OpenJDK 17 Runtime Environment
332589c5ef
* Rebase RH1648249 nss.cfg patch so it applies after the FIPS patch * RH2023467: Enable FIPS keys export * RH2094027: SunEC runtime permission for FIPS - Update FIPS support to bring in latest changes * RH2036462: sun.security.pkcs11.wrapper.PKCS11.getInstance breakage * RH2090378: Revert to disabling system security properties and FIPS mode support together - Rebase RH1648249 nss.cfg patch so it applies after the FIPS patch - Enable system security properties in the RPM (now disabled by default in the FIPS repo) - Improve security properties test to check both enabled and disabled behaviour - Run security properties test with property debugging on - RH2007331: SecretKey generate/import operations don't add the CKA_SIGN attribute in FIPS mode - Use SunPKCS11 Attributes Configuration to set CKA_SIGN=true on SecretKey generate/import operations in FIPS mode, see: https://docs.oracle.com/en/java/javase/17/security/pkcs11-reference-guide1.html#GUID-C4ABFACB-B2C9-4E71-A313-79F881488BB9__PKCS11-ATTRIBUTES-CONFIGURATION - Turn on system security properties as part of the build's install section - Move cacerts replacement to install section and retain original of this and tzdb.dat - Run tests on the installed image, rather than the build image - Introduce variables to refer to the static library installation directories - Use relative symlinks so they work within the image - Run debug symbols check during build stage, before the install strips them Related: RHEL-45216 |
||
|---|---|---|
| tests | ||
| .gitignore | ||
| fips-17u-f8142a23d0a.patch | ||
| gating.yaml | ||
| generate_source_tarball.sh | ||
| icedtea_sync.sh | ||
| java-17-openjdk.spec | ||
| jconsole.desktop.in | ||
| jdk8275535-rh2053256-ldap_auth.patch | ||
| NEWS | ||
| nss.cfg.in | ||
| nss.fips.cfg.in | ||
| README.md | ||
| remove-intree-libraries.sh | ||
| rh649512-remove_uses_of_far_in_jpeg_libjpeg_turbo_1_4_compat_for_jdk10_and_up.patch | ||
| rh1648242-accessible_toolkit_crash_do_not_break_jvm.patch | ||
| rh1648249-add_commented_out_nss_cfg_provider_to_java_security.patch | ||
| rh1648644-java_access_bridge_privileged_security.patch | ||
| rh1684077-openjdk_should_depend_on_pcsc-lite-libs_instead_of_pcsc-lite-devel.patch | ||
| rh1750419-redhat_alt_java.patch | ||
| rpminspect.yaml | ||
| sources | ||
| TestCryptoLevel.java | ||
| TestECDSA.java | ||
| TestSecurityProperties.java | ||
OpenJDK 17 is the latest Long-Term Support (LTS) release of the Java platform.
For a list of major changes from OpenJDK 11 (java-11-openjdk), see the upstream release page for OpenJDK 17 and the preceding interim releases: