Commit graph

56 commits

Author SHA1 Message Date
abs
911d59eea0 Fix PLIST in the jce + amd64 case 2011-09-26 13:06:52 +00:00
obache
eaf5525133 Update sun-{jre,jdk} to 6.0.27.
Highlights
This update release contains important enhancements for java applications:
 * improved performance and stability
 * Certification for Firefox 5
Olson Data 2011g
2011-09-10 14:09:49 +00:00
sbd
424314f9fe 1) Determine JAVA_ARCH and use that instead of EMUL_ARCH when referenceing
installed files.  (This fixes a libX11.so.6 symlink creation bug).

2) Correct PLIST.linux-x86_64 now that the above symlink bug is fixed and
   use the ${PLIST.x11} plist var.

Should fix PR pkg/45283.
2011-08-25 10:32:52 +00:00
sbd
7d918a0cdd Add sfiles-x86_64.mk and update PLIST.linux-x86_64
Will hopefully fix PR pkg/45283
2011-08-24 04:01:27 +00:00
abs
a0a0bf08f1 64 bit linux systems deserve a 64 bit java runtime 2011-08-16 22:13:23 +00:00
abs
b1b3e1ce4a 64 bit linux systems deserve a 64 bit java runtime 2011-08-16 22:11:42 +00:00
obache
98429d258a Update sun-{jre,jdk}6 to 6.0.26, aka 6u26.
Java SE 6 Update 26
* Olson Data 2011g
* Bug fixes
  This release contains fixes for security vulnerabilities. For more
  information, please see Oracle Java SE Critical Patch Update advisory:
  http://www.oracle.com/technetwork/topics/security/javacpujune2011-313339.html

Java SE 6 Update 25
* Olson Data 2011b
* Java Hotspot VM 20
* Performance Improvement to BigDecimal
* Performance Improvement to java.util.logging.LogRecord
* Bug Fixes
2011-06-09 09:08:17 +00:00
obache
3d3dabe9f5 Update sun-{jre,jdk}6 to 6.0.24.
Java SE 6 Update 24
* OlsonData 2010o
* Java DB 10.6.2.1
* Bug Fixes, include following security fix.
	CVE-2010-4422
	CVE-2010-4447
	CVE-2010-4448
	CVE-2010-4450
	CVE-2010-4451
	CVE-2010-4452
	CVE-2010-4454
	CVE-2010-4462
	CVE-2010-4463
	CVE-2010-4465
	CVE-2010-4466
	CVE-2010-4467
	CVE-2010-4468
	CVE-2010-4469
	CVE-2010-4470
	CVE-2010-4471
	CVE-2010-4472
	CVE-2010-4473
	CVE-2010-4474
	CVE-2010-4475
	CVE-2010-4476

Java SE 6 Update 23
* OlsonData 2010l
* Java Hotspot VM 19.0
* Java VisualVM 1.3.1
* Menu Item Corrections for Right-to-Left Languages
* Additional Languages Support in Linux Systems
* Bug Fixes
2011-02-21 07:48:19 +00:00
obache
51875b6a81 Remove a file from PLIST, it will be regenerated in POST-INSTALL.
Bump PKGREVISION.
2010-10-23 12:26:33 +00:00
obache
34e0d34054 Update Sun Java SE 6 to 1.6.0_22, a.k.a. 6.0.22.
[Changes in 1.6.0_22 (6u22)]
http://www.oracle.com/technetwork/java/javase/6u22releasenotes-176121.html

* OlsonData 2010l

* Root Certificates

  Added new Entrust Root CA-G2 and updated Entrust.net CA (2048) root
  certificates. (Refer to 6959911.)

* Bug Fixes
  This release contains fixes for security vulnerabilities. For more
  information, please see Oracle Java SE and Java for Business Critical Patch
  Update advisory.
  http://www.oracle.com/technetwork/topics/security/javacpuoct2010-176258.html

[Changes in 1.6.0_21 (6u21)]
http://www.oracle.com/technetwork/java/javase/6u21-156341.html
* OlsonData 2010i
2010-10-16 04:41:19 +00:00
obache
029cc6928d Update sun-{jre,jdk}6 to 6.0.20, aka 1.6.0_20.
Changes in 1.6.0_20 (6u20)
* OlsonData 2010b
* A Java Network Launch Protocol (JNLP) file without a codebase parameter, such
  as the following, will no longer work with the Java SE 6 update 20 release.
      <jnlp spec="0.2 1.0" href="draw.jnlp">
  This means that developers must specify the codebase parameter in a JNLP file.
  See the following example:
      <jnlp spec="0.2 1.0"
            codebase="http://java.sun.com/javase/technologies/desktop/javawebstart/apps/"
            href="draw.jnlp">
* This release contains fixes for security vulnerabilities.
  For more information, please see Oracle Security Alert for CVE-2010-0886

Changes in 1.6.0_19 (6u19)
* OlsonData 2010b
* Root Certificates
* Ensuring Application and Applet Security when Mixing Signed and Unsigned Code
* Interim Fix for the Transport Layer Security (TLS) Man-in-the-Middle Attack
* Bug Fixes

Changes in 1.6.0_18 (6u18)
* OlsonData 2009s
* VisualVM 1.2
* Java DB 10.5.3.0
* Performance Improvements
* Deployment Updates
* JSR-173 StAX 1.2 API Upgrade
* Bug Fixes
2010-06-06 09:51:49 +00:00
joerg
0af3d58608 Allow build on DragonFly. From PR 43085 2010-03-31 02:35:05 +00:00
abs
7a0198ce4b Updated lang/sun-jre6 to 6.0.17
6u17 contains Olson time zone data version 2009m. For more information, refer to Timezone Data Versions in the JRE Software .

Security Baseline

6u17 specifies the following security baselines for use with Java Plug-in technology:
JRE Family Version 	Java SE
Security Baseline 	Java SE for Business
Security Baseline 6 	1.6.0_17 	1.6.0_17
5.0 	1.5.0_22 	1.5.0_22
1.4.2 	1.4.2_19 	1.4.2_24

Root Certificates

Root Certificates are included in this release.

    * Added one new root certificate for SECOM. (Refer to 6872579.)
    * Added one new root certificate for GlobalSign. (Refer to 6860447.)

Bug Fixes

This release contains fixes for one or more security vulnerabilities.
For more information, please see Sun Alerts 269868, 269869, 269870,
270474, 270475, and 270476.

Bug fixes for vulnerabilities are listed in the following table.
	BugId 	Category 	Subcategory 	Description 6631533 	java 	classes_2d 	ICC_Profile allows detecting if some files exist
6815780 	java 	classes_2d 	TrueType font parsing crash when stressing Sun Bug 6751322 test case
6822057 	java 	classes_2d 	X11 and Win32GraphicsDevice don't clone arrays returned from getConfigurations()
6862969 	java 	classes_2d 	JPEG JFIF Decoder issue
6862970 	java 	classes_2d 	Image Color Profile parsing issue
6872357 	java 	classes_2d 	JRE AWT setDifflCM vulnerable to Stack Overflow
6872358 	java 	classes_2d 	JRE AWT setBytePixels vulnerable to Heap Overflow
6664512 	java 	classes_awt 	Component and [Default]KeyboardFocusManager pass security sensitive objects to loggers
6636650 	java 	classes_lang 	(cl) Resurrected ClassLoaders can still have children
6861062 	java 	classes_security 	Disable MD2 in certificate chain validation
6863503 	java 	classes_security 	SECURITY: MessageDigest.isEqual introduces timing attack vulnerabilities
6864911 	java 	classes_security 	ASN.1/DER input stream parser needs more work
6854303 	java 	classes_sound 	Sun Java HsbParser.getSoundBank Stack Buffer Overflow Vulnerability
6657026 	java 	classes_swing 	Numerous static security flaws in Swing (findbugs)
6657138 	java 	classes_swing 	Mutable statics in Windows PL&F (findbugs)
6824265 	java 	classes_util_i18n 	(tz) TimeZone.getTimeZone allows probing local filesystem
6632445 	java 	imageio 	DoS from parsing BMPs with UNC ICC links
6862968 	java 	imageio 	JPEG Image Writer quantization problem
6874643 	java 	imageio 	ImageI/O JPEG is vulnerable to Heap Overflow
6869694 	java 	install 	java update malfunctioning
6869752 	java_deployment 	deployment_toolkit 	Deployment Toolkit plugin "launch" method vulnerable to exploits
6872824 	javawebstart 	general 	arbitary code execution using java web start
6870531 	javawebstart 	other 	REGRESSION:have problem to run JNLP app and applets with signed Jar files

Other bug fixes are listed in the following table.
	BugId 	Category 	Subcategory 	Description 6842999 	hotspot 	runtime_system 	Update hotspot windows os_win32 for windows 2008 R2
6804454 	java 	classes_2d 	RFE: Provide a way to control the printing dpi resolution from MSIE browser print. See also 6801859
6813208 	java 	classes_awt 	pageDialog throws NPE from applet
6825342 	java 	classes_awt 	Security warning may change Z-order of top-level
6843003 	java 	classes_lang 	Windows Server 2008 R2 system recognition
6860447 	java 	classes_security 	Add GlobalSign R3 Root certificate to the JDK
6872579 	java 	classes_security 	Add SECOM Root CA 2 to JDK
6880110 	java 	classes_util_i18n 	(tz) Support tzdata2009m
6814140 	java 	classes_util_logging 	deadlock due to synchronized demandLogger() code that locks ServerLogManager
6879614 	jaxp 	parse 	com.sun.org.apache.xerces.internal.jaxp.DocumentBuilderImpl failing to parse xml document
2009-11-22 19:27:21 +00:00
abs
f342cfce4f Updated lang/sun-jre6 to 6.0.16
Changes in 1.6.0_16 (6u16)

6u16 contains Olson time zone data version 2009i.

Bug Fixes

6862295 	hotspot 	jvmti 	JDWP threadid changes during debugging session (leading to ignored breakpoints)


Changes in 1.6.0_15 (6u15)

Root Certificates

Root Certificates are included in this release.

* Added one new root certificate and removed 3 root certificates from Entrust. (Refer to 6805338.)
* Added three new root certificates from Keynectis. (Refer to 6845457.)
* Added three new root certificates from Quovadis. (Refer to 6846473.)

Blacklist Entries

This update release includes the following new entry to the Blacklist:

* JNLPAppletLauncher (See Sun Alert 263490 .)

Note: Users should install JDK and JRE 6 Update 15 or later on systems running JDK and JRE 5.0 and SDK and JRE 1.4.2 to take advantage of this blacklist feature. For more information see the Blacklist Jar Feature section in the 6u14 Release Notes.

Debug Issue

Java ™ Virtual Machine Tool Interface (JVM TI) breakpoints are reliable only when either the Parallel Scavenge garbage collector (-XX:+UseParallelGC) or the Parallel Compacting garbage collector (-XX:+UseParallelOldGC) is used.

When other collectors are used, breakpoints may stop functioning, and JVM TI object tags may become unusable after a full GC operation is performed. Java ™ Debug Interface (JDI) ThreadReferences have an embedded thread ID that depends on JVM TI object tags, thus the embedded thread ID may change unexpectedly. This may cause confusion in thread based JDI events.

Note that the Serial garbage collector (-XX:+UseSerialGC) is vulnerable to this problem and is selected by default on some platforms. The work around is to explicitly select the Parallel Scavenge collector using the command line option -XX:+UseParallelGC.

(Refer to 6862295.)
Bug Fixes

This release contains fixes for one or more security vulnerabilities. For more information, please see Sun Alerts 263408 , 263409 , 263428 , 263429 , 263488 , 263489 , and 264648.

Bug fixes for vulnerabilities are listed in the following table.
BugId 	Category 	Subcategory 	Description 6656610 	java 	accessibility 	AccessibleResourceBundle.getContents exposes mutable static (findbugs)
6656586 	java 	classes_awt 	Cursor.predefined is protected static mutable (findbugs)
6805231 	java 	classes_awt 	Security Warning Icon is missing in Windows 2000 Prof from Jdk build 6u12
6818787 	java 	classes_awt 	It is possible to reposition the security icon too far from the border of the window on X11
6823373 	java 	classes_awt 	[ZDI-CAN-460] Java Web Start JPEG header parsing needs more scruity
6660539 	java 	classes_beans 	Introspector cache mutable static
6777487 	java 	classes_beans 	Encoder allows reading private variables with certain names
6801071 	java 	classes_net 	Remote sites can compromise user privacy and possibly hijack web session
6801497 	java 	classes_net 	Proxy is assumed to be immutable but is non-final
6657695 	java 	classes_security 	AbstractSaslImpl.logger is a static mutable (findbugs)
6824440 	java 	classes_security 	XML Signature HMAC issue
6657625 	java 	classes_sound 	RmfFileReader/StandardMidiFileWriter.types are public mutable statics (findbugs)
6738524 	java 	classes_sound 	JDK13Services allows read access to system properties from untrusted code
6777448 	java 	classes_sound 	JDK13Services.getProviders creates instances with full privileges
6588003 	java 	classes_swing 	LayoutQueue mutable statics
6660049 	java 	classes_swing 	Synth Region.uiToRegionMap/lowerCaseNameMap are mutable statics
6849518 	java 	classes_swing 	NPE is thrown in jemmy library since 6u15 b01 at javax.swing.plaf.synth.SynthContext.isSubregion()
6656625 	java 	imageio 	ImageReaderSpi.STANDARD_INPUT_TYPE/ImageWriterSpi.STANDARD_OUTPUT_TYPE are mutable static (findbugs)
6657133 	java 	imageio 	Mutable statics in imageio plugins (findbugs)
6830335 	java 	jar 	Java JAR Pack200 Decompression Integer Overflow Vulnerability
6755840 	java_plugin 	plugin 	Version selection allows old zip and certificate handling to be exploited
6848964 	javawebstart 	general 	TCK jnlp test jnlp_file/appletDesc/index.html#misc fails with NPE starting 6u15 b01
6862844 	javawebstart 	other 	java web start ActiveX control security problem caused by ATL PROP_ENTRY macro
6845701 	jaxp 	parse 	Xerces2 Java XML library infinite loop with malformed XML input
6813167 	jax-ws 	other 	6u14 JAX-WS audit mutable static bugs
6736293 	jmx 	classes 	OpenType checks can be bypassed through finalizer resurrection
6657619 	jndi 	dns 	DnsContext.debug is public static mutable (findbugs)

Other bug fixes are listed in the following table.
BugId 	Category 	Subcategory 	Description 6786503 	hotspot 	garbage_collector 	Overflow list performance can be improved
6787254 	hotspot 	garbage_collector 	Work queue capacity can be increased substantially on some platforms
6805338 	java 	classes_security 	Add 1 new Entrust root CA cert and remove 3 others with 1024 bit keys
6845457 	java 	classes_security 	Add root certs for Keynectis CA
6846473 	java 	classes_security 	Add QuoVadis root CA certs to the JRE
6848984 	java 	classes_util_i18n 	(tz) Support tzdata2009i
6851214 	java 	classes_util_i18n 	(tz) New Jordan rule creates a failure for SimpleTimeZone parsing post tzdata2009h
6845077 	java 	install 	silent JDK should install JRE/Java DB silently
6846531 	javawebstart 	other 	REGRESSION application from ocie.net does not work with 6.0_14
6461727 	jce 	pkcs11_csp 	TripleDES KeyGenerators in SunPKCS11 and SunJCE do not agree on key length
2009-08-22 22:39:57 +00:00
joerg
edbc2fac64 Replace @exec/@unexec with @pkgdir or drop it. 2009-06-14 20:34:12 +00:00
joerg
62d1ba2bac Remove @dirrm entries from PLISTs 2009-06-14 18:03:28 +00:00
obache
0d0d46cb0d Recover checksum for jce_policy file, it had been lost updating to u14. 2009-06-09 00:24:01 +00:00
christos
fa7b4202ab update to u14, u12 has security issues. Please read the release notes for u14
particularly with respect to the new G1 garbage collector.
2009-06-02 16:31:26 +00:00
wiz
60f460ab01 Use standard location for LICENSE line (in MAINTAINER/HOMEPAGE/COMMENT
block). Uncomment some commented out LICENSE lines while here.
2009-05-19 08:59:00 +00:00
joerg
2d1ba244e9 Simply and speed up buildlink3.mk files and processing.
This changes the buildlink3.mk files to use an include guard for the
recursive include. The use of BUILDLINK_DEPTH, BUILDLINK_DEPENDS,
BUILDLINK_PACKAGES and BUILDLINK_ORDER is handled by a single new
variable BUILDLINK_TREE. Each buildlink3.mk file adds a pair of
enter/exit marker, which can be used to reconstruct the tree and
to determine first level includes. Avoiding := for large variables
(BUILDLINK_ORDER) speeds up parse time as += has linear complexity.
The include guard reduces system time by avoiding reading files over and
over again. For complex packages this reduces both %user and %sys time to
half of the former time.
2009-03-20 19:23:50 +00:00
abs
fafa4ffc55 More pkglint 2009-03-06 16:22:55 +00:00
abs
e3ed8eb8c1 pkglint, use ${PLIST.x11} instead of PLIST_SUBST 2009-03-06 16:18:04 +00:00
abs
fc59526304 Fix DESTDIR support when building native linux 2009-03-03 11:09:03 +00:00
abs
b46f783aec move registration.xml fix to pre-install and WRCSRC - suggested by obache@ 2009-02-20 14:37:58 +00:00
abs
ae5ccf5ed6 since registration.xml is only generated the first time a package is built
on a box, just remove it in post-install so we can have a consistent
package build
2009-02-20 11:56:55 +00:00
abs
7c41642b67 +java/sun-6/lib/servicetag/registration.xml 2009-02-19 16:27:26 +00:00
obache
ba7655de1c Re-add missing checksum for jce_policy file.
Part of PR 40644.
2009-02-15 02:33:07 +00:00
adrianp
9b47335f49 Fix detection on OpenSolaris 2009-02-11 21:20:46 +00:00
christos
8052251b71 welcome to update 12 2009-02-08 00:23:20 +00:00
christos
adc05f9d7a more PLIST fixes. 2009-01-18 21:52:25 +00:00
christos
c919f79dcc welcome to 6u11 2009-01-18 21:45:26 +00:00
reinoud
5ec44a8854 Bump revisions of sun-jre6 and sun-jdk6 as suggested by joerg 2008-11-11 16:17:10 +00:00
reinoud
f2e030a3f6 Add missing file in PLIST; no need to update of patch number.
java/sun-6/lib/servicetag/registration.xml
2008-11-11 15:05:51 +00:00
adrianp
9f99fb4d58 Fix path to jre on SunOS 2008-10-25 18:05:03 +00:00
adrianp
99b3bfea12 Remove the Darwin specific hacks in this so it can detect Java on other
OSes as well (e.g. OpenSolaris).
2008-10-24 23:19:04 +00:00
adrianp
c4d68df6f4 Add support for builtin Java 1.6 on Darwin 9.* 2008-10-24 21:35:14 +00:00
joerg
3d8ef5a52d Second round of explicit pax dependencies. As reminded by tnn@,
many packages used to use ${PAX}. Use the common way of directly calling
pax, it is created as tool after all.
2008-05-26 02:13:14 +00:00
jlam
841dfa0e7a Convert to use PLIST_VARS instead of manually passing "@comment "
through PLIST_SUBST to the plist module.
2008-04-12 22:42:57 +00:00
adrianp
49d60d67d9 We're at u5 not u4. Add a note about this so it does not happen again. 2008-03-12 14:26:33 +00:00
tnn
dcbed76ba1 Update to Java 6.0 Update 5. Security update that fixes multiple recently
reported vulnerabilities.
* http://java.sun.com/javase/6/webnotes/ReleaseNotes.html#160_05
2008-03-05 22:32:09 +00:00
jlam
8216d744ac Mechanical changes to add DESTDIR support to packages that install
their files via a custom do-install target.
2008-03-04 16:38:11 +00:00
adrianp
3a39c8fe49 s/u1/u4/ 2008-01-24 14:49:39 +00:00
obache
bb62b9cc42 Use EMUL_ARCH instead of MACHINE_ARCH for x86_64 platform using 32bit binary.
Problem reported in PR 37725.
2008-01-20 12:51:43 +00:00
tnn
d7aae7dacd Keep sun-jre6 and sun-jdk6 versions in sync. Noted by veego@ 2008-01-20 09:21:35 +00:00
tnn
4f40d394f8 Update lang/sun-jre6 to 6.0.3 and lang/sun-jdk6 to 6.0.4.
Please see the release notes online[1] for the list of fixed bugs.
Also, the license was wrong. There are several differences in all clauses
between the 1.3 and 6 licenses, so add the proper license files.
[1] http://java.sun.com/javase/6/webnotes/ReleaseNotes.html
2008-01-20 02:31:46 +00:00
jlam
3544f37c8d If running native Linux, fail to install if the X11 libraries aren't
available "somehow" -- for X11_TYPE == "native", then just fail,
otherwise for X11_TYPE == "modular", then build the libX11 package to
satisfy the library requirements for "javaws" and "policytool".

This fixes pkg/36838 reported by Ondrej Tuma.

Bump the PKGREVISIONs for sun-jre14, sun-jre15, and sun-jre6.
2007-08-27 21:51:22 +00:00
jlam
c1ef32dc2d We always install into "i386", not ${MACHINE_ARCH}, which would be wrong
on amd64.
2007-08-23 18:46:36 +00:00
jlam
ee8ef2f817 Don't bother stating that we need COMPAT_LINUX, as the packages we
depend upon to supply the Linux shared libraries already tell the user
this.  The JDK packages also depend on the corresponding JRE package,
so they don't need to show the same message -- keep the message with
the JRE packages instead.
2007-08-22 14:49:21 +00:00
jlam
505cbc4440 Fix error that happened during conversion to the emulator framework:
the Sun JDK/JRE packages require the "compat" Linux module, so make
that a hard requirement in EMUL_MODULES.linux.

Bump the PKGREVISION for sun-{jdk,jre}{13,14,15,6}.
2007-08-22 14:03:47 +00:00
jlam
594c02995d Skip the check for the right file -- the installed file is under
${EMUL_ARCH}, not ${MACHINE_ARCH}.
2007-08-02 17:55:17 +00:00