HP-UX 11i Java™ SDK, RTE, and Plug-In 1.4.2.28 Release Notes HP Part Number: 5900-2196 Published: May 2012 Edition: 1.
© Copyright 2012 Hewlett-Packard Development Company, L.P. Legal Notices Reproduction, adaptation, or translation without prior written permission is prohibited, except as allowed under the copyright laws. Java™ and all Java based trademarks and logos are trademarks or registered trademarks of Oracle America and/or its affiliates in the United States and other countries.
Table of Contents Overview..............................................................................................................................6 Features.................................................................................................................................6 New in the 1.4.2.28 Release ............................................................................................7 HotSpot 1.4.2.28 Server JVM .....................................................................
HPjconfig Configuration Tool ......................................................................................23 Compiler Safe Points (HP-UX 11.00 & 11.11 (11i v1) PA-RISC) ...................................23 Using Linker Option +noenvvar and +compat on HP Integrity and PA-64 Systems .......................................................................................................................................23 Running Java with setuid or setgid ...............................................
List of Tables 1 Security Fixes...............................................................................................................
Overview The HP-UX Software Development Kit for the Java™ 2 Platform Version 1.4.2.28 release provides the tools for developing and deploying Java applications on HP-UX 11i v1 (11.11), 11i v2 (11.23), 11i v3 (11.31) HP9000 PA-RISC, and HP-UX 11i v2 (11.23) and 11i v3 (11.31) HP Integrity systems. See HP-UX PA-RISC System Requirements (page 10) and HP-UX HP Integrity System Requirements (page 10) for HP-UX releases that are not supported.
* Note that on occasion HP backports defect and security fixes from a later Oracle release. New in the 1.4.2.28 Release HP's SDK/RTE 1.4.2.28 release includes the following new features and fixes: • The Oracle 1.4.2_29 - 1.4.2_36 releases' functionality (Note that on occasion HP backports defect fixes from a later Oracle release. See the defects fixed table for all fixes in this release.) • HotSpot 1.4.2.28 Server JVM (page 7) • Defects fixed in the SDK 1.4.2.
• Java VM Debugging Interface (JVMDI) JVMDI and JPDA allow you to run HotSpot with numerous development tools. For more information, refer to http://docs.oracle.com/javase/1.4.2/docs/guide/jpda/ architecture.html • Java Platform Debugger Architecture (JPDA) Architecture and components are documented at http://java.sun.com/javase/ technologies/core/toolsapis/jpda/ and http://docs.oracle.com/javase/1.4.2/docs/ guide/jpda/. The jdb for HP-UX is similar to the Solaris implementation.
"Tuning Garbage Collection with the 1.4.2 Java Virtual Machine" at http:// java.sun.com/docs/hotspot/gc1.4.2/index.html. • Java Web Start bundled with the RTE The files for Java Web Start technology are part of the jre in the directory javaws. Web Start release notes are also included in the javaws directory.
Installation Patches *** IMPORTANT NOTE for PA-RISC Customers! *** Beginning with SDK version 1.4.2.06, the following networking patch (or its superseded patch) must be installed for HP-UX 11.11 (11i v1) PA-RISC. The patch is not required for HP Integrity, or for other PA-RISC versions. HP-UX 11.11 (11i v1) PA-RISC Required patch PHNE_29887 solves socket problems that may cause hangs For all SDK versions 1.4.2.xx, the pthreads patch shown below (or its superseded patch) must be installed for HP-UX 11.
NOTE: When downloading a .depot file, some browsers don't recognize the .depot format and treat the file as a text file. If this happens, right-click the Download Directly >> button (on the Software download confirmation window) and select Save Target As.... To verify that the file downloaded correctly you need to use MD5 Secure Checksum (md5sum). You can download MD5 Secure Checksum at HP-UX MD5 Secure Checksum if you do not already have this utility.
1. Click the Options menu on the main SD Install window and click Change Options. We recommend setting the following install options: • Deselect Mount file systems in /etc/fstab or /etc/checklist. • Select Reinstall filesets even if same revision exists. 2. 3. 4. 5. From the Actions menu click Change Source... Select Local Directory as the Source Depot Type. Enter the Source Host Name. Enter the Source Depot Path. If for example you downloaded the .
JDK: swinstall -s Jdk14.JDK14-* Jre14.JRE14-* @/ mv /opt/java1.4/* JRE: swinstall -s Jre14.JRE14-* @/ mv /opt/java1.4/* Or you can install and link to the directories. For example: JDK: swinstall -s Jdk14.JDK14-* Jre14.JRE14-* @/ ln -s //opt/java1.
charsets.jar jce.jar |_________|___________|_________|________|___ | | | | | jsse.jar server server server server server * The files for Java Web Start technology are part of the jre in the directory javaws. Web Start release notes are also included in the javaws directory. The tools are under opt/java1.4/bin and the libraries install under opt/java1.4/ lib. The tools.jar file contains the classes for supporting the tools and utilities. The file dt.
Information on Mozilla for HP-UX can be found at Mozilla Web Browser for HP-UX Downloads and Documentation. Additional Plug-in documentation and FAQs can be found athttp://www.oracle.com/technetwork/java/index-jsp-141438.html. Usage Documentation The HP-UX Programmer's Guide for Java 2 on the BSC at http://www.hp.com/go/ hpux-java-docs contains usage documentation for developers.
Dynamic TLS is not available on any HP-UX PA-RISC system. However there is a workaround. See shl_load HotSpot libjvm problem due to TLS (HP-UX 11.0 PA-RISC) (page 22) in these release notes for details. Signal Chaining Functionality With signal chaining functionality, applications can now use signals that the JVM uses and they will not interfere with the JVM's functionality. For signal chaining, the application must load the library libjsig.sl (PA) or libjsig.so (Itanium) before libc.2.
with -mt. Use of -mt must be consistent during both compilation and linking. For more information, refer to the “Native (non-Java) calling Java methods” section in the HP-UX Programmer's Guide for Java 2 on the BSC at http://www.hp.com/go/ hpux-java-docs. If you embed libjvm in a 32-bit native application and wish to use a large Java heap, you must link with the -N option. For more information, refer to the “Expanding heap size in native applications on PA-RISC HP-UX 11.
or time synchronization utilities such as ntp will not be reflected in the date and time that the Java program returns until the process is restarted. If your application requires that system time changes are immediately reflected, you can use the -XX:+UseGetTimeOfDay option to tell the JVM to use the gettimeofday call instead of the new, lightweight mechanism. However you may notice a drop in performance. Profiling In the SDK Version 1.
browser. Both files are found in the directory jre/bin and jre/, respectively, under the directory where the Runtime Plug-in has been installed. The Control Panel application generates a file: $HOME/.java/deployment/deployment.properties This file contains, among other settings, the path to the RTE to be used by the Runtime Plug-in for HP-UX when the browser loads an applet from a Runtime Plug-in enabled html page.
1.4.2.23, the JVM supports generation of multiple GC log files and rotates through the specified number of files. This allows for easier archiving of GC data and helps limit the amount of disk space consumed by the GC log. Log rotation is also supported when using zero-preparation Xverbosegc. To enable log rotation, use the following option together with -Xverbosegc, -Xloggc, or zero-preparation Xverbosegc: -XX:GCLogLimits=M,N M is a non-negative integer for the number of GC records per file.
• • • • • Java tutorials Java security Java technologies Swing Connection newsletter Java manpages (located at /opt/java1.4/man) Problem Fixes Known JavaSoft bugs are documented in the Oracle Bug Database at http:// bugs.sun.com/bugdatabase/ . Note that on occasion HP backports a defect fix from a Oracle release that has not yet been merged into our current sources. Therefore, an Oracle defect may be fixed in an HP release even though the Oracle release that contains the fix is not part of the HP release.
Recommend setting PTHREAD_SUSPEND_SYNC to 1 under certain conditions (HP-UX 11.31 (11i v3)) If on your 11.31 system you run Java programs with either the PTHREAD_FORCE_SCOPE_SYSTEM or PTHREAD_COMPAT_MODE environment variable set to 1, or with the option -XX:+UseBoundThread, then setting the environment variable PTHREAD_SUSPEND_SYNC to 1 is strongly recommended. Please see the pthread_suspend manpage for more details. shl_load HotSpot libjvm problem due to TLS (HP-UX 11.
HP-UX 11.00 HP-UX 11.11 PHKL_24064 PHKL_25468 HPjconfig Configuration Tool HPjconfig version 2.0 is not supported on the HotSpot 1.4 VM. HPjconfig version 2.1 and later is supported, which you can download free from: Java™ Technology Software on HP-UX. Compiler Safe Points (HP-UX 11.00 & 11.11 (11i v1) PA-RISC) For both HP-UX 11.0 and 11.11, using Compiler Safe Points requires a patch. The required patch numbers are shown below.
The file /etc/dld.sl.conf is only referenced when the application is executing within an suid environment. On IPF, starting with JDK 1.4.2.10, users can launch java from an suid application with linker patch PHSS_32765 (or superceding patch) installed on the system. With JDK 1.4.2.10 and patch PHSS_32765, users do not need to specify the JRE path in /etc/dld.sl.conf. HP Integrity (Itanium) Known Issues Using pthread_suspend() under certain conditions on HP-UX 11.
The HP-UX 11i September 2005 Quality Pack patch bundle provided support for /etc/ dld.sl.conf, which allows system administrators to specify a list of trusted paths on the system. When executing within a setuid environment, the dynamic loader will compare the paths in SHLIB_PATH/LD_LIBRARY_PATH against the list of trusted paths found in /etc/dld.sl.conf. If the path is a trusted path, then it will be used for library lookup.
For other problems, refer to SDK & RTE 1.4 product support page at: HP-UX Java support page. Security fixes in the 1.4.2.28 release The following security fix is included in this release.
Table 1 Security Fixes (continued) CVE Component Note CVE-2011-3389 JSSE See Note 8 CVE-2011-3552 Networking See Note 1 CVE-2012-0499 2D See Note 2 CVE-2012-0503 I18n See Note 1 CVE-2012-0505 Serialization See Note 1 CVE-2012-0502 AWT See Note 1 CVE-2011-3563 Sound See Note 2 CVE-2012-0506 CORBA See Note 1 Note 1. Applies to client deployment of Java only. This vulnerability can be exploited only through Untrusted Java Web Start applications and Untrusted Java applets.
