09 GMT, Erik Joelsson wrote: >> this was my understanding: https://www.gnu.org/software/make/manual/html_node/Variables-in-Recipes.html >> >> This occurs after make has finished reading all the makefiles and the target is determined to be out of date; so, the recipes for targets which are not rebuilt are never expanded. >> >> but i'm going to double check I was checking the resultant cacerts correctly in my tests > > Oh, I didn't expand the diff far enough to actually see the context correctly when I reviewed this as I would never have imagined the conditional to be placed after the rule. While this will work as so far as using the correct files, incremental builds will not be correct, because the rules are defined in the first pass. > > I very much agree with Magnus that this conditional belongs around line 63. yes, thanks, feeling rather stupid here! i'll raise an issue to fix ------------- PR: https://git.openjdk.java.net/jdk/pull/6647 From erikj at openjdk.java.net Thu Dec 2 19:25:15 2021 From: erikj at openjdk.java.net (Erik Joelsson) Date: Thu, 2 Dec 2021 19:25:15 GMT Subject: RFR: 8277069: [REDO] JDK-8276743 Make openjdk build Zip Archive generation "reproducible" In-Reply-To: References: Message-ID: On Thu, 2 Dec 2021 14:55:14 GMT, Magnus Ihse Bursie wrote: > This is basically Andrew's old patch that was backed out, with a single change: I'm using ZipFile instead of ZipInputStream to read in the original zip. The latter is not capable of reading the extended attributes that contain the unix permissions. (Why this is so, is not fully clear to me. What's worse, it's by no means clear from the documentation. We should probably file a follow-up bug to improve the Javadoc for ZipInputStream, warning the users to stay away if they can.) > > I have also added the possibility to opt-out of reproducible building by an argument to SetupZipArchive. This is used in the closed Oracle part of the build, where we create some temporary zip files that are later discarded, and not part of the deliverables. This saves us some unnecessary overhead. Marked as reviewed by erikj (Reviewer). ------------- PR: https://git.openjdk.java.net/jdk/pull/6673 From ihse at openjdk.java.net Thu Dec 2 19:55:16 2021 From: ihse at openjdk.java.net (Magnus Ihse Bursie) Date: Thu, 2 Dec 2021 19:55:16 GMT Subject: RFR: 8277069: [REDO] JDK-8276743 Make openjdk build Zip Archive generation "reproducible" In-Reply-To: References: Message-ID: On Thu, 2 Dec 2021 14:55:14 GMT, Magnus Ihse Bursie wrote: > This is basically Andrew's old patch that was backed out, with a single change: I'm using ZipFile instead of ZipInputStream to read in the original zip. The latter is not capable of reading the extended attributes that contain the unix permissions. (Why this is so, is not fully clear to me. What's worse, it's by no means clear from the documentation. We should probably file a follow-up bug to improve the Javadoc for ZipInputStream, warning the users to stay away if they can.) > > I have also added the possibility to opt-out of reproducible building by an argument to SetupZipArchive. This is used in the closed Oracle part of the build, where we create some temporary zip files that are later discarded, and not part of the deliverables. This saves us some unnecessary overhead. FWIW, I've opened https://bugs.openjdk.java.net/browse/JDK-8278165 to at least get some documentation on the limitations of ZipInputStream. ------------- PR: https://git.openjdk.java.net/jdk/pull/6673 From ihse at openjdk.java.net Thu Dec 2 19:57:18 2021 From: ihse at openjdk.java.net (Magnus Ihse Bursie) Date: Thu, 2 Dec 2021 19:57:18 GMT Subject: RFR: 8278080: Add --with-cacerts-src='user cacerts folder' to enable deterministic cacerts generation [v2] In-Reply-To: References:

<7mR_iCEJRYWqMJhIXOvexTc-Jen4AVFTge91tV1YqSg=.442238f0-c217-4541-8d2c-b1e099814019@github.com> Message-ID: On Thu, 2 Dec 2021 19:12:37 GMT, Andrew Leonard wrote: >> Oh, I didn't expand the diff far enough to actually see the context correctly when I reviewed this as I would never have imagined the conditional to be placed after the rule. While this will work as so far as using the correct files, incremental builds will not be correct, because the rules are defined in the first pass. >> >> I very much agree with Magnus that this conditional belongs around line 63. > > yes, thanks, feeling rather stupid here! i'll raise an issue to fix @andrew-m-leonard Don't be. Make is a horrible programming language, both syntactically and semantically. It's taken me years to be somewhat comfortable with it, and often I just manage to get it right only by sticking to a few, well-proven and battle-hardened patterns. :) ------------- PR: https://git.openjdk.java.net/jdk/pull/6647 From aleonard at openjdk.java.net Thu Dec 2 21:19:33 2021 From: aleonard at openjdk.java.net (Andrew Leonard) Date: Thu, 2 Dec 2021 21:19:33 GMT Subject: RFR: 8278163: --with-cacerts-src variable resolved after GenerateCacerts recipe setup Message-ID: <1t8n2w7T2eWZPSIU9ncIitioV98d65dBlViPH_8wx3g=.b933c668-620b-4b29-9bcd-75a481d66584@github.com> PR https://github.com/openjdk/jdk/pull/6647 resolved the GENDATA_CACERTS_SRC fir --with-cacerts-src after the recipe, which meant the dependencies were wrong. This PR moves it before the recipe. Signed-off-by: Andrew Leonard ------------- Commit messages: - 8278163: --with-cacerts-src variable resolved after GenerateCacerts recipe setup Changes: https://git.openjdk.java.net/jdk/pull/6680/files Webrev: https://webrevs.openjdk.java.net/?repo=jdk&pr=6680&range=00 Issue: https://bugs.openjdk.java.net/browse/JDK-8278163 Stats: 8 lines in 1 file changed: 4 ins; 3 del; 1 mod Patch: https://git.openjdk.java.net/jdk/pull/6680.diff Fetch: git fetch https://git.openjdk.java.net/jdk pull/6680/head:pull/6680 PR: https://git.openjdk.java.net/jdk/pull/6680 From ihse at openjdk.java.net Thu Dec 2 21:31:17 2021 From: ihse at openjdk.java.net (Magnus Ihse Bursie) Date: Thu, 2 Dec 2021 21:31:17 GMT Subject: RFR: 8278163: --with-cacerts-src variable resolved after GenerateCacerts recipe setup In-Reply-To: <1t8n2w7T2eWZPSIU9ncIitioV98d65dBlViPH_8wx3g=.b933c668-620b-4b29-9bcd-75a481d66584@github.com> References: <1t8n2w7T2eWZPSIU9ncIitioV98d65dBlViPH_8wx3g=.b933c668-620b-4b29-9bcd-75a481d66584@github.com> Message-ID: <8ZHSQLfnU9pKXYLszivJbGapQ2M0D5Q6lpdEsY_suhc=.ea652bbb-3b6d-49dd-8114-171d23b9aa0f@github.com> On Thu, 2 Dec 2021 21:07:30 GMT, Andrew Leonard wrote: > PR https://github.com/openjdk/jdk/pull/6647 resolved the GENDATA_CACERTS_SRC fir --with-cacerts-src after the recipe, which meant the dependencies were wrong. > This PR moves it before the recipe. > > Signed-off-by: Andrew Leonard Thanks for fixing so quickly. ------------- Marked as reviewed by ihse (Reviewer). PR: https://git.openjdk.java.net/jdk/pull/6680 From ihse at openjdk.java.net Thu Dec 2 21:35:25 2021 From: ihse at openjdk.java.net (Magnus Ihse Bursie) Date: Thu, 2 Dec 2021 21:35:25 GMT Subject: Integrated: 8277069: [REDO] JDK-8276743 Make openjdk build Zip Archive generation "reproducible" In-Reply-To: References: Message-ID: On Thu, 2 Dec 2021 14:55:14 GMT, Magnus Ihse Bursie wrote: > This is basically Andrew's old patch that was backed out, with a single change: I'm using ZipFile instead of ZipInputStream to read in the original zip. The latter is not capable of reading the extended attributes that contain the unix permissions. (Why this is so, is not fully clear to me. What's worse, it's by no means clear from the documentation. We should probably file a follow-up bug to improve the Javadoc for ZipInputStream, warning the users to stay away if they can.) > > I have also added the possibility to opt-out of reproducible building by an argument to SetupZipArchive. This is used in the closed Oracle part of the build, where we create some temporary zip files that are later discarded, and not part of the deliverables. This saves us some unnecessary overhead. This pull request has now been integrated. Changeset: c93552c8 Author: Magnus Ihse Bursie URL: https://git.openjdk.java.net/jdk/commit/c93552c8bbcdabb6219327d67409bf63432f49d8 Stats: 262 lines in 4 files changed: 255 ins; 0 del; 7 mod 8277069: [REDO] JDK-8276743 Make openjdk build Zip Archive generation "reproducible" Co-authored-by: Andrew Leonard Co-authored-by: Magnus Ihse Bursie Reviewed-by: erikj ------------- PR: https://git.openjdk.java.net/jdk/pull/6673 From ihse at openjdk.java.net Thu Dec 2 22:53:29 2021 From: ihse at openjdk.java.net (Magnus Ihse Bursie) Date: Thu, 2 Dec 2021 22:53:29 GMT Subject: RFR: 8251400: Fix incorrect addition of library to test in JDK-8237858 Message-ID: In JDK-8237858, -pthread was added to all native tests, instead of the one single test that needed it. In the meantime, two new tests with pthread dependencies has crept in unnoticed due to this. ------------- Commit messages: - 8251400: Fix incorrect addition of library to test in JDK-8237858 Changes: https://git.openjdk.java.net/jdk/pull/6682/files Webrev: https://webrevs.openjdk.java.net/?repo=jdk&pr=6682&range=00 Issue: https://bugs.openjdk.java.net/browse/JDK-8251400 Stats: 13 lines in 2 files changed: 5 ins; 7 del; 1 mod Patch: https://git.openjdk.java.net/jdk/pull/6682.diff Fetch: git fetch https://git.openjdk.java.net/jdk pull/6682/head:pull/6682 PR: https://git.openjdk.java.net/jdk/pull/6682 From jjg at openjdk.java.net Fri Dec 3 00:35:34 2021 From: jjg at openjdk.java.net (Jonathan Gibbons) Date: Fri, 3 Dec 2021 00:35:34 GMT Subject: RFR: JDK-8272945: Use snippets in java.compiler documentation Message-ID: Please review a patch to use snippets in the `java.compiler` documentation, instead of a mix of raw HTML and/or `{@code ...}`. The change is just about the presentation of the code fragments; there are no changes to the normative specifications for the module. One of the examples went to extraordinary lengths to include the character sequence `*/` within the example. That example has been replaced by an external snippet in a separate source file, which does not have any restriction on the use of `*/`. However, it does require that the file be excluded from standard compilation, and that is done by setting `EXCLUDES`, once for the "interim" compiler, and once again for the "product" compiler. Going forward, a better solution might be to modify the `SetupJavaCompilation` macro to ignore all directories whose name is not a valid Java identifier (or, if easier, contains a `-`, such as `doc-files` or `snippet-files`.) ------------- Commit messages: - JDK-8272945: Use snippets in java.compiler documentation Changes: https://git.openjdk.java.net/jdk/pull/6686/files Webrev: https://webrevs.openjdk.java.net/?repo=jdk&pr=6686&range=00 Issue: https://bugs.openjdk.java.net/browse/JDK-8272945 Stats: 123 lines in 7 files changed: 51 ins; 25 del; 47 mod Patch: https://git.openjdk.java.net/jdk/pull/6686.diff Fetch: git fetch https://git.openjdk.java.net/jdk pull/6686/head:pull/6686 PR: https://git.openjdk.java.net/jdk/pull/6686 From ihse at openjdk.java.net Fri Dec 3 00:44:16 2021 From: ihse at openjdk.java.net (Magnus Ihse Bursie) Date: Fri, 3 Dec 2021 00:44:16 GMT Subject: RFR: JDK-8272945: Use snippets in java.compiler documentation In-Reply-To: References: Message-ID: On Fri, 3 Dec 2021 00:26:10 GMT, Jonathan Gibbons wrote: > Please review a patch to use snippets in the `java.compiler` documentation, instead of a mix of raw HTML and/or `{@code ...}`. The change is just about the presentation of the code fragments; there are no changes to the normative specifications for the module. > > One of the examples went to extraordinary lengths to include the character sequence `*/` within the example. That example has been replaced by an external snippet in a separate source file, which does not have any restriction on the use of `*/`. However, it does require that the file be excluded from standard compilation, and that is done by setting `EXCLUDES`, once for the "interim" compiler, and once again for the "product" compiler. Going forward, a better solution might be to modify the `SetupJavaCompilation` macro to ignore all directories whose name is not a valid Java identifier (or, if easier, contains a `-`, such as `doc-files` or `snippet-files`.) make/modules/java.compiler/Java.gmk line 30: > 28: > 29: EXCLUDES += \ > 30: javax/tools/snippet-files \ You can put this just on a single line :-). And I'm frankly not sure if make is happy about having a trailing backslash but no additional line... src/java.compiler/share/classes/javax/tools/snippet-files/JavaSourceFromString.java line 29: > 27: return code; > 28: } > 29: } Missing newline..? ------------- PR: https://git.openjdk.java.net/jdk/pull/6686 From darcy at openjdk.java.net Fri Dec 3 01:25:33 2021 From: darcy at openjdk.java.net (Joe Darcy) Date: Fri, 3 Dec 2021 01:25:33 GMT Subject: RFR: JDK-8278175: Enable all doclint warnings for build of java.desktop Message-ID: In JDK 18, JDK-8189591 added the ability to suppress doclint warnings. Therefore, it is now possible to enable the full doclint checks for the java.desktop module if the instances of warnings are suppressed. This patch does this; it would be preferable to address the doc warnings directly, but that is beyond what I'm attempting to do here. ------------- Commit messages: - JDK-8278175: Enable all doclint warnings for build of java.desktop Changes: https://git.openjdk.java.net/jdk/pull/6687/files Webrev: https://webrevs.openjdk.java.net/?repo=jdk&pr=6687&range=00 Issue: https://bugs.openjdk.java.net/browse/JDK-8278175 Stats: 35 lines in 20 files changed: 16 ins; 0 del; 19 mod Patch: https://git.openjdk.java.net/jdk/pull/6687.diff Fetch: git fetch https://git.openjdk.java.net/jdk pull/6687/head:pull/6687 PR: https://git.openjdk.java.net/jdk/pull/6687 From jjg at openjdk.java.net Fri Dec 3 01:41:15 2021 From: jjg at openjdk.java.net (Jonathan Gibbons) Date: Fri, 3 Dec 2021 01:41:15 GMT Subject: RFR: JDK-8278175: Enable all doclint warnings for build of java.desktop In-Reply-To: References: Message-ID: On Fri, 3 Dec 2021 01:18:20 GMT, Joe Darcy wrote: > In JDK 18, JDK-8189591 added the ability to suppress doclint warnings. Therefore, it is now possible to enable the full doclint checks for the java.desktop module if the instances of warnings are suppressed. This patch does this; it would be preferable to address the doc warnings directly, but that is beyond what I'm attempting to do here. Looks OK to me, although I don't consider myself a Reviewer for this code. ------------- PR: https://git.openjdk.java.net/jdk/pull/6687 From dholmes at openjdk.java.net Fri Dec 3 03:25:16 2021 From: dholmes at openjdk.java.net (David Holmes) Date: Fri, 3 Dec 2021 03:25:16 GMT Subject: RFR: 8251400: Fix incorrect addition of library to test in JDK-8237858 In-Reply-To: References: Message-ID: <1Rh4eAO6asVsEjAImt2nDEwT38_jcKv1ogP9LqkvlsA=.8cf662e9-fe18-4619-b257-a51ddede3c27@github.com> On Thu, 2 Dec 2021 22:45:37 GMT, Magnus Ihse Bursie wrote: > In JDK-8237858, -pthread was added to all native tests, instead of the one single test that needed it. In the meantime, two new tests with pthread dependencies has crept in unnoticed due to this. Looks good. I don't think `-pthread` would actually hurt anything though. Thanks, David ------------- Marked as reviewed by dholmes (Reviewer). PR: https://git.openjdk.java.net/jdk/pull/6682 From darcy at openjdk.java.net Fri Dec 3 03:34:30 2021 From: darcy at openjdk.java.net (Joe Darcy) Date: Fri, 3 Dec 2021 03:34:30 GMT Subject: RFR: JDK-8278179: Enable all doclint warnings for build of java.naming Message-ID: An exploratory build indicates that it is not necessary to disable the accessibility doclint check for the java.naming module. ------------- Commit messages: - JDK-8278179: Enable all doclint warnings for build of java.naming Changes: https://git.openjdk.java.net/jdk/pull/6688/files Webrev: https://webrevs.openjdk.java.net/?repo=jdk&pr=6688&range=00 Issue: https://bugs.openjdk.java.net/browse/JDK-8278179 Stats: 2 lines in 1 file changed: 0 ins; 0 del; 2 mod Patch: https://git.openjdk.java.net/jdk/pull/6688.diff Fetch: git fetch https://git.openjdk.java.net/jdk pull/6688/head:pull/6688 PR: https://git.openjdk.java.net/jdk/pull/6688 From iris at openjdk.java.net Fri Dec 3 06:21:15 2021 From: iris at openjdk.java.net (Iris Clark) Date: Fri, 3 Dec 2021 06:21:15 GMT Subject: RFR: JDK-8278179: Enable all doclint warnings for build of java.naming In-Reply-To: References: Message-ID: On Fri, 3 Dec 2021 03:28:46 GMT, Joe Darcy wrote: > An exploratory build indicates that it is not necessary to disable the accessibility doclint check for the java.naming module. ? ------------- Marked as reviewed by iris (Reviewer). PR: https://git.openjdk.java.net/jdk/pull/6688 From darcy at openjdk.java.net Fri Dec 3 06:45:45 2021 From: darcy at openjdk.java.net (Joe Darcy) Date: Fri, 3 Dec 2021 06:45:45 GMT Subject: RFR: JDK-8273146: Start of release updates for JDK 19 [v8] In-Reply-To: References: Message-ID: > The time to get JDK 19 underway draws nigh, please review this usual set of start-of-release updates, including CSRs for the javac and javax.lang.model updates: > > JDK-8277512: Add SourceVersion.RELEASE_19 > https://bugs.openjdk.java.net/browse/JDK-8277512 > > JDK-8277514: Add source 19 and target 19 to javac > https://bugs.openjdk.java.net/browse/JDK-8277514 > > Clean local tier 1 test runs for langtools, jdk, and hotspot. Joe Darcy has updated the pull request incrementally with one additional commit since the last revision: Update symbol files to JDK 18 b26. ------------- Changes: - all: https://git.openjdk.java.net/jdk/pull/6493/files - new: https://git.openjdk.java.net/jdk/pull/6493/files/b1b4ae2b..88273596 Webrevs: - full: https://webrevs.openjdk.java.net/?repo=jdk&pr=6493&range=07 - incr: https://webrevs.openjdk.java.net/?repo=jdk&pr=6493&range=06-07 Stats: 610 lines in 3 files changed: 593 ins; 3 del; 14 mod Patch: https://git.openjdk.java.net/jdk/pull/6493.diff Fetch: git fetch https://git.openjdk.java.net/jdk pull/6493/head:pull/6493 PR: https://git.openjdk.java.net/jdk/pull/6493 From alanb at openjdk.java.net Fri Dec 3 08:02:13 2021 From: alanb at openjdk.java.net (Alan Bateman) Date: Fri, 3 Dec 2021 08:02:13 GMT Subject: RFR: JDK-8272945: Use snippets in java.compiler documentation In-Reply-To: References: Message-ID: On Fri, 3 Dec 2021 00:26:10 GMT, Jonathan Gibbons wrote: > Please review a patch to use snippets in the `java.compiler` documentation, instead of a mix of raw HTML and/or `{@code ...}`. The change is just about the presentation of the code fragments; there are no changes to the normative specifications for the module. > > One of the examples went to extraordinary lengths to include the character sequence `*/` within the example. That example has been replaced by an external snippet in a separate source file, which does not have any restriction on the use of `*/`. However, it does require that the file be excluded from standard compilation, and that is done by setting `EXCLUDES`, once for the "interim" compiler, and once again for the "product" compiler. Going forward, a better solution might be to modify the `SetupJavaCompilation` macro to ignore all directories whose name is not a valid Java identifier (or, if easier, contains a `-`, such as `doc-files` or `snippet-files`.) src/java.compiler/share/classes/javax/tools/JavaCompiler.java line 189: > 187: * source code stored in a string: > 188: * > 189: * {@snippet id=fileObject class=JavaSourceFromString } JEP 413 uses the "file" attribute for external snippets, so using "class" here is new (to me anyway). Maybe the JEP should include an example that uses it. Is this the first use of an external snippet in the src tree? I suspect files in the snippet-files directory will need a copyright header (downstream builders will report issues on this). It's not clear to me how that works if @replace region replacement="" isn't the first line of the external file. ------------- PR: https://git.openjdk.java.net/jdk/pull/6686 From aleonard at openjdk.java.net Fri Dec 3 08:33:20 2021 From: aleonard at openjdk.java.net (Andrew Leonard) Date: Fri, 3 Dec 2021 08:33:20 GMT Subject: Integrated: 8278163: --with-cacerts-src variable resolved after GenerateCacerts recipe setup In-Reply-To: <1t8n2w7T2eWZPSIU9ncIitioV98d65dBlViPH_8wx3g=.b933c668-620b-4b29-9bcd-75a481d66584@github.com> References: <1t8n2w7T2eWZPSIU9ncIitioV98d65dBlViPH_8wx3g=.b933c668-620b-4b29-9bcd-75a481d66584@github.com> Message-ID: On Thu, 2 Dec 2021 21:07:30 GMT, Andrew Leonard wrote: > PR https://github.com/openjdk/jdk/pull/6647 resolved the GENDATA_CACERTS_SRC fir --with-cacerts-src after the recipe, which meant the dependencies were wrong. > This PR moves it before the recipe. > > Signed-off-by: Andrew Leonard This pull request has now been integrated. Changeset: 45da3aea Author: Andrew Leonard URL: https://git.openjdk.java.net/jdk/commit/45da3aea22fd85f214e661b2c98631cb91ddb55d Stats: 8 lines in 1 file changed: 4 ins; 3 del; 1 mod 8278163: --with-cacerts-src variable resolved after GenerateCacerts recipe setup Reviewed-by: ihse ------------- PR: https://git.openjdk.java.net/jdk/pull/6680 From erikj at openjdk.java.net Fri Dec 3 13:40:22 2021 From: erikj at openjdk.java.net (Erik Joelsson) Date: Fri, 3 Dec 2021 13:40:22 GMT Subject: RFR: JDK-8278175: Enable all doclint warnings for build of java.desktop In-Reply-To: References: Message-ID: <8e0538sQHtH4cYq5PU1oDgvcfFiUsvtB1gD3UACkFzc=.72d78b9e-5b18-4f05-8fe6-57acaccf9a99@github.com> On Fri, 3 Dec 2021 01:18:20 GMT, Joe Darcy wrote: > In JDK 18, JDK-8189591 added the ability to suppress doclint warnings. Therefore, it is now possible to enable the full doclint checks for the java.desktop module if the instances of warnings are suppressed. This patch does this; it would be preferable to address the doc warnings directly, but that is beyond what I'm attempting to do here. Build change looks good. ------------- Marked as reviewed by erikj (Reviewer). PR: https://git.openjdk.java.net/jdk/pull/6687 From erikj at openjdk.java.net Fri Dec 3 13:43:15 2021 From: erikj at openjdk.java.net (Erik Joelsson) Date: Fri, 3 Dec 2021 13:43:15 GMT Subject: RFR: 8251400: Fix incorrect addition of library to test in JDK-8237858 In-Reply-To: References: Message-ID: <7nBibp4Qcr4niJa0cN2pe_SsRP0sleKZQCnTXhYmL0E=.f84b9a8c-1365-477b-afbf-1c6f9ce884f0@github.com> On Thu, 2 Dec 2021 22:45:37 GMT, Magnus Ihse Bursie wrote: > In JDK-8237858, -pthread was added to all native tests, instead of the one single test that needed it. In the meantime, two new tests with pthread dependencies has crept in unnoticed due to this. Marked as reviewed by erikj (Reviewer). ------------- PR: https://git.openjdk.java.net/jdk/pull/6682 From erikj at openjdk.java.net Fri Dec 3 13:44:16 2021 From: erikj at openjdk.java.net (Erik Joelsson) Date: Fri, 3 Dec 2021 13:44:16 GMT Subject: RFR: JDK-8278179: Enable all doclint warnings for build of java.naming In-Reply-To: References: Message-ID: On Fri, 3 Dec 2021 03:28:46 GMT, Joe Darcy wrote: > An exploratory build indicates that it is not necessary to disable the accessibility doclint check for the java.naming module. Marked as reviewed by erikj (Reviewer). ------------- PR: https://git.openjdk.java.net/jdk/pull/6688 From erikj at openjdk.java.net Fri Dec 3 13:50:14 2021 From: erikj at openjdk.java.net (Erik Joelsson) Date: Fri, 3 Dec 2021 13:50:14 GMT Subject: RFR: JDK-8272945: Use snippets in java.compiler documentation In-Reply-To: References:

Message-ID: On Fri, 3 Dec 2021 00:41:23 GMT, Magnus Ihse Bursie wrote: >> Please review a patch to use snippets in the `java.compiler` documentation, instead of a mix of raw HTML and/or `{@code ...}`. The change is just about the presentation of the code fragments; there are no changes to the normative specifications for the module. >> >> One of the examples went to extraordinary lengths to include the character sequence `*/` within the example. That example has been replaced by an external snippet in a separate source file, which does not have any restriction on the use of `*/`. However, it does require that the file be excluded from standard compilation, and that is done by setting `EXCLUDES`, once for the "interim" compiler, and once again for the "product" compiler. Going forward, a better solution might be to modify the `SetupJavaCompilation` macro to ignore all directories whose name is not a valid Java identifier (or, if easier, contains a `-`, such as `doc-files` or `snippet-files`.) > > make/modules/java.compiler/Java.gmk line 30: > >> 28: >> 29: EXCLUDES += \ >> 30: javax/tools/snippet-files \ > > You can put this just on a single line :-). > > And I'm frankly not sure if make is happy about having a trailing backslash but no additional line... As long as the next line is empty, it works, but it's not a good idea. That's why we came up with the terminating # in our 1 element per line lists. In this case, I would prefer a single line assignment without any backslashes. ------------- PR: https://git.openjdk.java.net/jdk/pull/6686 From ihse at openjdk.java.net Fri Dec 3 17:00:18 2021 From: ihse at openjdk.java.net (Magnus Ihse Bursie) Date: Fri, 3 Dec 2021 17:00:18 GMT Subject: RFR: 8251400: Fix incorrect addition of library to test in JDK-8237858 In-Reply-To: <1Rh4eAO6asVsEjAImt2nDEwT38_jcKv1ogP9LqkvlsA=.8cf662e9-fe18-4619-b257-a51ddede3c27@github.com> References: <1Rh4eAO6asVsEjAImt2nDEwT38_jcKv1ogP9LqkvlsA=.8cf662e9-fe18-4619-b257-a51ddede3c27@github.com> Message-ID: On Fri, 3 Dec 2021 03:22:03 GMT, David Holmes wrote: >> In JDK-8237858, -pthread was added to all native tests, instead of the one single test that needed it. In the meantime, two new tests with pthread dependencies has crept in unnoticed due to this. > > Looks good. > > I don't think `-pthread` would actually hurt anything though. > > Thanks, > David @dholmes-ora I agree that it's mostly benign in this case, but where do you draw the line? For every library you can argue "this does not really hurt to include on all tests" and suddenly you have a very complex testing environment if all tests have all libraries all the time... ------------- PR: https://git.openjdk.java.net/jdk/pull/6682 From ihse at openjdk.java.net Fri Dec 3 17:00:19 2021 From: ihse at openjdk.java.net (Magnus Ihse Bursie) Date: Fri, 3 Dec 2021 17:00:19 GMT Subject: Integrated: 8251400: Fix incorrect addition of library to test in JDK-8237858 In-Reply-To: References: Message-ID: <7Xlws_sQmuBDz9zG2zv-EYqvCi_ExoiJjHL60HwQb9k=.744d2f09-f8a8-4d03-aa15-d1b7084f8ee9@github.com> On Thu, 2 Dec 2021 22:45:37 GMT, Magnus Ihse Bursie wrote: > In JDK-8237858, -pthread was added to all native tests, instead of the one single test that needed it. In the meantime, two new tests with pthread dependencies has crept in unnoticed due to this. This pull request has now been integrated. Changeset: fbf096ee Author: Magnus Ihse Bursie URL: https://git.openjdk.java.net/jdk/commit/fbf096eea46756bdac6f474266caec500c4dc5c5 Stats: 13 lines in 2 files changed: 5 ins; 7 del; 1 mod 8251400: Fix incorrect addition of library to test in JDK-8237858 Reviewed-by: dholmes, erikj ------------- PR: https://git.openjdk.java.net/jdk/pull/6682 From darcy at openjdk.java.net Fri Dec 3 18:18:22 2021 From: darcy at openjdk.java.net (Joe Darcy) Date: Fri, 3 Dec 2021 18:18:22 GMT Subject: Integrated: JDK-8278179: Enable all doclint warnings for build of java.naming In-Reply-To: References: Message-ID: On Fri, 3 Dec 2021 03:28:46 GMT, Joe Darcy wrote: > An exploratory build indicates that it is not necessary to disable the accessibility doclint check for the java.naming module. This pull request has now been integrated. Changeset: 780b8b10 Author: Joe Darcy URL: https://git.openjdk.java.net/jdk/commit/780b8b1072811208968e4f32f5368eab622fcdcc Stats: 2 lines in 1 file changed: 0 ins; 0 del; 2 mod 8278179: Enable all doclint warnings for build of java.naming Reviewed-by: iris, erikj ------------- PR: https://git.openjdk.java.net/jdk/pull/6688 From serb at openjdk.java.net Fri Dec 3 18:58:16 2021 From: serb at openjdk.java.net (Sergey Bylokhov) Date: Fri, 3 Dec 2021 18:58:16 GMT Subject: RFR: 8278080: Add --with-cacerts-src='user cacerts folder' to enable deterministic cacerts generation In-Reply-To: References:

Message-ID: On Thu, 2 Dec 2021 10:55:57 GMT, Andrew Leonard wrote: > This is the case at Adoptium for example, which uses the Mozilla trusted CA certs. But they didn't think skipping this test was too strong a step? For example validation of the certs expiration is quite useful. I tried to update the test to take into account additional certs, but it caused a merge conflict each time the certs in OpenJDK are updated. Probably we can add a config file that can inject/override some info in the test(at least skip the checksum validation)? By default this config file will be empty and will not be modified in the OpenJDK, but the vendors will be able to modify it. @wangweij @rhalade what do you think? ------------- PR: https://git.openjdk.java.net/jdk/pull/6647 From rhalade at openjdk.java.net Fri Dec 3 19:09:23 2021 From: rhalade at openjdk.java.net (Rajan Halade) Date: Fri, 3 Dec 2021 19:09:23 GMT Subject: RFR: 8278080: Add --with-cacerts-src='user cacerts folder' to enable deterministic cacerts generation [v2] In-Reply-To: References:

Message-ID: On Thu, 2 Dec 2021 12:13:03 GMT, Andrew Leonard wrote: >> Addition of a configure option --with-cacerts-src='user cacerts folder' to allow developers to specify their own cacerts PEM folder for generation of the cacerts store using the deterministic openjdk GenerateCacerts tool. >> >> Signed-off-by: Andrew Leonard > > Andrew Leonard has updated the pull request with a new target base due to a merge or a rebase. The incremental webrev excludes the unrelated changes brought in by the merge/rebase. The pull request contains four additional commits since the last revision: > > - 8278080: Add --with-cacerts-src='user cacerts folder' to enable deterministic cacerts generation > > Signed-off-by: Andrew Leonard > - Merge branch 'master' of https://github.com/openjdk/jdk into cacertssrc > - 8278080: Add --with-cacerts-src='user cacerts folder' to enable determinsitic cacerts generation > > Signed-off-by: Andrew Leonard > - 8278080: Add --with-cacerts-src='user cacerts folder' to enable determinsitic cacerts generation > > Signed-off-by: Andrew Leonard The purpose of this test is to ensure integrity of the cacerts file along with basic validation of included roots. Having a config file with this information sounds like a good idea for now to be able to handle multiple files. ------------- PR: https://git.openjdk.java.net/jdk/pull/6647 From prr at openjdk.java.net Sat Dec 4 00:48:13 2021 From: prr at openjdk.java.net (Phil Race) Date: Sat, 4 Dec 2021 00:48:13 GMT Subject: RFR: JDK-8278175: Enable all doclint warnings for build of java.desktop In-Reply-To: References: Message-ID: On Fri, 3 Dec 2021 01:18:20 GMT, Joe Darcy wrote: > In JDK 18, JDK-8189591 added the ability to suppress doclint warnings. Therefore, it is now possible to enable the full doclint checks for the java.desktop module if the instances of warnings are suppressed. This patch does this; it would be preferable to address the doc warnings directly, but that is beyond what I'm attempting to do here. Looks OK. Could you file a P4 bug showing the warnings/errors that would be generated so that we know what we need to work on to later remove these the right way. ------------- Marked as reviewed by prr (Reviewer). PR: https://git.openjdk.java.net/jdk/pull/6687 From darcy at openjdk.java.net Sat Dec 4 02:16:15 2021 From: darcy at openjdk.java.net (Joe Darcy) Date: Sat, 4 Dec 2021 02:16:15 GMT Subject: RFR: JDK-8278175: Enable all doclint warnings for build of java.desktop In-Reply-To: References: Message-ID: On Fri, 3 Dec 2021 01:18:20 GMT, Joe Darcy wrote: > In JDK 18, JDK-8189591 added the ability to suppress doclint warnings. Therefore, it is now possible to enable the full doclint checks for the java.desktop module if the instances of warnings are suppressed. This patch does this; it would be preferable to address the doc warnings directly, but that is beyond what I'm attempting to do here. > Sure; filed JDK-8278254 Cleanup doclint warnings in java.desktop module ------------- PR: https://git.openjdk.java.net/jdk/pull/6687 From darcy at openjdk.java.net Sat Dec 4 02:16:15 2021 From: darcy at openjdk.java.net (Joe Darcy) Date: Sat, 4 Dec 2021 02:16:15 GMT Subject: Integrated: JDK-8278175: Enable all doclint warnings for build of java.desktop In-Reply-To: References: Message-ID: On Fri, 3 Dec 2021 01:18:20 GMT, Joe Darcy wrote: > In JDK 18, JDK-8189591 added the ability to suppress doclint warnings. Therefore, it is now possible to enable the full doclint checks for the java.desktop module if the instances of warnings are suppressed. This patch does this; it would be preferable to address the doc warnings directly, but that is beyond what I'm attempting to do here. This pull request has now been integrated. Changeset: 02ee337a Author: Joe Darcy URL: https://git.openjdk.java.net/jdk/commit/02ee337ae0d163ae44b1691eb9de12c5608ba178 Stats: 34 lines in 20 files changed: 16 ins; 0 del; 18 mod 8278175: Enable all doclint warnings for build of java.desktop Reviewed-by: erikj, prr ------------- PR: https://git.openjdk.java.net/jdk/pull/6687 From serb at openjdk.java.net Sat Dec 4 06:47:31 2021 From: serb at openjdk.java.net (Sergey Bylokhov) Date: Sat, 4 Dec 2021 06:47:31 GMT Subject: RFR: 8278251: Enable "missing-explicit-ctor" check in the jdk.unsupported.desktop module Message-ID: <4f-QfTpojcbsiww5G7DrU7daNRNW0scSjxsPOUODdTo=.c578c7b1-2f75-4734-ae75-9c1a5c3214f4@github.com> The "missing-explicit-ctor" check was disabled by the [JDK-8071961](https://bugs.openjdk.java.net/browse/JDK-8071961) and later was fixed by the [JDK-8250853](https://bugs.openjdk.java.net/browse/JDK-8250853). So we can re-enable this check again. The fix will remove the "Java.gmk" file and as a result the "jdk.unsupported.desktop" folder. All "Pre-submit tests" builds are green. ------------- Commit messages: - Delete Java.gmk Changes: https://git.openjdk.java.net/jdk/pull/6708/files Webrev: https://webrevs.openjdk.java.net/?repo=jdk&pr=6708&range=00 Issue: https://bugs.openjdk.java.net/browse/JDK-8278251 Stats: 26 lines in 1 file changed: 0 ins; 26 del; 0 mod Patch: https://git.openjdk.java.net/jdk/pull/6708.diff Fetch: git fetch https://git.openjdk.java.net/jdk pull/6708/head:pull/6708 PR: https://git.openjdk.java.net/jdk/pull/6708 From darcy at openjdk.java.net Sun Dec 5 23:53:39 2021 From: darcy at openjdk.java.net (Joe Darcy) Date: Sun, 5 Dec 2021 23:53:39 GMT Subject: RFR: JDK-8278273: Remove unnecessary exclusion of doclint accessibility checks Message-ID: Exploratory builds indicate it is not currently necessary to exclude the doclint accessibility checks; this patch enables them. (Enabling the reference checks is left for future work.) ------------- Commit messages: - JDK-8278273: Remove unnecessary exclusion of doclint accessibility checks Changes: https://git.openjdk.java.net/jdk/pull/6713/files Webrev: https://webrevs.openjdk.java.net/?repo=jdk&pr=6713&range=00 Issue: https://bugs.openjdk.java.net/browse/JDK-8278273 Stats: 14 lines in 7 files changed: 0 ins; 0 del; 14 mod Patch: https://git.openjdk.java.net/jdk/pull/6713.diff Fetch: git fetch https://git.openjdk.java.net/jdk pull/6713/head:pull/6713 PR: https://git.openjdk.java.net/jdk/pull/6713 From iris at openjdk.java.net Mon Dec 6 06:19:14 2021 From: iris at openjdk.java.net (Iris Clark) Date: Mon, 6 Dec 2021 06:19:14 GMT Subject: RFR: JDK-8278273: Remove unnecessary exclusion of doclint accessibility checks In-Reply-To: References: Message-ID: <53hKkuTiEAI3u8ktsivvFxPwR0ZS-B8rgpLDmApjyIs=.00cd21e6-1731-4507-955a-a125b416aa13@github.com> On Sun, 5 Dec 2021 23:45:32 GMT, Joe Darcy wrote: > Exploratory builds indicate it is not currently necessary to exclude the doclint accessibility checks; this patch enables them. > > (Enabling the reference checks is left for future work.) Marked as reviewed by iris (Reviewer). ------------- PR: https://git.openjdk.java.net/jdk/pull/6713 From alanb at openjdk.java.net Mon Dec 6 07:08:12 2021 From: alanb at openjdk.java.net (Alan Bateman) Date: Mon, 6 Dec 2021 07:08:12 GMT Subject: RFR: JDK-8278273: Remove unnecessary exclusion of doclint accessibility checks In-Reply-To: References: Message-ID: <9SgzaJHojLAPSAitHsNAMOfU1ghzZWmKXT6OJEUsteQ=.c09933d0-7ce6-4bcd-8a58-d3a87d44ca88@github.com> On Sun, 5 Dec 2021 23:45:32 GMT, Joe Darcy wrote: > Exploratory builds indicate it is not currently necessary to exclude the doclint accessibility checks; this patch enables them. > > (Enabling the reference checks is left for future work.) Marked as reviewed by alanb (Reviewer). ------------- PR: https://git.openjdk.java.net/jdk/pull/6713 From shade at openjdk.java.net Mon Dec 6 11:23:26 2021 From: shade at openjdk.java.net (Aleksey Shipilev) Date: Mon, 6 Dec 2021 11:23:26 GMT Subject: RFR: 8244602: Add JTREG_REPEAT_COUNT to repeat execution of a test Message-ID: This adds the test repeat feature in the build system. This is convenient to follow-up on intermittently failing tests: the `REPEAT_COUNT > 0` would run the test multiple times, until we run out of repeats or the tests fail. With this sample test: /* * @test * @run driver IntermittentTest */ public class IntermittentTest { public static void main(String... args) { if (Math.random() < 0.05) { throw new IllegalStateException("Oops"); } } } ...a lucky run looks like this: $ CONF=linux-x86_64-server-fastdebug make run-test TEST=sanity/IntermittentTest.java JTREG="REPEAT_COUNT=5" Building target 'run-test' in configuration 'linux-x86_64-server-fastdebug' Running tests using JTREG control variable 'REPEAT_COUNT=5' Test selection 'sanity/IntermittentTest.java', will run: * jtreg:test/hotspot/jtreg/sanity/IntermittentTest.java Running test 'jtreg:test/hotspot/jtreg/sanity/IntermittentTest.java' Repeating Jtreg run: 1 out of 5 Passed: sanity/IntermittentTest.java Test results: passed: 1 Report written to ... Results written to ... Repeating Jtreg run: 2 out of 5 Passed: sanity/IntermittentTest.java Test results: passed: 1 Report written to ... Results written to ... Repeating Jtreg run: 3 out of 5 Passed: sanity/IntermittentTest.java Test results: passed: 1 Report written to ... Results written to ... Repeating Jtreg run: 4 out of 5 Passed: sanity/IntermittentTest.java Test results: passed: 1 Report written to ... Results written to ... Repeating Jtreg run: 5 out of 5 Passed: sanity/IntermittentTest.java Test results: passed: 1 Report written to ... Results written to ... Finished running test 'jtreg:test/hotspot/jtreg/sanity/IntermittentTest.java' Test report is stored in ... ============================== Test summary ============================== TEST TOTAL PASS FAIL ERROR jtreg:test/hotspot/jtreg/sanity/IntermittentTest.java 1 1 0 0 ============================== TEST SUCCESS ...and unlucky run looks like this: $ CONF=linux-x86_64-server-fastdebug make run-test TEST=sanity/IntermittentTest.java JTREG="REPEAT_COUNT=50" Building target 'run-test' in configuration 'linux-x86_64-server-fastdebug' Running tests using JTREG control variable 'REPEAT_COUNT=50' Test selection 'sanity/IntermittentTest.java', will run: * jtreg:test/hotspot/jtreg/sanity/IntermittentTest.java ... Repeating Jtreg run: 9 out of 50 Passed: sanity/IntermittentTest.java Test results: passed: 1 Report written to ... Results written to ... Repeating Jtreg run: 10 out of 50 -------------------------------------------------- TEST: sanity/IntermittentTest.java TEST JDK: ... ... STDERR: java.lang.IllegalStateException: Oops at IntermittentTest.main(IntermittentTest.java:8) at java.base/jdk.internal.reflect.DirectMethodHandleAccessor.invoke(DirectMethodHandleAccessor.java:104) at java.base/java.lang.reflect.Method.invoke(Method.java:577) at com.sun.javatest.regtest.agent.MainActionHelper$AgentVMRunnable.run(MainActionHelper.java:312) at java.base/java.lang.Thread.run(Thread.java:833) JavaTest Message: Test threw exception: java.lang.IllegalStateException JavaTest Message: shutting down test TEST RESULT: Failed. Execution failed: `main' threw exception: java.lang.IllegalStateException: Oops -------------------------------------------------- Test results: failed: 1 Report written to ... Results written to ... Error: Some tests failed or other problems occurred. Failures detected, no more repeats. Finished running test 'jtreg:test/hotspot/jtreg/sanity/IntermittentTest.java' Test report is stored in ... ============================== Test summary ============================== TEST TOTAL PASS FAIL ERROR jtreg:test/hotspot/jtreg/sanity/IntermittentTest.java >> 1 0 1 0 << ============================== TEST FAILURE ------------- Commit messages: - Fix Changes: https://git.openjdk.java.net/jdk/pull/6720/files Webrev: https://webrevs.openjdk.java.net/?repo=jdk&pr=6720&range=00 Issue: https://bugs.openjdk.java.net/browse/JDK-8244602 Stats: 28 lines in 3 files changed: 27 ins; 0 del; 1 mod Patch: https://git.openjdk.java.net/jdk/pull/6720.diff Fetch: git fetch https://git.openjdk.java.net/jdk pull/6720/head:pull/6720 PR: https://git.openjdk.java.net/jdk/pull/6720 From ihse at openjdk.java.net Mon Dec 6 11:50:16 2021 From: ihse at openjdk.java.net (Magnus Ihse Bursie) Date: Mon, 6 Dec 2021 11:50:16 GMT Subject: RFR: 8278251: Enable "missing-explicit-ctor" check in the jdk.unsupported.desktop module In-Reply-To: <4f-QfTpojcbsiww5G7DrU7daNRNW0scSjxsPOUODdTo=.c578c7b1-2f75-4734-ae75-9c1a5c3214f4@github.com> References: <4f-QfTpojcbsiww5G7DrU7daNRNW0scSjxsPOUODdTo=.c578c7b1-2f75-4734-ae75-9c1a5c3214f4@github.com> Message-ID: On Fri, 3 Dec 2021 20:55:23 GMT, Sergey Bylokhov wrote: > The "missing-explicit-ctor" check was disabled by the [JDK-8071961](https://bugs.openjdk.java.net/browse/JDK-8071961) and later was fixed by the [JDK-8250853](https://bugs.openjdk.java.net/browse/JDK-8250853). So we can re-enable this check again. > > The fix will remove the "Java.gmk" file and as a result the "jdk.unsupported.desktop" folder. > > All "Pre-submit tests" builds are green. LGTM. ------------- Marked as reviewed by ihse (Reviewer). PR: https://git.openjdk.java.net/jdk/pull/6708 From ihse at openjdk.java.net Mon Dec 6 11:52:13 2021 From: ihse at openjdk.java.net (Magnus Ihse Bursie) Date: Mon, 6 Dec 2021 11:52:13 GMT Subject: RFR: JDK-8278273: Remove unnecessary exclusion of doclint accessibility checks In-Reply-To: References: Message-ID: On Sun, 5 Dec 2021 23:45:32 GMT, Joe Darcy wrote: > Exploratory builds indicate it is not currently necessary to exclude the doclint accessibility checks; this patch enables them. > > (Enabling the reference checks is left for future work.) ? ------------- Marked as reviewed by ihse (Reviewer). PR: https://git.openjdk.java.net/jdk/pull/6713 From ihse at openjdk.java.net Mon Dec 6 11:55:12 2021 From: ihse at openjdk.java.net (Magnus Ihse Bursie) Date: Mon, 6 Dec 2021 11:55:12 GMT Subject: RFR: 8244602: Add JTREG_REPEAT_COUNT to repeat execution of a test In-Reply-To: References: Message-ID: On Mon, 6 Dec 2021 11:12:22 GMT, Aleksey Shipilev wrote: > This adds the test repeat feature in the build system. This is convenient to follow-up on intermittently failing tests: the `REPEAT_COUNT > 0` would run the test multiple times, until we run out of repeats or the tests fail. > > With this sample test: > > > /* > * @test > * @run driver IntermittentTest > */ > public class IntermittentTest { > public static void main(String... args) { > if (Math.random() < 0.05) { > throw new IllegalStateException("Oops"); > } > } > } > > > ...a lucky run looks like this: > > > $ CONF=linux-x86_64-server-fastdebug make run-test TEST=sanity/IntermittentTest.java JTREG="REPEAT_COUNT=5" > Building target 'run-test' in configuration 'linux-x86_64-server-fastdebug' > Running tests using JTREG control variable 'REPEAT_COUNT=5' > Test selection 'sanity/IntermittentTest.java', will run: > * jtreg:test/hotspot/jtreg/sanity/IntermittentTest.java > > Running test 'jtreg:test/hotspot/jtreg/sanity/IntermittentTest.java' > > Repeating Jtreg run: 1 out of 5 > Passed: sanity/IntermittentTest.java > Test results: passed: 1 > Report written to ... > Results written to ... > > Repeating Jtreg run: 2 out of 5 > Passed: sanity/IntermittentTest.java > Test results: passed: 1 > Report written to ... > Results written to ... > > Repeating Jtreg run: 3 out of 5 > Passed: sanity/IntermittentTest.java > Test results: passed: 1 > Report written to ... > Results written to ... > > Repeating Jtreg run: 4 out of 5 > Passed: sanity/IntermittentTest.java > Test results: passed: 1 > Report written to ... > Results written to ... > > Repeating Jtreg run: 5 out of 5 > Passed: sanity/IntermittentTest.java > Test results: passed: 1 > Report written to ... > Results written to ... > Finished running test 'jtreg:test/hotspot/jtreg/sanity/IntermittentTest.java' > Test report is stored in ... > > ============================== > Test summary > ============================== > TEST TOTAL PASS FAIL ERROR > jtreg:test/hotspot/jtreg/sanity/IntermittentTest.java > 1 1 0 0 > ============================== > TEST SUCCESS > > > ...and unlucky run looks like this: > > > $ CONF=linux-x86_64-server-fastdebug make run-test TEST=sanity/IntermittentTest.java JTREG="REPEAT_COUNT=50" > Building target 'run-test' in configuration 'linux-x86_64-server-fastdebug' > Running tests using JTREG control variable 'REPEAT_COUNT=50' > Test selection 'sanity/IntermittentTest.java', will run: > * jtreg:test/hotspot/jtreg/sanity/IntermittentTest.java > ... > Repeating Jtreg run: 9 out of 50 > Passed: sanity/IntermittentTest.java > Test results: passed: 1 > Report written to ... > Results written to ... > > Repeating Jtreg run: 10 out of 50 > -------------------------------------------------- > TEST: sanity/IntermittentTest.java > TEST JDK: ... > > ... > > STDERR: > java.lang.IllegalStateException: Oops > at IntermittentTest.main(IntermittentTest.java:8) > at java.base/jdk.internal.reflect.DirectMethodHandleAccessor.invoke(DirectMethodHandleAccessor.java:104) > at java.base/java.lang.reflect.Method.invoke(Method.java:577) > at com.sun.javatest.regtest.agent.MainActionHelper$AgentVMRunnable.run(MainActionHelper.java:312) > at java.base/java.lang.Thread.run(Thread.java:833) > > JavaTest Message: Test threw exception: java.lang.IllegalStateException > JavaTest Message: shutting down test > > > TEST RESULT: Failed. Execution failed: `main' threw exception: java.lang.IllegalStateException: Oops > -------------------------------------------------- > Test results: failed: 1 > Report written to ... > Results written to ... > Error: Some tests failed or other problems occurred. > > Failures detected, no more repeats. > Finished running test 'jtreg:test/hotspot/jtreg/sanity/IntermittentTest.java' > Test report is stored in ... > > ============================== > Test summary > ============================== > TEST TOTAL PASS FAIL ERROR > jtreg:test/hotspot/jtreg/sanity/IntermittentTest.java >>> 1 0 1 0 << > ============================== > TEST FAILURE Looks good. Thank you for fixing this! ------------- Marked as reviewed by ihse (Reviewer). PR: https://git.openjdk.java.net/jdk/pull/6720 From erikj at openjdk.java.net Mon Dec 6 14:58:21 2021 From: erikj at openjdk.java.net (Erik Joelsson) Date: Mon, 6 Dec 2021 14:58:21 GMT Subject: RFR: 8244602: Add JTREG_REPEAT_COUNT to repeat execution of a test In-Reply-To: References: Message-ID: <23ch8dCEaalBpkyM4DdEmmUmLb88Nm-DT6HTj7HJDm8=.114e8c6f-f56b-4e12-a1bf-5f68e6172c75@github.com> On Mon, 6 Dec 2021 11:12:22 GMT, Aleksey Shipilev wrote: > This adds the test repeat feature in the build system. This is convenient to follow-up on intermittently failing tests: the `REPEAT_COUNT > 0` would run the test multiple times, until we run out of repeats or the tests fail. > > With this sample test: > > > /* > * @test > * @run driver IntermittentTest > */ > public class IntermittentTest { > public static void main(String... args) { > if (Math.random() < 0.05) { > throw new IllegalStateException("Oops"); > } > } > } > > > ...a lucky run looks like this: > > > $ CONF=linux-x86_64-server-fastdebug make run-test TEST=sanity/IntermittentTest.java JTREG="REPEAT_COUNT=5" > Building target 'run-test' in configuration 'linux-x86_64-server-fastdebug' > Running tests using JTREG control variable 'REPEAT_COUNT=5' > Test selection 'sanity/IntermittentTest.java', will run: > * jtreg:test/hotspot/jtreg/sanity/IntermittentTest.java > > Running test 'jtreg:test/hotspot/jtreg/sanity/IntermittentTest.java' > > Repeating Jtreg run: 1 out of 5 > Passed: sanity/IntermittentTest.java > Test results: passed: 1 > Report written to ... > Results written to ... > > Repeating Jtreg run: 2 out of 5 > Passed: sanity/IntermittentTest.java > Test results: passed: 1 > Report written to ... > Results written to ... > > Repeating Jtreg run: 3 out of 5 > Passed: sanity/IntermittentTest.java > Test results: passed: 1 > Report written to ... > Results written to ... > > Repeating Jtreg run: 4 out of 5 > Passed: sanity/IntermittentTest.java > Test results: passed: 1 > Report written to ... > Results written to ... > > Repeating Jtreg run: 5 out of 5 > Passed: sanity/IntermittentTest.java > Test results: passed: 1 > Report written to ... > Results written to ... > Finished running test 'jtreg:test/hotspot/jtreg/sanity/IntermittentTest.java' > Test report is stored in ... > > ============================== > Test summary > ============================== > TEST TOTAL PASS FAIL ERROR > jtreg:test/hotspot/jtreg/sanity/IntermittentTest.java > 1 1 0 0 > ============================== > TEST SUCCESS > > > ...and unlucky run looks like this: > > > $ CONF=linux-x86_64-server-fastdebug make run-test TEST=sanity/IntermittentTest.java JTREG="REPEAT_COUNT=50" > Building target 'run-test' in configuration 'linux-x86_64-server-fastdebug' > Running tests using JTREG control variable 'REPEAT_COUNT=50' > Test selection 'sanity/IntermittentTest.java', will run: > * jtreg:test/hotspot/jtreg/sanity/IntermittentTest.java > ... > Repeating Jtreg run: 9 out of 50 > Passed: sanity/IntermittentTest.java > Test results: passed: 1 > Report written to ... > Results written to ... > > Repeating Jtreg run: 10 out of 50 > -------------------------------------------------- > TEST: sanity/IntermittentTest.java > TEST JDK: ... > > ... > > STDERR: > java.lang.IllegalStateException: Oops > at IntermittentTest.main(IntermittentTest.java:8) > at java.base/jdk.internal.reflect.DirectMethodHandleAccessor.invoke(DirectMethodHandleAccessor.java:104) > at java.base/java.lang.reflect.Method.invoke(Method.java:577) > at com.sun.javatest.regtest.agent.MainActionHelper$AgentVMRunnable.run(MainActionHelper.java:312) > at java.base/java.lang.Thread.run(Thread.java:833) > > JavaTest Message: Test threw exception: java.lang.IllegalStateException > JavaTest Message: shutting down test > > > TEST RESULT: Failed. Execution failed: `main' threw exception: java.lang.IllegalStateException: Oops > -------------------------------------------------- > Test results: failed: 1 > Report written to ... > Results written to ... > Error: Some tests failed or other problems occurred. > > Failures detected, no more repeats. > Finished running test 'jtreg:test/hotspot/jtreg/sanity/IntermittentTest.java' > Test report is stored in ... > > ============================== > Test summary > ============================== > TEST TOTAL PASS FAIL ERROR > jtreg:test/hotspot/jtreg/sanity/IntermittentTest.java >>> 1 0 1 0 << > ============================== > TEST FAILURE Marked as reviewed by erikj (Reviewer). ------------- PR: https://git.openjdk.java.net/jdk/pull/6720 From darcy at openjdk.java.net Mon Dec 6 17:00:19 2021 From: darcy at openjdk.java.net (Joe Darcy) Date: Mon, 6 Dec 2021 17:00:19 GMT Subject: Integrated: JDK-8278273: Remove unnecessary exclusion of doclint accessibility checks In-Reply-To: References: Message-ID: On Sun, 5 Dec 2021 23:45:32 GMT, Joe Darcy wrote: > Exploratory builds indicate it is not currently necessary to exclude the doclint accessibility checks; this patch enables them. > > (Enabling the reference checks is left for future work.) This pull request has now been integrated. Changeset: 5045eb53 Author: Joe Darcy URL: https://git.openjdk.java.net/jdk/commit/5045eb538b3afc6cf646642f1109473597b3004a Stats: 14 lines in 7 files changed: 0 ins; 0 del; 14 mod 8278273: Remove unnecessary exclusion of doclint accessibility checks Reviewed-by: iris, alanb, ihse ------------- PR: https://git.openjdk.java.net/jdk/pull/6713 From prr at openjdk.java.net Mon Dec 6 17:45:16 2021 From: prr at openjdk.java.net (Phil Race) Date: Mon, 6 Dec 2021 17:45:16 GMT Subject: RFR: 8278251: Enable "missing-explicit-ctor" check in the jdk.unsupported.desktop module In-Reply-To: <4f-QfTpojcbsiww5G7DrU7daNRNW0scSjxsPOUODdTo=.c578c7b1-2f75-4734-ae75-9c1a5c3214f4@github.com> References: <4f-QfTpojcbsiww5G7DrU7daNRNW0scSjxsPOUODdTo=.c578c7b1-2f75-4734-ae75-9c1a5c3214f4@github.com> Message-ID: On Fri, 3 Dec 2021 20:55:23 GMT, Sergey Bylokhov wrote: > The "missing-explicit-ctor" check was disabled by the [JDK-8071961](https://bugs.openjdk.java.net/browse/JDK-8071961) and later was fixed by the [JDK-8250853](https://bugs.openjdk.java.net/browse/JDK-8250853). So we can re-enable this check again. > > The fix will remove the "Java.gmk" file and as a result the "jdk.unsupported.desktop" folder. > > All "Pre-submit tests" builds are green. Marked as reviewed by prr (Reviewer). ------------- PR: https://git.openjdk.java.net/jdk/pull/6708 From darcy at openjdk.java.net Mon Dec 6 19:35:17 2021 From: darcy at openjdk.java.net (Joe Darcy) Date: Mon, 6 Dec 2021 19:35:17 GMT Subject: RFR: 8278251: Enable "missing-explicit-ctor" check in the jdk.unsupported.desktop module In-Reply-To: <4f-QfTpojcbsiww5G7DrU7daNRNW0scSjxsPOUODdTo=.c578c7b1-2f75-4734-ae75-9c1a5c3214f4@github.com> References: <4f-QfTpojcbsiww5G7DrU7daNRNW0scSjxsPOUODdTo=.c578c7b1-2f75-4734-ae75-9c1a5c3214f4@github.com> Message-ID: On Fri, 3 Dec 2021 20:55:23 GMT, Sergey Bylokhov wrote: > The "missing-explicit-ctor" check was disabled by the [JDK-8071961](https://bugs.openjdk.java.net/browse/JDK-8071961) and later was fixed by the [JDK-8250853](https://bugs.openjdk.java.net/browse/JDK-8250853). So we can re-enable this check again. > > The fix will remove the "Java.gmk" file and as a result the "jdk.unsupported.desktop" folder. > > All "Pre-submit tests" builds are green. Not a reviewer for this particular change, but I support its goals. ------------- PR: https://git.openjdk.java.net/jdk/pull/6708 From darcy at openjdk.java.net Mon Dec 6 21:52:37 2021 From: darcy at openjdk.java.net (Joe Darcy) Date: Mon, 6 Dec 2021 21:52:37 GMT Subject: RFR: JDK-8273146: Start of release updates for JDK 19 [v9] In-Reply-To: References: Message-ID: > The time to get JDK 19 underway draws nigh, please review this usual set of start-of-release updates, including CSRs for the javac and javax.lang.model updates: > > JDK-8277512: Add SourceVersion.RELEASE_19 > https://bugs.openjdk.java.net/browse/JDK-8277512 > > JDK-8277514: Add source 19 and target 19 to javac > https://bugs.openjdk.java.net/browse/JDK-8277514 > > Clean local tier 1 test runs for langtools, jdk, and hotspot. Joe Darcy has updated the pull request with a new target base due to a merge or a rebase. The pull request now contains 17 commits: - Merge branch 'master' into JDK-8273146 - Merge branch 'master' into JDK-8273146 - Merge branch 'master' into JDK-8273146 - Merge branch 'master' into JDK-8273146 - Update symbol files to JDK 18 b26. - Merge branch 'master' into JDK-8273146 - Merge branch 'master' into JDK-8273146 - Merge branch 'master' into JDK-8273146 - Merge branch 'master' into JDK-8273146 - Update symbol information for JDK 18 b25. - ... and 7 more: https://git.openjdk.java.net/jdk/compare/ea8d3c92...9f68398a ------------- Changes: https://git.openjdk.java.net/jdk/pull/6493/files Webrev: https://webrevs.openjdk.java.net/?repo=jdk&pr=6493&range=08 Stats: 3870 lines in 67 files changed: 3827 ins; 4 del; 39 mod Patch: https://git.openjdk.java.net/jdk/pull/6493.diff Fetch: git fetch https://git.openjdk.java.net/jdk pull/6493/head:pull/6493 PR: https://git.openjdk.java.net/jdk/pull/6493 From jjg at openjdk.java.net Tue Dec 7 02:57:10 2021 From: jjg at openjdk.java.net (Jonathan Gibbons) Date: Tue, 7 Dec 2021 02:57:10 GMT Subject: RFR: JDK-8272945: Use snippets in java.compiler documentation In-Reply-To: References:

Message-ID: On Fri, 3 Dec 2021 13:47:05 GMT, Erik Joelsson wrote: >> make/modules/java.compiler/Java.gmk line 30: >> >>> 28: >>> 29: EXCLUDES += \ >>> 30: javax/tools/snippet-files \ >> >> You can put this just on a single line :-). >> >> And I'm frankly not sure if make is happy about having a trailing backslash but no additional line... > > As long as the next line is empty, it works, but it's not a good idea. That's why we came up with the terminating # in our 1 element per line lists. In this case, I would prefer a single line assignment without any backslashes. Fixed to single line ------------- PR: https://git.openjdk.java.net/jdk/pull/6686 From jjg at openjdk.java.net Tue Dec 7 02:57:10 2021 From: jjg at openjdk.java.net (Jonathan Gibbons) Date: Tue, 7 Dec 2021 02:57:10 GMT Subject: RFR: JDK-8272945: Use snippets in java.compiler documentation In-Reply-To: References:

Message-ID: <4YcA9pBfgNQpQ7UmFfKwwL7OOXmdsGgKpD-QSJb6pt4=.04ff3193-bc64-413d-aa96-f62aaa48c3b1@github.com> On Fri, 3 Dec 2021 00:40:03 GMT, Magnus Ihse Bursie wrote: >> Please review a patch to use snippets in the `java.compiler` documentation, instead of a mix of raw HTML and/or `{@code ...}`. The change is just about the presentation of the code fragments; there are no changes to the normative specifications for the module. >> >> One of the examples went to extraordinary lengths to include the character sequence `*/` within the example. That example has been replaced by an external snippet in a separate source file, which does not have any restriction on the use of `*/`. However, it does require that the file be excluded from standard compilation, and that is done by setting `EXCLUDES`, once for the "interim" compiler, and once again for the "product" compiler. Going forward, a better solution might be to modify the `SetupJavaCompilation` macro to ignore all directories whose name is not a valid Java identifier (or, if easier, contains a `-`, such as `doc-files` or `snippet-files`.) > > src/java.compiler/share/classes/javax/tools/snippet-files/JavaSourceFromString.java line 29: > >> 27: return code; >> 28: } >> 29: } > > Missing newline..? Fixed ------------- PR: https://git.openjdk.java.net/jdk/pull/6686 From jjg at openjdk.java.net Tue Dec 7 03:05:41 2021 From: jjg at openjdk.java.net (Jonathan Gibbons) Date: Tue, 7 Dec 2021 03:05:41 GMT Subject: RFR: JDK-8272945: Use snippets in java.compiler documentation [v2] In-Reply-To: References: Message-ID: > Please review a patch to use snippets in the `java.compiler` documentation, instead of a mix of raw HTML and/or `{@code ...}`. The change is just about the presentation of the code fragments; there are no changes to the normative specifications for the module. > > One of the examples went to extraordinary lengths to include the character sequence `*/` within the example. That example has been replaced by an external snippet in a separate source file, which does not have any restriction on the use of `*/`. However, it does require that the file be excluded from standard compilation, and that is done by setting `EXCLUDES`, once for the "interim" compiler, and once again for the "product" compiler. Going forward, a better solution might be to modify the `SetupJavaCompilation` macro to ignore all directories whose name is not a valid Java identifier (or, if easier, contains a `-`, such as `doc-files` or `snippet-files`.) Jonathan Gibbons has updated the pull request incrementally with one additional commit since the last revision: Address review comments ------------- Changes: - all: https://git.openjdk.java.net/jdk/pull/6686/files - new: https://git.openjdk.java.net/jdk/pull/6686/files/97cedc9a..27467bf2 Webrevs: - full: https://webrevs.openjdk.java.net/?repo=jdk&pr=6686&range=01 - incr: https://webrevs.openjdk.java.net/?repo=jdk&pr=6686&range=00-01 Stats: 3 lines in 2 files changed: 0 ins; 1 del; 2 mod Patch: https://git.openjdk.java.net/jdk/pull/6686.diff Fetch: git fetch https://git.openjdk.java.net/jdk pull/6686/head:pull/6686 PR: https://git.openjdk.java.net/jdk/pull/6686 From shade at openjdk.java.net Tue Dec 7 11:35:17 2021 From: shade at openjdk.java.net (Aleksey Shipilev) Date: Tue, 7 Dec 2021 11:35:17 GMT Subject: RFR: 8244602: Add JTREG_REPEAT_COUNT to repeat execution of a test In-Reply-To: References: Message-ID: On Mon, 6 Dec 2021 11:12:22 GMT, Aleksey Shipilev wrote: > This adds the test repeat feature in the build system. This is convenient to follow-up on intermittently failing tests: the `REPEAT_COUNT > 0` would run the test multiple times, until we run out of repeats or the tests fail. > > With this sample test: > > > /* > * @test > * @run driver IntermittentTest > */ > public class IntermittentTest { > public static void main(String... args) { > if (Math.random() < 0.05) { > throw new IllegalStateException("Oops"); > } > } > } > > > ...a lucky run looks like this: > > > $ CONF=linux-x86_64-server-fastdebug make run-test TEST=sanity/IntermittentTest.java JTREG="REPEAT_COUNT=5" > Building target 'run-test' in configuration 'linux-x86_64-server-fastdebug' > Running tests using JTREG control variable 'REPEAT_COUNT=5' > Test selection 'sanity/IntermittentTest.java', will run: > * jtreg:test/hotspot/jtreg/sanity/IntermittentTest.java > > Running test 'jtreg:test/hotspot/jtreg/sanity/IntermittentTest.java' > > Repeating Jtreg run: 1 out of 5 > Passed: sanity/IntermittentTest.java > Test results: passed: 1 > Report written to ... > Results written to ... > > Repeating Jtreg run: 2 out of 5 > Passed: sanity/IntermittentTest.java > Test results: passed: 1 > Report written to ... > Results written to ... > > Repeating Jtreg run: 3 out of 5 > Passed: sanity/IntermittentTest.java > Test results: passed: 1 > Report written to ... > Results written to ... > > Repeating Jtreg run: 4 out of 5 > Passed: sanity/IntermittentTest.java > Test results: passed: 1 > Report written to ... > Results written to ... > > Repeating Jtreg run: 5 out of 5 > Passed: sanity/IntermittentTest.java > Test results: passed: 1 > Report written to ... > Results written to ... > Finished running test 'jtreg:test/hotspot/jtreg/sanity/IntermittentTest.java' > Test report is stored in ... > > ============================== > Test summary > ============================== > TEST TOTAL PASS FAIL ERROR > jtreg:test/hotspot/jtreg/sanity/IntermittentTest.java > 1 1 0 0 > ============================== > TEST SUCCESS > > > ...and unlucky run looks like this: > > > $ CONF=linux-x86_64-server-fastdebug make run-test TEST=sanity/IntermittentTest.java JTREG="REPEAT_COUNT=50" > Building target 'run-test' in configuration 'linux-x86_64-server-fastdebug' > Running tests using JTREG control variable 'REPEAT_COUNT=50' > Test selection 'sanity/IntermittentTest.java', will run: > * jtreg:test/hotspot/jtreg/sanity/IntermittentTest.java > ... > Repeating Jtreg run: 9 out of 50 > Passed: sanity/IntermittentTest.java > Test results: passed: 1 > Report written to ... > Results written to ... > > Repeating Jtreg run: 10 out of 50 > -------------------------------------------------- > TEST: sanity/IntermittentTest.java > TEST JDK: ... > > ... > > STDERR: > java.lang.IllegalStateException: Oops > at IntermittentTest.main(IntermittentTest.java:8) > at java.base/jdk.internal.reflect.DirectMethodHandleAccessor.invoke(DirectMethodHandleAccessor.java:104) > at java.base/java.lang.reflect.Method.invoke(Method.java:577) > at com.sun.javatest.regtest.agent.MainActionHelper$AgentVMRunnable.run(MainActionHelper.java:312) > at java.base/java.lang.Thread.run(Thread.java:833) > > JavaTest Message: Test threw exception: java.lang.IllegalStateException > JavaTest Message: shutting down test > > > TEST RESULT: Failed. Execution failed: `main' threw exception: java.lang.IllegalStateException: Oops > -------------------------------------------------- > Test results: failed: 1 > Report written to ... > Results written to ... > Error: Some tests failed or other problems occurred. > > Failures detected, no more repeats. > Finished running test 'jtreg:test/hotspot/jtreg/sanity/IntermittentTest.java' > Test report is stored in ... > > ============================== > Test summary > ============================== > TEST TOTAL PASS FAIL ERROR > jtreg:test/hotspot/jtreg/sanity/IntermittentTest.java >>> 1 0 1 0 << > ============================== > TEST FAILURE Thanks, folks! ------------- PR: https://git.openjdk.java.net/jdk/pull/6720 From shade at openjdk.java.net Tue Dec 7 11:35:18 2021 From: shade at openjdk.java.net (Aleksey Shipilev) Date: Tue, 7 Dec 2021 11:35:18 GMT Subject: Integrated: 8244602: Add JTREG_REPEAT_COUNT to repeat execution of a test In-Reply-To: References: Message-ID: <8GJM0Gpo6nEIpAb5ZyGmN6e7ELyuuT0bBd7JCBqIh9E=.d5cf615f-b45c-4499-80fb-f4f6c9526601@github.com> On Mon, 6 Dec 2021 11:12:22 GMT, Aleksey Shipilev wrote: > This adds the test repeat feature in the build system. This is convenient to follow-up on intermittently failing tests: the `REPEAT_COUNT > 0` would run the test multiple times, until we run out of repeats or the tests fail. > > With this sample test: > > > /* > * @test > * @run driver IntermittentTest > */ > public class IntermittentTest { > public static void main(String... args) { > if (Math.random() < 0.05) { > throw new IllegalStateException("Oops"); > } > } > } > > > ...a lucky run looks like this: > > > $ CONF=linux-x86_64-server-fastdebug make run-test TEST=sanity/IntermittentTest.java JTREG="REPEAT_COUNT=5" > Building target 'run-test' in configuration 'linux-x86_64-server-fastdebug' > Running tests using JTREG control variable 'REPEAT_COUNT=5' > Test selection 'sanity/IntermittentTest.java', will run: > * jtreg:test/hotspot/jtreg/sanity/IntermittentTest.java > > Running test 'jtreg:test/hotspot/jtreg/sanity/IntermittentTest.java' > > Repeating Jtreg run: 1 out of 5 > Passed: sanity/IntermittentTest.java > Test results: passed: 1 > Report written to ... > Results written to ... > > Repeating Jtreg run: 2 out of 5 > Passed: sanity/IntermittentTest.java > Test results: passed: 1 > Report written to ... > Results written to ... > > Repeating Jtreg run: 3 out of 5 > Passed: sanity/IntermittentTest.java > Test results: passed: 1 > Report written to ... > Results written to ... > > Repeating Jtreg run: 4 out of 5 > Passed: sanity/IntermittentTest.java > Test results: passed: 1 > Report written to ... > Results written to ... > > Repeating Jtreg run: 5 out of 5 > Passed: sanity/IntermittentTest.java > Test results: passed: 1 > Report written to ... > Results written to ... > Finished running test 'jtreg:test/hotspot/jtreg/sanity/IntermittentTest.java' > Test report is stored in ... > > ============================== > Test summary > ============================== > TEST TOTAL PASS FAIL ERROR > jtreg:test/hotspot/jtreg/sanity/IntermittentTest.java > 1 1 0 0 > ============================== > TEST SUCCESS > > > ...and unlucky run looks like this: > > > $ CONF=linux-x86_64-server-fastdebug make run-test TEST=sanity/IntermittentTest.java JTREG="REPEAT_COUNT=50" > Building target 'run-test' in configuration 'linux-x86_64-server-fastdebug' > Running tests using JTREG control variable 'REPEAT_COUNT=50' > Test selection 'sanity/IntermittentTest.java', will run: > * jtreg:test/hotspot/jtreg/sanity/IntermittentTest.java > ... > Repeating Jtreg run: 9 out of 50 > Passed: sanity/IntermittentTest.java > Test results: passed: 1 > Report written to ... > Results written to ... > > Repeating Jtreg run: 10 out of 50 > -------------------------------------------------- > TEST: sanity/IntermittentTest.java > TEST JDK: ... > > ... > > STDERR: > java.lang.IllegalStateException: Oops > at IntermittentTest.main(IntermittentTest.java:8) > at java.base/jdk.internal.reflect.DirectMethodHandleAccessor.invoke(DirectMethodHandleAccessor.java:104) > at java.base/java.lang.reflect.Method.invoke(Method.java:577) > at com.sun.javatest.regtest.agent.MainActionHelper$AgentVMRunnable.run(MainActionHelper.java:312) > at java.base/java.lang.Thread.run(Thread.java:833) > > JavaTest Message: Test threw exception: java.lang.IllegalStateException > JavaTest Message: shutting down test > > > TEST RESULT: Failed. Execution failed: `main' threw exception: java.lang.IllegalStateException: Oops > -------------------------------------------------- > Test results: failed: 1 > Report written to ... > Results written to ... > Error: Some tests failed or other problems occurred. > > Failures detected, no more repeats. > Finished running test 'jtreg:test/hotspot/jtreg/sanity/IntermittentTest.java' > Test report is stored in ... > > ============================== > Test summary > ============================== > TEST TOTAL PASS FAIL ERROR > jtreg:test/hotspot/jtreg/sanity/IntermittentTest.java >>> 1 0 1 0 << > ============================== > TEST FAILURE This pull request has now been integrated. Changeset: b2638e5e Author: Aleksey Shipilev URL: https://git.openjdk.java.net/jdk/commit/b2638e5efd3c2b1abe790ab59baf28afa308614f Stats: 28 lines in 3 files changed: 27 ins; 0 del; 1 mod 8244602: Add JTREG_REPEAT_COUNT to repeat execution of a test Reviewed-by: ihse, erikj ------------- PR: https://git.openjdk.java.net/jdk/pull/6720 From erikj at openjdk.java.net Tue Dec 7 13:30:15 2021 From: erikj at openjdk.java.net (Erik Joelsson) Date: Tue, 7 Dec 2021 13:30:15 GMT Subject: RFR: JDK-8272945: Use snippets in java.compiler documentation [v2] In-Reply-To: References:

Message-ID: <322owcuKtMUGmQvVrIZC223CtXQrUxPswORBfLGZv0o=.617c1da6-b354-4578-86b0-addf79d7bd97@github.com> On Tue, 7 Dec 2021 03:05:41 GMT, Jonathan Gibbons wrote: >> Please review a patch to use snippets in the `java.compiler` documentation, instead of a mix of raw HTML and/or `{@code ...}`. The change is just about the presentation of the code fragments; there are no changes to the normative specifications for the module. >> >> One of the examples went to extraordinary lengths to include the character sequence `*/` within the example. That example has been replaced by an external snippet in a separate source file, which does not have any restriction on the use of `*/`. However, it does require that the file be excluded from standard compilation, and that is done by setting `EXCLUDES`, once for the "interim" compiler, and once again for the "product" compiler. Going forward, a better solution might be to modify the `SetupJavaCompilation` macro to ignore all directories whose name is not a valid Java identifier (or, if easier, contains a `-`, such as `doc-files` or `snippet-files`.) > > Jonathan Gibbons has updated the pull request incrementally with one additional commit since the last revision: > > Address review comments Build changes look ok. ------------- Marked as reviewed by erikj (Reviewer). PR: https://git.openjdk.java.net/jdk/pull/6686 From darcy at openjdk.java.net Thu Dec 9 17:07:18 2021 From: darcy at openjdk.java.net (Joe Darcy) Date: Thu, 9 Dec 2021 17:07:18 GMT Subject: Integrated: JDK-8273146: Start of release updates for JDK 19 In-Reply-To: References: Message-ID: On Mon, 22 Nov 2021 03:15:51 GMT, Joe Darcy wrote: > The time to get JDK 19 underway draws nigh, please review this usual set of start-of-release updates, including CSRs for the javac and javax.lang.model updates: > > JDK-8277512: Add SourceVersion.RELEASE_19 > https://bugs.openjdk.java.net/browse/JDK-8277512 > > JDK-8277514: Add source 19 and target 19 to javac > https://bugs.openjdk.java.net/browse/JDK-8277514 > > Clean local tier 1 test runs for langtools, jdk, and hotspot. This pull request has now been integrated. Changeset: 09831e7a Author: Joe Darcy Committer: Jesper Wilhelmsson URL: https://git.openjdk.java.net/jdk/commit/09831e7aa47ebe41eab2f3014ebbacf338097ef6 Stats: 4252 lines in 67 files changed: 4206 ins; 7 del; 39 mod 8273146: Start of release updates for JDK 19 8277511: Add SourceVersion.RELEASE_19 8277513: Add source 19 and target 19 to javac Reviewed-by: dholmes, alanb, erikj, iris, mikael, ihse ------------- PR: https://git.openjdk.java.net/jdk/pull/6493 From aph at openjdk.java.net Thu Dec 9 17:16:20 2021 From: aph at openjdk.java.net (Andrew Haley) Date: Thu, 9 Dec 2021 17:16:20 GMT Subject: RFR: 8277204: Implementation of JEP 8264130: PAC-RET protection for Linux/AArch64 [v8] In-Reply-To: References:

Message-ID: On Thu, 2 Dec 2021 09:20:53 GMT, Alan Hayward wrote: >> PAC is an optional feature in AArch64 8.3 and is compulsory in v9. One >> of its uses is to protect against ROP based attacks. This is done by >> signing the Link Register whenever it is stored on the stack, and >> authenticating the value when it is loaded back from the stack. If an >> attacker were to try to change control flow by editing the stack then >> the authentication check of the Link Register will fail, causing a >> segfault when the function returns. >> >> On a system with PAC enabled, it is expected that all applications will >> be compiled with ROP protection. Fedora 33 and upwards already provide >> this. By compiling for ARMv8.0, GCC and LLVM will only use the set of >> PAC instructions that exist in the NOP space - on hardware without PAC, >> these instructions act as NOPs, allowing backward compatibility for >> negligible performance cost (2 NOPs per non-leaf function). >> >> Hardware is currently limited to the Apple M1 MacBooks. All testing has >> been done within a Fedora Docker image. A run of SpecJVM showed no >> difference to that of noise - which was surprising. >> >> The most important part of this patch is simply compiling using branch >> protection provided by GCC/LLVM. This protects all C++ code from being >> used in ROP attacks, removing all static ROP gadgets from use. >> >> The remainder of the patch adds ROP protection to runtime generated >> code, in both stubs and compiled Java code. Attacks here are much harder >> as ROP gadgets must be found dynamically at runtime. If/when AOT >> compilation is added to JDK, then all stubs and compiled Java will be >> susceptible ROP gadgets being found by static analysis and therefore >> potentially as vulnerable as C++ code. >> >> There are a number of places where the VM changes control flow by >> rewriting the stack or otherwise. I?ve done some analysis as to how >> these could also be used for attacks (which I didn?t want to post here). >> These areas can be protected ensuring the pointers to various stubs and >> entry points are stored in memory as signed pointers. These changes are >> simple to make (they can be reduced to a type change in common code and >> a few addition sign/auth calls in the backend), but there a lot of them >> and the total code change is fairly large. I?m happy to provide a few >> work in progress patches. >> >> In order to match the security benefits of the Apple Arm64e ABI across >> the whole of JDK, then all the changes mentioned above would be >> required. > > Alan Hayward has updated the pull request incrementally with one additional commit since the last revision: > > Fix up UseROPProtection flag make/autoconf/flags-cflags.m4 line 902: > 900: BRANCH_PROTECTION_CFLAGS="" > 901: UTIL_ARG_ENABLE(NAME: branch-protection, DEFAULT: auto, > 902: RESULT: USE_BRANCH_PROTECTION, AVAILABLE: $BRANCH_PROTECTION_AVAILABLE, What exactly is going on here? Is it that if the host compiler has "branch protection" supported, we will build with it on by default? if so, no, we don't want to do that. For now, branch protection should be an explicit opt in. ------------- PR: https://git.openjdk.java.net/jdk/pull/6334 From duke at openjdk.java.net Fri Dec 10 11:06:17 2021 From: duke at openjdk.java.net (Alan Hayward) Date: Fri, 10 Dec 2021 11:06:17 GMT Subject: RFR: 8277204: Implementation of JEP 8264130: PAC-RET protection for Linux/AArch64 [v8] In-Reply-To: References:

Message-ID: On Thu, 9 Dec 2021 17:12:45 GMT, Andrew Haley wrote: >> Alan Hayward has updated the pull request incrementally with one additional commit since the last revision: >> >> Fix up UseROPProtection flag > > make/autoconf/flags-cflags.m4 line 902: > >> 900: BRANCH_PROTECTION_CFLAGS="" >> 901: UTIL_ARG_ENABLE(NAME: branch-protection, DEFAULT: auto, >> 902: RESULT: USE_BRANCH_PROTECTION, AVAILABLE: $BRANCH_PROTECTION_AVAILABLE, > > What exactly is going on here? Is it that if the host compiler has "branch protection" supported, we will build with it on by default? if so, no, we don't want to do that. For now, branch protection should be an explicit opt in. The idea was that the same JDK could be used on PAC and non PAC systems. I agree that right now it's probably better being explicit opt in. Will update. ------------- PR: https://git.openjdk.java.net/jdk/pull/6334 From duke at openjdk.java.net Fri Dec 10 12:39:50 2021 From: duke at openjdk.java.net (Alan Hayward) Date: Fri, 10 Dec 2021 12:39:50 GMT Subject: RFR: 8277204: Implementation of JEP 8264130: PAC-RET protection for Linux/AArch64 [v9] In-Reply-To: References: Message-ID: <8qhvLwNTzv5KxwJo93xrYA3GQSAX9NJm24EmbqFc3l8=.ba92bad8-0983-4519-9255-6913569f2638@github.com> > PAC is an optional feature in AArch64 8.3 and is compulsory in v9. One > of its uses is to protect against ROP based attacks. This is done by > signing the Link Register whenever it is stored on the stack, and > authenticating the value when it is loaded back from the stack. If an > attacker were to try to change control flow by editing the stack then > the authentication check of the Link Register will fail, causing a > segfault when the function returns. > > On a system with PAC enabled, it is expected that all applications will > be compiled with ROP protection. Fedora 33 and upwards already provide > this. By compiling for ARMv8.0, GCC and LLVM will only use the set of > PAC instructions that exist in the NOP space - on hardware without PAC, > these instructions act as NOPs, allowing backward compatibility for > negligible performance cost (2 NOPs per non-leaf function). > > Hardware is currently limited to the Apple M1 MacBooks. All testing has > been done within a Fedora Docker image. A run of SpecJVM showed no > difference to that of noise - which was surprising. > > The most important part of this patch is simply compiling using branch > protection provided by GCC/LLVM. This protects all C++ code from being > used in ROP attacks, removing all static ROP gadgets from use. > > The remainder of the patch adds ROP protection to runtime generated > code, in both stubs and compiled Java code. Attacks here are much harder > as ROP gadgets must be found dynamically at runtime. If/when AOT > compilation is added to JDK, then all stubs and compiled Java will be > susceptible ROP gadgets being found by static analysis and therefore > potentially as vulnerable as C++ code. > > There are a number of places where the VM changes control flow by > rewriting the stack or otherwise. I?ve done some analysis as to how > these could also be used for attacks (which I didn?t want to post here). > These areas can be protected ensuring the pointers to various stubs and > entry points are stored in memory as signed pointers. These changes are > simple to make (they can be reduced to a type change in common code and > a few addition sign/auth calls in the backend), but there a lot of them > and the total code change is fairly large. I?m happy to provide a few > work in progress patches. > > In order to match the security benefits of the Apple Arm64e ABI across > the whole of JDK, then all the changes mentioned above would be > required. Alan Hayward has updated the pull request incrementally with one additional commit since the last revision: Default to building without branch-protection ------------- Changes: - all: https://git.openjdk.java.net/jdk/pull/6334/files - new: https://git.openjdk.java.net/jdk/pull/6334/files/995d8aa3..38c08ef5 Webrevs: - full: https://webrevs.openjdk.java.net/?repo=jdk&pr=6334&range=08 - incr: https://webrevs.openjdk.java.net/?repo=jdk&pr=6334&range=07-08 Stats: 1 line in 1 file changed: 0 ins; 0 del; 1 mod Patch: https://git.openjdk.java.net/jdk/pull/6334.diff Fetch: git fetch https://git.openjdk.java.net/jdk pull/6334/head:pull/6334 PR: https://git.openjdk.java.net/jdk/pull/6334 From aph at openjdk.java.net Fri Dec 10 13:25:21 2021 From: aph at openjdk.java.net (Andrew Haley) Date: Fri, 10 Dec 2021 13:25:21 GMT Subject: RFR: 8277204: Implementation of JEP 8264130: PAC-RET protection for Linux/AArch64 [v9] In-Reply-To: <8qhvLwNTzv5KxwJo93xrYA3GQSAX9NJm24EmbqFc3l8=.ba92bad8-0983-4519-9255-6913569f2638@github.com> References: <8qhvLwNTzv5KxwJo93xrYA3GQSAX9NJm24EmbqFc3l8=.ba92bad8-0983-4519-9255-6913569f2638@github.com> Message-ID: <5g4s-czewXTVHX027JYGJIXapsXAjGYmScabO9Nk8nA=.6bc890fd-9394-4b77-9c87-890c8364d980@github.com> On Fri, 10 Dec 2021 12:39:50 GMT, Alan Hayward wrote: >> PAC is an optional feature in AArch64 8.3 and is compulsory in v9. One >> of its uses is to protect against ROP based attacks. This is done by >> signing the Link Register whenever it is stored on the stack, and >> authenticating the value when it is loaded back from the stack. If an >> attacker were to try to change control flow by editing the stack then >> the authentication check of the Link Register will fail, causing a >> segfault when the function returns. >> >> On a system with PAC enabled, it is expected that all applications will >> be compiled with ROP protection. Fedora 33 and upwards already provide >> this. By compiling for ARMv8.0, GCC and LLVM will only use the set of >> PAC instructions that exist in the NOP space - on hardware without PAC, >> these instructions act as NOPs, allowing backward compatibility for >> negligible performance cost (2 NOPs per non-leaf function). >> >> Hardware is currently limited to the Apple M1 MacBooks. All testing has >> been done within a Fedora Docker image. A run of SpecJVM showed no >> difference to that of noise - which was surprising. >> >> The most important part of this patch is simply compiling using branch >> protection provided by GCC/LLVM. This protects all C++ code from being >> used in ROP attacks, removing all static ROP gadgets from use. >> >> The remainder of the patch adds ROP protection to runtime generated >> code, in both stubs and compiled Java code. Attacks here are much harder >> as ROP gadgets must be found dynamically at runtime. If/when AOT >> compilation is added to JDK, then all stubs and compiled Java will be >> susceptible ROP gadgets being found by static analysis and therefore >> potentially as vulnerable as C++ code. >> >> There are a number of places where the VM changes control flow by >> rewriting the stack or otherwise. I?ve done some analysis as to how >> these could also be used for attacks (which I didn?t want to post here). >> These areas can be protected ensuring the pointers to various stubs and >> entry points are stored in memory as signed pointers. These changes are >> simple to make (they can be reduced to a type change in common code and >> a few addition sign/auth calls in the backend), but there a lot of them >> and the total code change is fairly large. I?m happy to provide a few >> work in progress patches. >> >> In order to match the security benefits of the Apple Arm64e ABI across >> the whole of JDK, then all the changes mentioned above would be >> required. > > Alan Hayward has updated the pull request incrementally with one additional commit since the last revision: > > Default to building without branch-protection src/hotspot/cpu/aarch64/vm_version_aarch64.cpp line 419: > 417: if (UseROPProtection) { > 418: warning("UseROPProtection specified, but not supported on this CPU."); > 419: FLAG_SET_DEFAULT(UseROPProtection, false); Suggestion: FLAG_SET_DEFAULT(UseROPProtection, true); Given that the instructions used are in NOP space, this won't do any harm, and it will allow developers without PAC-enabled systems to see what code PAC would generate. ------------- PR: https://git.openjdk.java.net/jdk/pull/6334 From duke at openjdk.java.net Fri Dec 10 15:14:47 2021 From: duke at openjdk.java.net (Alan Hayward) Date: Fri, 10 Dec 2021 15:14:47 GMT Subject: RFR: 8277204: Implementation of JEP 8264130: PAC-RET protection for Linux/AArch64 [v10] In-Reply-To: References: Message-ID: > PAC is an optional feature in AArch64 8.3 and is compulsory in v9. One > of its uses is to protect against ROP based attacks. This is done by > signing the Link Register whenever it is stored on the stack, and > authenticating the value when it is loaded back from the stack. If an > attacker were to try to change control flow by editing the stack then > the authentication check of the Link Register will fail, causing a > segfault when the function returns. > > On a system with PAC enabled, it is expected that all applications will > be compiled with ROP protection. Fedora 33 and upwards already provide > this. By compiling for ARMv8.0, GCC and LLVM will only use the set of > PAC instructions that exist in the NOP space - on hardware without PAC, > these instructions act as NOPs, allowing backward compatibility for > negligible performance cost (2 NOPs per non-leaf function). > > Hardware is currently limited to the Apple M1 MacBooks. All testing has > been done within a Fedora Docker image. A run of SpecJVM showed no > difference to that of noise - which was surprising. > > The most important part of this patch is simply compiling using branch > protection provided by GCC/LLVM. This protects all C++ code from being > used in ROP attacks, removing all static ROP gadgets from use. > > The remainder of the patch adds ROP protection to runtime generated > code, in both stubs and compiled Java code. Attacks here are much harder > as ROP gadgets must be found dynamically at runtime. If/when AOT > compilation is added to JDK, then all stubs and compiled Java will be > susceptible ROP gadgets being found by static analysis and therefore > potentially as vulnerable as C++ code. > > There are a number of places where the VM changes control flow by > rewriting the stack or otherwise. I?ve done some analysis as to how > these could also be used for attacks (which I didn?t want to post here). > These areas can be protected ensuring the pointers to various stubs and > entry points are stored in memory as signed pointers. These changes are > simple to make (they can be reduced to a type change in common code and > a few addition sign/auth calls in the backend), but there a lot of them > and the total code change is fairly large. I?m happy to provide a few > work in progress patches. > > In order to match the security benefits of the Apple Arm64e ABI across > the whole of JDK, then all the changes mentioned above would be > required. Alan Hayward has updated the pull request incrementally with one additional commit since the last revision: Remove BSD/Apple specific code ------------- Changes: - all: https://git.openjdk.java.net/jdk/pull/6334/files - new: https://git.openjdk.java.net/jdk/pull/6334/files/38c08ef5..63f7515f Webrevs: - full: https://webrevs.openjdk.java.net/?repo=jdk&pr=6334&range=09 - incr: https://webrevs.openjdk.java.net/?repo=jdk&pr=6334&range=08-09 Stats: 55 lines in 1 file changed: 0 ins; 51 del; 4 mod Patch: https://git.openjdk.java.net/jdk/pull/6334.diff Fetch: git fetch https://git.openjdk.java.net/jdk pull/6334/head:pull/6334 PR: https://git.openjdk.java.net/jdk/pull/6334 From duke at openjdk.java.net Fri Dec 10 15:19:21 2021 From: duke at openjdk.java.net (Alan Hayward) Date: Fri, 10 Dec 2021 15:19:21 GMT Subject: RFR: 8277204: Implementation of JEP 8264130: PAC-RET protection for Linux/AArch64 [v9] In-Reply-To: <5g4s-czewXTVHX027JYGJIXapsXAjGYmScabO9Nk8nA=.6bc890fd-9394-4b77-9c87-890c8364d980@github.com> References: