IcedTea

Archived Posts from this Category

Thu 29 Jul 2010

IcedTea7 1.13 Released!

Posted by gnu_andrew under IcedTea , OpenJDK
[2] Comments 

We are pleased to announce a new major release of IcedTea7, 1.13.

This update contains the following security updates:

The IcedTea project provides a harness to build the source code from OpenJDK6 using Free Software build tools. It also includes the only Free Java plugin and Web Start implementation, and support for additional architectures over and above x86, x86_64 and SPARC via the Zero assembler port.

What’s New?

—————–

  • Updated to OpenJDK7 milestone 7/b89.
  • Removed VisualVM support; now hosted at http://icedtea.classpath.org/hg/visualvm.
  • Removed old plugin.
  • Bumped to CACAO 1.1.0 pre-release snapshot.
  • libjpeg7 & libpng 1.4 supported.
  • Latest security updates and hardening patches:
  • Bug fixes
    • PR179: Rhino bootclasspath issue
    • PR512: Extract jaxws getdtdtype patch to boot tree instead of main tree.
    • PR521: Don’t hardlink the copy of generated.
    • S6963870: NPE in CompoundBorder.getInsets()
    • S6967533: Epoch bug: ExceptionInInitializerError on systems with uninitialized clock
    • S6944361: Missing CKR_ values in PKCS11Exception
    • PR453, OJ100142: Fix policy evaluation to match the proprietary JDK.
  • SystemTap
    • Added JNI call tracing using systemtap version 1.0+ when configuring with –enable-systemtap. See tapset/hotspot_jni.stp.
    • Add support for Zero build on Hitachi SH.
    • Removed the old plugin, replaced by the NPPlugin.
    • PR476: Enable building SystemTap support on GCC 4.5.
    • Fix hotspot tapset object_alloc size variable.
    • Workaround RH613824: Missing and wrong hotspot.* probepoint arguments
  • Zero/Shark
    • Formatting changes and other fixes to match upstream
    • PR428: Shark on ARM precompiled header incls
    • Update Shark for LLVM r95390 API change.
    • S6927165: Zero S/390 fixes (from upstream)
    • Implemented Shark host CPU feature autotuner using LLVM 2.7 APIs.
    • Add s390 support to TCK setup helper script
    • Strip stupid options that llvm-config supplies
    • Update Shark for LLVM r94686 API change.
    • S6914622, S6909153, S6913869 upstream Zero fixes.
    • Fixed Shark sharkCompiler mattr memory corruption bug when using llvm 2.7.
    • PR525: Shark made not entrant deopt sigsegv regression after bump to b20 and hs17.
    • PR483: Fix miscompilation of sun.misc.Unsafe::getByte.
    • PR324, 481: Fix Shark VM crash.
    • Update Shark for LLVM 2.8 API change r100304
    • Shark calling static jni methods jclass argument fix.
    • PR484: Shark jit code block “0xcdcdcdcd” zombie wipeout Sigsegv crash
    • Backport new frame anchor and stack overflow code for Zero and Shark
    • Fix stack leak in Shark
    • PR494: Shark fails to catch Exception using catch (Throwable e)
  • NPPlugin fixes
    • PR446: Use JDK_UPDATE_VERSION to set the jpi version.
    • Re-designed frame embedding code so that the applet is dynamically packed into given handle. This increases stability and breaks reliance on the assumption that the browser will always provide a handle in a certain sequence.
    • Encode new lines, carriage returns, and other special characters before sending them to Java side (de-coding code is already in effect on Java side).
    • Centralised and increased timeouts to give slow-loading applets enough time to load.
    • Fix security permissions related to get/set property, based on specifications.
    • Added support for JSObject.finalize()
    • Liveconnect message processing design changes.
    • Message protocol overhaul to fix race conditions
    • PR166: Create FIFO pies in temp dir instead of ~/.icedteaplugin
    • Profiled memory usage and implemented proper cleanup for C++ side.
    • Update debug output string and function/structure names to change ‘GCJ’ references to ITNP/IcedTea NP Plugin
    • PR461: plugin working for NSS enabled builds with firefox including a private NSS copy
    • Removed unnecessary debug and trace output
    • PR474: Patch from Paulo Cesar Pereira de Andrade, incrementing malloc size to account for NULL terminator.
    • RH524387: javax.net.ssl.SSLKeyException: RSA premaster secret error
    • Set context classloader for all threads in an applet’s threadgroup
    • PR436: Close all applet threads on exit
    • PR480: NPPlugin with NoScript extension.
    • PR488: Question mark changing into underscore in URL.
    • RH592553: Fix bug causing 100% CPU usage.
    • Don’t generate a random pointer from a pthread_t in the debug output.
    • Add ForbiddenTargetException for legacy support.
    • Use variadic macro for plugin debug message printing.
    • Don’t link the plugin with libxul libraries.
    • Fix race conditions in plugin initialization code that were causing hangs.
    • RH506730: BankID (Norwegian common online banking authentication system) applet fails to load.
    • PR491: pass java_{code,codebase,archive} parameters to Java.
    • Adds javawebstart.version property and give user permission to read that property.
  • NetX:
    • Make path sanitization consistent; use a blacklisting approach.
    • Make the SingleInstanceServer thread a daemon thread.
    • Handle JNLP files which use native libraries but do not indicate it
    • Allow JNLP classloaders to share native libraries
    • Added encoding support
    • Do not use Look and Feel related methods for setting up security dialogs
    • Error out when unsigned jnlp applications request permissions
  • PulseAudio:
    • Add missing .c file to PulseAudio build
    • Eliminate spurious exception throwing.

The tarball can be downloaded from:

The following people helped with this release:

Gary Benson, Deepak Bhole, Andrew John Hughes, Nobuhiro Iwamatsu, Matthias Klose, Omair Majid, Edward Nevill, Xerxes Rånby, Stefan Ring, Pavel Tisnovsky, Jon VanAlten, Mark Wielaard, Man Lung Wong

We would also like to thank the bug reporters and testers!

To get started:

$ tar xzf icedtea-1.13.tar.gz
$ cd icedtea-1.13

Full build requirements and instructions are in INSTALL:

$ ./configure [--enable-zero --with-openjdk --enable-pulse-java
--enable-systemtap ...]
$ make
 

Wed 28 Jul 2010

IcedTea6 1.8.1 Released!

Posted by gnu_andrew under IcedTea , OpenJDK
1 Comment 

[Reposted on behalf of Matthias Klose, release manager for 1.8]

We are proud to announce the release of IcedTea6 1.8.1.

This update contains the following security updates:

The IcedTea project provides a harness to build the source code from OpenJDK6 using Free Software build tools. It also includes the only Free Java plugin and Web Start implementation, and support for additional architectures over and above x86, x86_64 and SPARC via the Zero assembler port.

What’s New?

  • S6678385, RH551835: Fixes jvm crashes when window is resized.
  • Produces the “expected” behavior for full screen applications, when running the Metacity window manager.
  • PR453, OJ100142: Fix policy evaluation to match the proprietary JDK.
  • IcedTeaNPPlugin.
    • RH524387: javax.net.ssl.SSLKeyException: RSA premaster secret error
    • Set context classloader for all threads in an applet’s threadgroup
    • PR436: Close all applet threads on exit
    • PR480: NPPlugin with NoScript extension.
    • PR488: Question mark changing into underscore in URL.
    • RH592553: Fix bug causing 100% CPU usage.
    • Don’t generate a random pointer from a pthread_t in the debug output.
    • Add ForbiddenTargetException for legacy support.
    • Use variadic macro for plugin debug message printing.
    • Don’t link the plugin with libxul libraries.
    • Fix race conditions in plugin initialization code that were causing hangs.
    • RH506730: BankID (Norwegian common online banking authentication system) applet fails to load.
    • PR491: pass java_{code,codebase,archive} parameters to Java.
    • Adds javawebstart.version property and give user permission to read that property.
  • NetX:
    • Fix security flaw in NetX that allows arbitrary unsigned apps to set any java property.
    • Fix a flaw that allows unsigned code to access any file on the machine (accessible to the user) and write to it.
    • Make path sanitization consistent; use a blacklisting approach.
    • Make the SingleInstanceServer thread a daemon thread.
    • Handle JNLP files which use native libraries but do not indicate it
    • Allow JNLP classloaders to share native libraries
    • Added encoding support
  • PulseAudio:
    • Eliminate spurious exception throwing.
  • Zero/Shark:
    • PR483: Fix miscompilation of sun.misc.Unsafe::getByte.
    • PR324,PR481: Fix Shark VM crash.
    • Fix Zero build on Hitachi SH.
  • SystemTap support:
    • PR476: Enable building SystemTap support on GCC 4.5.

    • The tarball can be downloaded here:


    The following people helped with this release: Gary Benson, Deepak Bhole, Andrew John Hughes, Mark Wielaard, Matthias Klose, Omair Majid, Pavel Tisnovsky, Xerxes Rånby, Jon VanAlten, Man Lung Wong, and many others.

    We would also like to thank the bug reporters and testers!

    To get started:

    $ hg clone http://icedtea.classpath.org/hg/release/icedtea6-1.8.1
$ cd icedtea6-1.8.1

    Full build requirements and instructions are in INSTALL:

    $ ./configure [--enable-visualvm --with-openjdk --enable-pulse-java
--enable-systemtap --enable-nss ...]
$ make
     

Wed 28 Jul 2010

IcedTea6 1.7.4 Released!

Posted by gnu_andrew under IcedTea , OpenJDK
No Comments 

We are pleased to announce a new security release from the IcedTea6 1.7 branch, 1.7.4.

This update contains the following security updates:

The IcedTea project provides a harness to build the source code from OpenJDK6 using Free Software build tools. It also includes the only Free Java plugin and Web Start implementation, and support for additional architectures over and above x86, x86_64 and SPARC via the Zero assembler port.

Please note that the new NPPlugin is now the default as of this release. The old plugin is no longer supported and will be removed in any future 1.7 releases. Please only report bugs against NPPlugin.

What’s New?

—————–

  • NetX security issues:
  • Backport –with-tzdata-dir support from IcedTea6 1.8 to ensure that external timezone data works again.
  • Restore icedtea-override-metacity.patch to allow full screen apps and other expected behavioral improvements.
  • S6678385, RH551835: Fixes JVM crashes when window is resized.
  • S6668231: Presence of a critical subjectAltName causes JSSE’s SunX509 to fail trusted checks.
  • S6963870: Eliminate NullPointerEx in swing class CompoundBorder method getBorderInsets.
  • S4891262: API spec, javax/accessibility: few invalid javadoc tags.
  • S6737212: Fixed javadoc warning messages in RowSet classes.
  • S6875861: javadoc build warning on java.util.Properites from unconventional @see ordering.
  • S6909563: Javadoc build warnings in rmi, security, management.
  • S6879689: Fix warning about ignored return value when compiling with -O2
  • S6917485: Corba doc warnings.
  • S6921068: Remove javadoc build warnings from specdefault tag.
  • PR453, OJ100142: Fix policy evaluation to match the proprietary JDK.
  • Make the new plugin the default. This is now the main supported plugin. Use –disable-npplugin –enable-plugin to use the old one.
  • New plugin:
    • Added support for JSObject.finalize()
    • Liveconnect message processing design changes.
    • Message protocol overhaul to fix race conditions
    • PR166: Create FIFO pies in temp dir instead of ~/.icedteaplugin
    • Profiled memory usage and implemented proper cleanup for C++ side.
    • Update debug output string and function/structure names to change ‘GCJ’ references to ITNP/IcedTea NP Plugin
    • PR461: plugin working for NSS enabled builds with firefox including a private NSS copy
    • Removed unncessary debug and trace output
    • PR474: Patch from Paulo Cesar Pereira de Andrade, incrementing malloc size to account for NULL terminator.
    • RH524387: javax.net.ssl.SSLKeyException: RSA premaster secret error
    • Set context classloader for all threads in an applet’s threadgroup
    • PR436: Close all applet threads on exit
    • PR480: NPPlugin with NoScript extension.
    • PR488: Question mark changing into underscore in URL.
    • RH592553: Fix bug causing 100% CPU usage.
    • Don’t generate a random pointer from a pthread_t in the debug output.
    • Add ForbiddenTargetException for legacy support.
    • Use variadic macro for plugin debug message printing.
    • Don’t link the plugin with libxul libraries.
    • Fix race conditions in plugin initialization code that were causing hangs.
    • RH506730: BankID (Norwegian common online banking authentication system) applet fails to load.
    • PR491: pass java_{code,codebase,archive} parameters to Java.
    • Adds javawebstart.version property and give user permission to read that property.
  • NetX:
    • Make path sanitization consistent; use a blacklisting approach.
    • Make the SingleInstanceServer thread a daemon thread.
    • Handle JNLP files which use native libraries but do not indicate it
    • Allow JNLP classloaders to share native libraries
    • Added encoding support
  • PulseAudio provider:
    • Eliminate spurious exception throwing.
  • SystemTap support:
    • PR476: Enable building SystemTap support on GCC 4.5.
    • Fix HotSpot tapset object_alloc size variable.
  • NIO2 support:
    • Fix UnixNativeDispatcher to build on all systems, not just x86 and x86_64.



The tarball can be downloaded from:

The following people helped with the 1.7 release series:

Lillian Angel, Gary Benson, Deepak Bhole, Andrew Haley, Andrew John Hughes, Nobuhiro Iwamatsu, Matthias Klose, Martin Matejovic, Omair Majid, Edward Nevill, Xerxes Rånby, Robert Schuster, Pavel Tisnovsky, Jon VanAlten, Mark Wielaard and Man Lung Wong.

We would also like to thank the bug reporters and testers!

To get started:

$ tar xzf icedtea6-1.7.4.tar.gz
$ cd icedtea6-1.7.4

Full build requirements and instructions are in INSTALL:

$ ./configure [--enable-zero --with-openjdk --enable-pulse-java
--enable-systemtap ...]
$ make
 

Mon 26 Jul 2010

IcedTea6 1.6.3 Released!

Posted by gnu_andrew under IcedTea , OpenJDK
1 Comment 

We are pleased to announce a new minor release from the IcedTea6 1.6 branch, 1.6.3.

The IcedTea project provides a harness to build the source code from OpenJDK6 using Free Software build tools. It also support for additional architectures over and above x86, x86_64 and SPARC via the Zero assembler port.


Please note that although a version of our Free Software plugin and Web Start implementation are included with the 1.6.3 release, this version is no longer supported or maintained. For plugin and Web Start usage, we recommend that you upgrade to the 1.7 or 1.8 release series.

What’s New?

—————–

  • Enable debuginfo for saproc and jsig
  • Add missing mkbc.c
  • Increase ThreadStackSize by 512kb on 32-bit Zero platforms
  • Make the original HotSpot build work for normal builds and disable Zero/Shark builds with it
  • Latest security updates and hardening patches:
    • (CVE-2010-0837): JAR “unpack200″ must verify input parameters (6902299)
    • (CVE-2010-0845): No ClassCastException for HashAttributeSet constructors if run with -Xcomp (6894807)
    • (CVE-2010-0838): CMM readMabCurveData Buffer Overflow Vulnerability (6899653)
    • (CVE-2010-0082): Loader-constraint table allows arrays instead of only the base-classes (6626217)
    • (CVE-2010-0095): Subclasses of InetAddress may incorrectly interpret network addresses (6893954)
    • (CVE-2010-0085): File TOCTOU deserialization vulnerability (6736390)
    • (CVE-2010-0091): Unsigned applet can retrieve the dragged information before drop action occurs (6887703)
    • (CVE-2010-0088): Inflater/Deflater clone issues (6745393)
    • (CVE-2010-0084): Policy/PolicyFile leak dynamic ProtectionDomains. (6633872)
    • (CVE-2010-0092): AtomicReferenceArray causes SIGSEGV -> SEGV_MAPERR error (6888149)
    • (CVE-2010-0094): Deserialization of RMIConnectionImpl objects should enforce stricter checks (6893947)
    • (CVE-2010-0093): System.arraycopy unable to reference elements beyond Integer.MAX_VALUE bytes (6892265)
    • (CVE-2010-0840): Applet Trusted Methods Chaining Privilege Escalation Vulnerability (6904691)
    • (CVE-2010-0848): AWT Library Invalid Index Vulnerability (6914823)
    • (CVE-2010-0847): ImagingLib arbitrary code execution vulnerability (6914866)
    • (CVE-2009-3555): TLS: MITM attacks via session renegotiation
    • 6639665: ThreadGroup finalizer allows creation of false root ThreadGroups
    • 6898622: ObjectIdentifer.equals is not capable of detecting incorrectly encoded CommonName OIDs
    • 6910590: Application can modify command array in ProcessBuilder
    • 6909597: JPEGImageReader stepX Integer Overflow Vulnerability
    • 6932480: Crash in CompilerThread/Parser. Unloaded array klass?
  • Add stack markings to the x86 assembly so as not to use executable stack.
  • PR179: Rewrite Rhino class files to avoid bootclasspath issue
  • PR356: Support ECC via NSS
  • PR453, OJ100142: Fix policy evaluation to match the proprietary JDK.
  • Backport tzdata support from 1.8 (–with-tzdata-dir).
  • Fix issue with ant -diagnostics on ant 1.8.0 due to changed exit code
  • S6678385, RH551835: Fixes JVM crashes when window is resized.
  • S6668231: Presence of a critical subjectAltName causes JSSE’s SunX509 to fail trusted checks.
  • S6963870: Eliminate NullPointerEx in swing class CompoundBorder method getBorderInsets.
  • S4891262: API spec, javax/accessibility: few invalid javadoc tags.
  • S6737212: Fixed javadoc warning messages in RowSet classes.
  • S6875861: javadoc build warning on java.util.Properites from unconventional @see ordering.
  • S6909563: Javadoc build warnings in rmi, security, management.
  • S6879689: Fix warning about ignored return value when compiling with -O2
  • S6917485: Corba doc warnings.
  • S6921068: Remove javadoc build warnings from specdefault tag.
  • S6822370: ReentrantReadWriteLock: threads hung when there are no threads holding onto the lock
  • SystemTap support:
    • Enable SystemTap JNI tracing.
    • Add SystemTap jstack support.
    • PR476: Enable building SystemTap support on GCC 4.5.
    • Fix HotSpot tapset object_alloc size variable.
    • Fix JNI DEFINE_NEWSCALARARRAY usage of DT_RETURN_MARK_DECL_FOR.
    • Add hotspot_jni tapset.
    • tapsets/hotspot.stp.in (hotspot.gc_end): Match gc__end, not begin.
  • PulseAudio:
    • Corrected Pulse Audio library build on PPC32 and PPC64

    • The tarball can be downloaded from:

    The following people helped with the 1.6 release series:

    Lillian Angel, Gary Benson, Deepak Bhole, Kees Cook, Andrew Haley, Andrew John Hughes, Matthias Klose, Martin Matejovic, Ed Nevill, Pavel Tisnovsky, Jon VanAlten, Mark Wielaard and many others.

    We would also like to thank the bug reporters and testers!

    To get started:

    $ tar xzf icedtea6-1.6.3.tar.gz
$ cd icedtea6-1.6.3

    Full build requirements and instructions are in INSTALL:
    $ ./configure [--enable-zero --with-openjdk --enable-pulse-java
    --enable-systemtap ...]
    $ make

     

Sun 11 Apr 2010

The Bleeding Edge of OpenJDK6: b19 & HotSpot 17

Posted by gnu_andrew under IcedTea , OpenJDK
No Comments 

Via the icedtea6-hg branch, you can now experience HotSpot 17 build 13:

$ hg clone http://icedtea.classpath.org/people/andrew/icedtea6-hg
$ cd icedtea6-hg
$ ./autogen.sh
$ cd ..
$ mkdir icedtea6-build
$ cd icedtea6-build
$ ../icedtea6-hg/configure --with-hotspot-build=hs17
$ make

and sometime later…

java version "1.6.0_18"
OpenJDK Runtime Environment (IcedTea6 1.9pre+r1f22e08af1f2) (Gentoo build 1.6.0_18-b18+r5b407bce9940)
OpenJDK 64-Bit Server VM (build 17.0-b13-rdd5a19d97c1d, mixed mode)
 

Thu 1 Apr 2010

IcedTea6 1.7.3 Released!

Posted by gnu_andrew under IcedTea , OpenJDK
1 Comment 

We are pleased to announce the release of IcedTea6 1.7.3 (2010/03/31)!

The IcedTea project provides a harness to build the source code from
OpenJDK6 using Free Software build tools. It also includes the only
Free Java plugin and Web Start implementation, and support for
additional architectures over and above x86, x86_64 and SPARC via the
Zero assembler port.

What’s New?

Bug fixes

  • Fix for plugin buffer overflow: Mozilla bug 555342
  • Fix issue with ant -diagnostics on ant 1.8.0 due to changed exit code

The tarball can be downloaded from:

The following people helped with the 1.7 release series:

Lillian Angel, Gary Benson, Deepak Bhole, Andrew Haley, Andrew John Hughes, Nobuhiro Iwamatsu, Matthias Klose, Martin Matejovic, Edward Nevill, Xerxes Rånby, Robert Schuster,Jon VanAlten, Mark Wielaard and Man Lung Wong.

We would also like to thank the bug reporters and testers!

To get started:

$ tar xzf icedtea6-1.7.3.tar.gz
$ cd icedtea6-1.7.3

Full build requirements and instructions are in INSTALL:

$ ./configure [--enable-zero --with-openjdk --enable-pulse-java --enable-systemtap ...]
$ make
 

Wed 31 Mar 2010

IcedTea6 1.7.2 (Security Updates) Released!

Posted by gnu_andrew under IcedTea , OpenJDK
1 Comment 

We are pleased to announce the release of IcedTea6 1.7.2 (2010/03/31)!

The IcedTea project provides a harness to build the source code from
OpenJDK6 using Free Software build tools. It also includes the only
Free Java plugin and Web Start implementation, and support for
additional architectures over and above x86, x86_64 and SPARC via the
Zero assembler port.

What’s New?

Security Updates and Hardening Patches

  • (CVE-2010-0837): JAR “unpack200″ must verify input parameters (6902299)
  • (CVE-2010-0845): No ClassCastException for HashAttributeSet constructors if run with -Xcomp (6894807
  • (CVE-2010-0838): CMM readMabCurveData Buffer Overflow Vulnerability (6899653)
  • (CVE-2010-0082): Loader-constraint table allows arrays instead of only the base-classes (6626217)
  • (CVE-2010-0095): Subclasses of InetAddress may incorrectly interpret network addresses (6893954)
  • (CVE-2010-0085): File TOCTOU deserialization vulnerability (6736390)
  • (CVE-2010-0091): Unsigned applet can retrieve the dragged information before drop action occurs (6887703)
  • (CVE-2010-0088): Inflater/Deflater clone issues (6745393)
  • (CVE-2010-0084): Policy/PolicyFile leak dynamic ProtectionDomains. (6633872)
  • (CVE-2010-0092): AtomicReferenceArray causes SIGSEGV -> SEGV_MAPERR error (6888149)
  • (CVE-2010-0094): Deserialization of RMIConnectionImpl objects should enforce stricter checks (6893947)
  • (CVE-2010-0093): System.arraycopy unable to reference elements beyond Integer.MAX_VALUE bytes (6892265)
  • (CVE-2010-0840): Applet Trusted Methods Chaining Privilege Escalation Vulnerability (6904691)
  • (CVE-2010-0848): AWT Library Invalid Index Vulnerability (6914823)
  • (CVE-2010-0847): ImagingLib arbitrary code execution vulnerability (6914866)
  • (CVE-2009-3555): TLS: MITM attacks via session renegotiation
  • 6639665: ThreadGroup finalizer allows creation of false root ThreadGroups
  • 6898622: ObjectIdentifer.equals is not capable of detecting incorrectly encoded CommonName OIDs
  • 6910590: Application can modify command array in ProcessBuilder
  • 6909597: JPEGImageReader stepX Integer Overflow Vulnerability
  • 6932480: Crash in CompilerThread/Parser. Unloaded array klass?

Bug fixes

  • Backport of 6822370: ReentrantReadWriteLock: threads hung when there are no threads holding onto the lock
  • Increase ThreadStackSize by 512kb on 32-bit Zero platforms
  • Check cacerts database is valid

The tarball can be downloaded from:

The following people helped with the 1.7 release series:

Lillian Angel, Gary Benson, Deepak Bhole, Andrew Haley, Andrew John Hughes, Nobuhiro Iwamatsu, Matthias Klose, Martin Matejovic, Edward Nevill, Xerxes Rånby, Robert Schuster,Jon VanAlten, Mark Wielaard and Man Lung Wong.

We would also like to thank the bug reporters and testers!

To get started:

$ tar xzf icedtea6-1.7.2.tar.gz
$ cd icedtea6-1.7.2

Full build requirements and instructions are in INSTALL:

$ ./configure [--enable-zero --with-openjdk --enable-pulse-java --enable-systemtap ...]
$ make
 

Thu 18 Feb 2010

OpenJDK6 b18 Released and in IcedTea6!

Posted by gnu_andrew under IcedTea , OpenJDK
No Comments 

Joe Darcy released OpenJDK6 b18 yesterday evening and this is now integrated with the latest IcedTea6 from Mercurial.

To build:

$ hg clone http://icedtea.classpath.org/hg/icedtea6
$ mkdir icedtea6-build
$ cd icedtea6-build
$ ../icedtea6/configure
$ make

Then grab a beverage of your choice and wait a while… I recommend adding --with-parallel-jobs to the configure invocation if you have a multi-core machine.

Once built, you will have a build of OpenJDK6 which can use the Nimbus Look and Feel as explained in my previous blog

 

Wed 27 Jan 2010

IcedTea6 1.7 Released!

Posted by gnu_andrew under IcedTea , OpenJDK
1 Comment 

We are pleased to announce the release of IcedTea6 1.7!

The IcedTea project provides a harness to build the source code from
OpenJDK6 using Free Software build tools. It also includes the only
Free Java plugin and Web Start implementation, and support for
additional architectures over and above x86, x86_64 and SPARC via the
Zero assembler port.

What’s New?

  • Updated to OpenJDK6 b17.
  • Alpha version of the new IcedTea NPRuntime based plugin with support for Firefox >= 3.5, Chromium, and other browsers that support NPRuntime (use –enable-npplugin to build it). For xulrunner >= 1.9.2 (used by Firefox >= 3.6), the new plugin is required and the build will automatically enable it if the old plugin is requested.
  • Support added for building with HotSpot 16 using –with-hotspot-build=hs16. This is the same as was released in the proprietary JDK6 update 18.
  • Zero port updated to match the version submitted to OpenJDK as closely as possible.
  • libjpeg7, libjpeg8, libpng 1.4 and libXext >= 1.1.0 supported.
  • Added JNI call tracing using systemtap version 1.0+ when configuring with –enable-systemtap. See tapset/hotspot_jni.stp.
  • Add support for building the Zero assembler port on Hitachi SH.

The tarball can be downloaded from:

The following people helped with the 1.7 release:

Lillian Angel, Gary Benson, Deepak Bhole, Andrew Haley, Andrew John Hughes, Nobuhiro Iwamatsu, Matthias Klose, Martin Matejovic, Edward Nevill, Xerxes Rånby, Robert Schuster,Jon VanAlten, Mark Wielaard and Man Lung Wong.

We would also like to thank the bug reporters and testers!

To get started:

$ tar xzf icedtea6-1.7.tar.gz
$ cd icedtea6-1.7

Full build requirements and instructions are in INSTALL:

$ ./configure [--enable-visualvm --with-openjdk --enable-pulse-java
--enable-systemtap ...]
$ make
 

Wed 18 Nov 2009

IcedTea7 1.12 (Bigger and Bolder and Rougher and Tougher!)

Posted by gnu_andrew under IcedTea , OpenJDK
[2] Comments 

We are pleased to announce the release of IcedTea7 1.12 - Bigger and Bolder and Rougher and Tougher!

The IcedTea project provides a harness to build the source code from
OpenJDK7 using Free Software build tools. It also includes the only
Free Java plugin and Web Start implementation, and support for
additional architectures over and above x86, x86_64 and SPARC via the
Zero assembler port.

What’s New?
—————–

  • Updated to OpenJDK7 milestone 5; includes:
    • From Project Coin:
      • 6860965: Support for binary literals (e.g. 2 can be written 0b10)
      • 6860965: Support for underscored literals (e.g. 123456 can be
        written 123_456)
      • 6827009: Support for strings in switch statements (e.g. case “a”)
      • 6840638: Improved inferencing with generics, e.g.
        Map map = new HashMap<>();
    • jsr166y from http://gee.cs.oswego.edu/dl/concurrency-interest/:
      • 6865571: Add a lightweight task framework known as ForkJoin
      • 6445158: Phaser - an improved CyclicBarrier
      • 6865579: Add TransferQueue/LinkedTransferQueue
    • 6890308, 6891677: The Zero assembler port
    • JIBX is no longer required to build Nimbus.
    • Many bug fixes
  • Security fixes:
    • (CVE-2009-3728) ICC_Profile file existence detection information leak (6631533)
    • (CVE-2009-3885) BMP parsing DoS with UNC ICC links (6632445)
    • (CVE-2009-3881) resurrected classloaders can still have children (6636650)
    • (CVE-2009-3882) Numerous static security flaws in Swing (findbugs) (6657026)
    • (CVE-2009-3883) Mutable statics in Windows PL&F (findbugs) (6657138)
    • (CVE-2009-3880) UI logging information leakage (6664512)
    • (CVE-2009-3879) GraphicsConfiguration information leak (6822057)
    • (CVE-2009-3884) zoneinfo file existence information leak (6824265)
    • (CVE-2009-2409) deprecate MD2 in SSL cert validation (Kaminsky) (6861062)
    • (CVE-2009-3873) JPEG Image Writer quantization problem (6862968)
    • (CVE-2009-3875) MessageDigest.isEqual introduces timing attack vulnerabilities (6863503)
    • (CVE-2009-3876, CVE-2009-3877) OpenJDK ASN.1/DER input stream parser denial of service (6864911)
    • (CVE-2009-3869) JRE AWT setDifflCM stack overflow (6872357)
    • (CVE-2009-3874) ImageI/O JPEG heap overflow (6874643)
    • (CVE-2009-3871) JRE AWT setBytePixels heap overflow (6872358)
  • The NSS crypto. provider may be turned on with –enable-nss if
    the NSS libraries and headers are available via pkg-config.
  • Makefile reorganisation
    • icedtea-ecj is now icedtea-boot and patches/ecj is now
      patches/boot.
    • The icedtea-against-icedtea target is now icedtea-stage2.
      The icedtea-against-ecj target is now icedtea-stage1.
    • The Java code for the plugin is now built by the
      liveconnect.stamp and liveconnect-dist.stamp targets
      rather than hijacking the OpenJDK build.
  • Upgraded to VisualVM 1.2.1

—————–

The tarball can be downloaded from:

The following people helped with the release:

Gary Benson, Deepak Bhole, Andrew Haley, Andrew John Hughes, Thomas Hurka, Matthias Klose, Xerxes Rånby, Jon VonAlten, Mark Wielaard and many others.

We would also like to thank the bug reporters and testers!

To get started:

$ tar xzf icedtea-1.12.tar.gz
$ cd icedtea6-1.12

Full build requirements and instructions are in INSTALL:

$ ./configure [--enable-zero --enable-shark --enable-visualvm --with-jdk-home --enable-pulse-java --enable-systemtap etc...]
$ make

Happy hacking!

 

Next Page »