Bug#895619: plexus-compiler: use --release instead of -source/-target for jdk9+ when setting defaults

2018-04-13 Thread Emmanuel Bourg 
Thank you for the patch Tiago. "1.7" is repeated many time, that might
be nice to put it in a variable so we can update the patch easily in the
future.

Emmanuel

__
This is the maintainer address of Debian's Java team
. 
Please use
debian-j...@lists.debian.org for discussions and questions.

Bug#895619: plexus-compiler: use --release instead of -source/-target for jdk9+ when setting defaults

2018-04-13 Thread Tiago Daitx 
Please consider the attached debdiff for review.

On why it is important to use --release instead of the usual -source/-target:
any package that is not build with it can run into those
incompatibilities at runtime when run with an older (but targeted)
release. As a lot of libraries are being build with only
-source/-target set any package that depend on those won't run on
older (but targeted) jdk. It can also affect builds in case the
compiled tool is run during build time with the same old targeted jdk
- see bug #895234 where it was impossible to build
libcommons-lang3-java with openjdk-8 because bnd would fail. In fact,
for the affected packages (ie. use of flip()Ljava/nio/ByteBuffer),
since the build works but runtime fails the current scenario is the
same as setting -target 1.9.

This is already happening with the transition from openjdk-8 to 9 and,
although there's no such indication, it could also affect the
transition from 9/10 to 11 if they do similar changes to the JDK.

Another alternative to using --release is fixing the code that uses
the incompatible API, such as was done for gradle [1], but that does
not scale as well and it is reactive since errors are only detected
during runtime.

Regards,
Tiago

References:
[1] 
https://sources.debian.org/src/gradle/3.4.1-7/debian/patches/java8-compatibility.patch

On Fri, Apr 13, 2018 at 12:14 PM, Tiago Stürmer Daitx
 wrote:
> Source: plexus-compiler
> Version: 2.8.2-5
> Severity: normal
>
> Dear Maintainer,
>
> plexus-compiler currently will default -source and/or -target to 1.7
> whenever the following occours:
> 1) whenever either has not being set
> 2) whenever either has been set to 1.6 or earlier
>
> This patch modifies the detection logic in order to be able to set the
> '--release' flag when (and only when):
> - the '--release' is *not* set
> - AND both -source and -target are being set to a default value
> - AND the running jvm is jdk9 or newer
>
> This prevents errors such as the infamous "Method
> flip()Ljava/nio/ByteBuffer; does not exist in class java.nio.ByteBuffer"
> that is caused by building with openjdk-9 with -source set without
> setting the proper bootclasspath [1,2]. JEP-247 [3] has provided the
> --release to prevent such issues and should be used instead of -source
> whenever the javac being used is jdk9 or higher.
>
>
> I have tested and I can confirm it works fine, but I would like some
> review to make sure it is sane and get opinions on other (better?) ways
> to do this - specially concerning the detection of the jvm being run.
>
> Also, fork and an alternative javac compiler might be set, thus I would
> like to discuss as to what behavior it should default it in that case.
>
> Regards,
> Tiago Daitx
>
> References:
> [1] https://bugs.launchpad.net/ubuntu/+source/gradle/+bug/1760359
> [2] https://github.com/plasma-umass/doppio/issues/497
> [3] http://openjdk.java.net/jeps/247
>
>
> -- System Information:
> Debian Release: buster/sid
>   APT prefers bionic
>   APT policy: (500, 'bionic'), (400, 'bionic-proposed')
> Architecture: amd64 (x86_64)
> Foreign Architectures: i386
>
> Kernel: Linux 4.15.0-13-generic (SMP w/8 CPU cores)
> Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), 
> LANGUAGE=en_US (charmap=UTF-8)
> Shell: /bin/sh linked to /bin/dash
> Init: systemd (via /run/systemd/system)
> LSM: AppArmor: enabled



-- 
Tiago Stürmer Daitx
Software Engineer
tiago.da...@canonical.com

PGP Key: 4096R/F5B213BE (hkp://keyserver.ubuntu.com)
Fingerprint = 45D0 FE5A 8109 1E91 866E  8CA4 1931 8D5E F5B2 13BE
diff -Nru plexus-compiler-2.8.2/debian/changelog plexus-compiler-2.8.2/debian/changelog
--- plexus-compiler-2.8.2/debian/changelog	2017-09-18 10:31:35.0 -0300
+++ plexus-compiler-2.8.2/debian/changelog	2018-04-12 11:35:44.0 -0300
@@ -1,3 +1,10 @@
+plexus-compiler (2.8.2-6~01) UNRELEASED; urgency=medium
+
+  * Use a default --release instead of defaults -source/-target in order to
+have the right bootclasspath set as per JEP 247. (Closes: #895619)
+
+ -- Tiago Stürmer Daitx   Thu, 12 Apr 2018 14:35:44 +
+
 plexus-compiler (2.8.2-5) unstable; urgency=medium
 
   * Team upload.
diff -Nru plexus-compiler-2.8.2/debian/patches/auto-adjust-language-level.patch plexus-compiler-2.8.2/debian/patches/auto-adjust-language-level.patch
--- plexus-compiler-2.8.2/debian/patches/auto-adjust-language-level.patch	2017-07-04 03:58:08.0 -0300
+++ plexus-compiler-2.8.2/debian/patches/auto-adjust-language-level.patch	2018-04-12 11:35:44.0 -0300
@@ -3,40 +3,81 @@
 Forwarded: not-needed
 --- a/plexus-compilers/plexus-compiler-javac/src/main/java/org/codehaus/plexus/compiler/javac/JavacCompiler.java
 +++ b/plexus-compilers/plexus-compiler-javac/src/main/java/org/codehaus/plexus/compiler/javac/JavacCompiler.java
-@@ -339,12 +339,20 @@
+@@ -339,30 +339,64 @@ public class JavacCompiler
  }
  else
  {
+-// TODO: this

Bug#895619: plexus-compiler: use --release instead of -source/-target for jdk9+ when setting defaults

2018-04-13 Thread Tiago Stürmer Daitx 
Source: plexus-compiler
Version: 2.8.2-5
Severity: normal

Dear Maintainer,

plexus-compiler currently will default -source and/or -target to 1.7
whenever the following occours:
1) whenever either has not being set
2) whenever either has been set to 1.6 or earlier

This patch modifies the detection logic in order to be able to set the
'--release' flag when (and only when):
- the '--release' is *not* set
- AND both -source and -target are being set to a default value
- AND the running jvm is jdk9 or newer

This prevents errors such as the infamous "Method
flip()Ljava/nio/ByteBuffer; does not exist in class java.nio.ByteBuffer"
that is caused by building with openjdk-9 with -source set without
setting the proper bootclasspath [1,2]. JEP-247 [3] has provided the
--release to prevent such issues and should be used instead of -source
whenever the javac being used is jdk9 or higher.


I have tested and I can confirm it works fine, but I would like some
review to make sure it is sane and get opinions on other (better?) ways
to do this - specially concerning the detection of the jvm being run.

Also, fork and an alternative javac compiler might be set, thus I would
like to discuss as to what behavior it should default it in that case.

Regards,
Tiago Daitx

References:
[1] https://bugs.launchpad.net/ubuntu/+source/gradle/+bug/1760359
[2] https://github.com/plasma-umass/doppio/issues/497
[3] http://openjdk.java.net/jeps/247


-- System Information:
Debian Release: buster/sid
  APT prefers bionic
  APT policy: (500, 'bionic'), (400, 'bionic-proposed')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.15.0-13-generic (SMP w/8 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE=en_US 
(charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

__
This is the maintainer address of Debian's Java team
. 
Please use
debian-j...@lists.debian.org for discussions and questions.

Bug#895616: gradle: fix support for openjdk-9 --release flag

2018-04-13 Thread Tiago Daitx 
Please consider the attached debdiff for fixing this bug.

thanks

-- 
Tiago Stürmer Daitx
Software Engineer
tiago.da...@canonical.com

PGP Key: 4096R/F5B213BE (hkp://keyserver.ubuntu.com)
Fingerprint = 45D0 FE5A 8109 1E91 866E  8CA4 1931 8D5E F5B2 13BE
diff -Nru gradle-3.4.1/debian/changelog gradle-3.4.1/debian/changelog
--- gradle-3.4.1/debian/changelog	2018-04-11 18:19:46.0 -0300
+++ gradle-3.4.1/debian/changelog	2018-04-12 18:01:31.0 -0300
@@ -1,3 +1,10 @@
+gradle (3.4.1-8) UNRELEASED; urgency=medium
+
+  * d/p/gnu-style-release-flag-jdk9.patch: Use GNU-style release flag for
+Java 9 compiler.
+
+ -- Tiago Stürmer Daitx   Thu, 12 Apr 2018 21:01:31 +
+
 gradle (3.4.1-7) unstable; urgency=medium
 
   * Team upload.
diff -Nru gradle-3.4.1/debian/patches/gnu-style-release-flag-jdk9.patch gradle-3.4.1/debian/patches/gnu-style-release-flag-jdk9.patch
--- gradle-3.4.1/debian/patches/gnu-style-release-flag-jdk9.patch	1969-12-31 21:00:00.0 -0300
+++ gradle-3.4.1/debian/patches/gnu-style-release-flag-jdk9.patch	2018-04-12 18:01:22.0 -0300
@@ -0,0 +1,97 @@
+Description: Use GNU-style release flag for Java 9 compiler
+ Since JDK 9 b135, only the new GNU-style option with double-dashes is
+ supported for the "--release" flag (see
+ https://bugs.openjdk.java.net/browse/JDK-8160851).
+Author: Yannick Welsch 
+Origin: upstream, https://github.com/gradle/gradle/commit/142f2f5233e77ba33146efe3815cd3b4b1245993
+Bug-Debian: https://bugs.debian.org/895616
+Forwarded: not-needed
+Applied-Upstream: https://github.com/gradle/gradle/commit/142f2f5233e77ba33146efe3815cd3b4b1245993
+Reviewed-by: Tiago Stürmer Daitx 
+Last-Update: 2018-04-12
+---
+This patch header follows DEP-3: http://dep.debian.net/deps/dep3/
+
+From 142f2f5233e77ba33146efe3815cd3b4b1245993 Mon Sep 17 00:00:00 2001
+From: Yannick Welsch 
+Date: Mon, 17 Jul 2017 15:53:17 +0200
+Subject: [PATCH] Use GNU-style release flag for Java 9 compiler (#2474)
+
+Since JDK 9 b135, only the new GNU-style option with double-dashes is supported for the "--release" flag
+(see https://bugs.openjdk.java.net/browse/JDK-8160851).
+---
+ design-docs/jdk9-support.md | 6 +++---
+ .../api/internal/tasks/compile/JavaCompilerArgumentsBuilder.java| 2 +-
+ .../src/main/java/org/gradle/api/tasks/compile/CompileOptions.java  | 6 +++---
+ .../internal/tasks/compile/JavaCompilerArgumentsBuilderTest.groovy  | 6 +++---
+ .../org/gradle/java/compile/BasicJavaCompilerIntegrationSpec.groovy | 4 ++--
+ 5 files changed, 12 insertions(+), 12 deletions(-)
+
+
+--- a/subprojects/language-java/src/main/java/org/gradle/api/internal/tasks/compile/JavaCompilerArgumentsBuilder.java
 b/subprojects/language-java/src/main/java/org/gradle/api/internal/tasks/compile/JavaCompilerArgumentsBuilder.java
+@@ -227,7 +227,7 @@ public class JavaCompilerArgumentsBuilde
+ }
+ 
+ private boolean releaseOptionIsSet(List compilerArgs) {
+-return compilerArgs != null && compilerArgs.contains("-release");
++return compilerArgs != null && compilerArgs.contains("--release");
+ }
+ 
+ private void addClasspath() {
+--- a/subprojects/language-java/src/main/java/org/gradle/api/tasks/compile/CompileOptions.java
 b/subprojects/language-java/src/main/java/org/gradle/api/tasks/compile/CompileOptions.java
+@@ -315,10 +315,10 @@ public class CompileOptions extends Abst
+  * Defaults to the empty list.
+  *
+  * Compiler arguments not supported by the DSL can be added here. For example, it is possible
+- * to pass the {@code -release} option of JDK 9:
+- * compilerArgs.addAll(['-release', '7'])
++ * to pass the {@code --release} option of JDK 9:
++ * compilerArgs.addAll(['--release', '7'])
+  *
+- * Note that if {@code -release} is added then {@code -target} and {@code -source}
++ * Note that if {@code --release} is added then {@code -target} and {@code -source}
+  * are ignored.
+  */
+ @Input
+--- a/subprojects/language-java/src/test/groovy/org/gradle/api/internal/tasks/compile/JavaCompilerArgumentsBuilderTest.groovy
 b/subprojects/language-java/src/test/groovy/org/gradle/api/internal/tasks/compile/JavaCompilerArgumentsBuilderTest.groovy
+@@ -79,14 +79,14 @@ class JavaCompilerArgumentsBuilderTest e
+ builder.build() == ["-target", "1.4"] + defaultOptions
+ }
+ 
+-def "removes -source and -target option if -release is present"() {
++def "removes -source and -target option if --release is present"() {
+ when:
+-spec.compileOptions.compilerArgs += ['-release', '7']
++spec.compileOptions.compilerArgs += ['--release', '7']
+ spec.sourceCompatibility = '1.7'
+ spec.targetCompatibility = '1.7'
+ 
+ then:
+-builder.build() == defaultOptions + ['-release', '7']
++builder.build() == defaultOptions +

Bug#895616: gradle: fix support for openjdk-9 --release flag

2018-04-13 Thread Tiago Stürmer Daitx 
Source: gradle
Version: 3.4.1-7
Severity: normal

Dear Maintainer,

gradle 3.4.1 still detects and relies on the '-release' compiler
argument, but newer openjdk-9 has moved to a '--release' gnu-style
argument.

Upstream has fixed that on commit
https://github.com/gradle/gradle/commit/142f2f5233e77ba33146efe3815cd3b4b1245993

Please consider applying the patch. A debdiff will follow shortly (need
the bug # for the DEP-3 header).

thanks

-- System Information:
Debian Release: buster/sid
  APT prefers bionic
  APT policy: (500, 'bionic'), (400, 'bionic-proposed')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.15.0-13-generic (SMP w/8 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8), LANGUAGE=en_US 
(charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled

__
This is the maintainer address of Debian's Java team
. 
Please use
debian-j...@lists.debian.org for discussions and questions.

Processed: Re: Bug#893252: libjdbm-java FTBFS with openjdk-9

2018-04-13 Thread Debian Bug Tracking System 
Processing control commands:

> tags -1 + wontfix
Bug #893252 [src:libjdbm-java] libjdbm-java FTBFS with openjdk-9
Added tag(s) wontfix.

-- 
893252: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=893252
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

__
This is the maintainer address of Debian's Java team
. 
Please use
debian-j...@lists.debian.org for discussions and questions.

Bug#893252: libjdbm-java FTBFS with openjdk-9

2018-04-13 Thread Emmanuel Bourg 
Control: tags -1 + wontfix

Le 13/04/2018 à 15:55, Markus Koschany a écrit :

> Should this package be removed?

Yes, I already filed the removal request (#895328)

__
This is the maintainer address of Debian's Java team
. 
Please use
debian-j...@lists.debian.org for discussions and questions.

Bug#893252: libjdbm-java FTBFS with openjdk-9

2018-04-13 Thread Markus Koschany 
This package has no reverse-dependencies. It has been in "maintenance
mode" upstream since 2012.

https://sourceforge.net/projects/jdbm/
https://github.com/jankotek/JDBM3

The author then worked on JDBM4

https://github.com/jankotek/JDBM4

which became mapdb

https://github.com/jankotek/mapdb

This is probably very different from what we have now in Debian.

Should this package be removed?

Markus



signature.asc
Description: OpenPGP digital signature
__
This is the maintainer address of Debian's Java team
. 
Please use
debian-j...@lists.debian.org for discussions and questions.

Bug#893240: libhibernate3-java FTBFS with openjdk-9

2018-04-13 Thread Emmanuel Bourg 
Le 13/04/2018 à 15:22, Markus Koschany a écrit :

> I had a look at this package. Despite the fact that we use the magic
> --ignore-source-errors option we get a ClassCastException from OpenJDK
> 9. I wonder if this is rather a bug in OpenJDK 9 than in libhibernate3-java.

This is a JDK bug. We can work around it by scrapping the javadoc
package (popcon=18).

__
This is the maintainer address of Debian's Java team
. 
Please use
debian-j...@lists.debian.org for discussions and questions.

Bug#895028: activemq: Enable module activemq-jdbc-store

2018-04-13 Thread Markus Koschany 
On Fri, 06 Apr 2018 13:21:08 +0200 Michail Bachmann
 wrote:
> Package: activemq
> Version: 5.15.3-1
> Severity: important
> Tags: patch
> 
> Dear Maintainer,
> 
> I'm currently using activemq on wheezy configured as jdbc master-slave. 
> 
> When I tried to update the server to the current stable version, the activemq
> service refused to start. I've since learned, that the activemq-jdbc-store
> module was disabled some time in the past, though in the description of the
> package still mentions "persistence using JDBC along with journaling".
> 
> Please find attached two patches (for the versions in stretch and sid), which
> re-enable the module. I've tested the patched packages and they seem to do 
> what
> I need.
> 
> With best regards,
> 
> Michail Bachmann

Thank you very much for the patch. We currently have some issues
building activemq with OpenJDK 9 and later but as soon as this is
resolved, we will consider your patch.

Regards,

Markus



signature.asc
Description: OpenPGP digital signature
__
This is the maintainer address of Debian's Java team
. 
Please use
debian-j...@lists.debian.org for discussions and questions.

Processed: Re: libhibernate3-java FTBFS with openjdk-9

2018-04-13 Thread Debian Bug Tracking System 
Processing control commands:

> tags -1 confirmed
Bug #893240 [src:libhibernate3-java] libhibernate3-java FTBFS with openjdk-9
Added tag(s) confirmed.

-- 
893240: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=893240
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

__
This is the maintainer address of Debian's Java team
. 
Please use
debian-j...@lists.debian.org for discussions and questions.

Bug#893240: libhibernate3-java FTBFS with openjdk-9

2018-04-13 Thread Markus Koschany 
Control: tags -1 confirmed

I had a look at this package. Despite the fact that we use the magic
--ignore-source-errors option we get a ClassCastException from OpenJDK
9. I wonder if this is rather a bug in OpenJDK 9 than in libhibernate3-java.

Markus



signature.asc
Description: OpenPGP digital signature
__
This is the maintainer address of Debian's Java team
. 
Please use
debian-j...@lists.debian.org for discussions and questions.

[ca-certificates-java] annotated tag debian/20180413 created (now b4805a5)

2018-04-13 Thread Emmanuel Bourg 
This is an automated email from the git hooks/post-receive script.

ebourg-guest pushed a change to annotated tag debian/20180413
in repository ca-certificates-java.

at  b4805a5   (tag)
   tagging  08b3360a3bc47ddecde5fa4925c11b56dc3aa079 (commit)
  replaces  debian/20170930
 tagged by  Emmanuel Bourg
on  Fri Apr 13 15:02:18 2018 +0200

- Log -
ca-certificates-java Debian release 20180413
-BEGIN PGP SIGNATURE-

iQJGBAABCgAwFiEEuM5N4hCA3PkD4WxA9RPEGeS50KwFAlrQqloSHGVib3VyZ0Bh
cGFjaGUub3JnAAoJEPUTxBnkudCsrDQP/19IPziuIxyp2JvFPcpb4e3vRj9DLdar
Ynq00fX6EqFdoLi7z6mivrU7SSXzKn53SfQ6kN6nLFl8x7crXPmmtGLzQhpxbIT8
nMQ31ztqgS6aIjHdIh6uqX9eal5NIq99GFxtX/nyZ67shRWBgB5k05ZWP/oCC3HI
mqEGpgcHCwMoK6EQz6fonQa6k1tC3THSWC2xqemawksMuOe757pkFhkY3/m6FSjr
YVDELhy7zxMCvtPVwiqiItujuKSHUrb0b1d8MsAxuwKM0NLrfio1RCITrNhoBFfD
fzXEiviP7TB4e4vUlrkI9E9kJ4cSt2L9/3qukzPLuAFs9hPs/v3ISJXOyE0xRAwU
Gy5zTwkA+lzbJ4t1ic1aSIkr5fRt6+EdAJEXgctCuLtl+l7yUkX/AZUbwXvMqOUG
wv1lQUveIBgHsTWNcj7IyU9P/Ybz6fkvSQ/bkYFtBi/hlUcNsayChoj/dAYw7j1A
V8NjLoeUIKD5mcS1LlQZPelMYDjRB0mmRjP9wZIiq6rgnEakGevBuTL6rXIm/WJv
vsh2J8eaJw3sGqlp+09difjnEjeFkJg3i87L+0YWhPkTB8+uRGLzvnJVPkH8XTKW
N0UWQHOgeTB9I2QN1N4nc4lHasOTZEmC+Lks3oOw36IRbT1DJpob1Dy7wMfRJwSt
lEVDPWcbc/in
=E5mz
-END PGP SIGNATURE-

Emmanuel Bourg (6):
  Standards-Version updated to 4.1.4
  Switch to debhelper level 11
  Look for Java 10 and Java 11 when detecting the JRE
  Always generate a JKS keystore instead of using the default format 
(Closes: #894979)
  Removed Damien Raude-Morvan from the uploaders (Closes: #889412)
  Upload to unstable

---

No new revisions were added by this update.

-- 
Alioth's /usr/local/bin/git-commit-notice on 
/srv/git.debian.org/git/pkg-java/ca-certificates-java.git

___
pkg-java-commits mailing list
pkg-java-comm...@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-java-commits

Bug#889412: marked as done (Updating the ca-certificates-java Uploaders list)

2018-04-13 Thread Debian Bug Tracking System 
Your message dated Fri, 13 Apr 2018 12:49:39 +
with message-id <e1f6y95-00093a...@fasolo.debian.org>
and subject line Bug#889412: fixed in ca-certificates-java 20180413
has caused the Debian Bug report #889412,
regarding Updating the ca-certificates-java Uploaders list
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
889412: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=889412
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Source: ca-certificates-java
Version: 20140324 20170930
Severity: minor
User: m...@qa.debian.org
Usertags: mia-teammaint

Damien Raude-Morvan <draz...@debian.org> has not been working on
the ca-certificates-java package for quite some time.

We are tracking their status in the MIA team and would like to ask you
to remove them from the Uploaders list of the package so we can close
that part of the file.

(If the person is listed as Maintainer, what we are asking is to please
step in as a new maintainer.)

Thanks.
--- End Message ---
--- Begin Message ---
Source: ca-certificates-java
Source-Version: 20180413

We believe that the bug you reported is fixed in the latest version of
ca-certificates-java, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 889...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Emmanuel Bourg <ebo...@apache.org> (supplier of updated ca-certificates-java 
package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)


-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Fri, 13 Apr 2018 14:15:39 +0200
Source: ca-certificates-java
Binary: ca-certificates-java
Architecture: source
Version: 20180413
Distribution: unstable
Urgency: medium
Maintainer: Debian Java Maintainers 
<pkg-java-maintainers@lists.alioth.debian.org>
Changed-By: Emmanuel Bourg <ebo...@apache.org>
Description:
 ca-certificates-java - Common CA certificates (JKS keystore)
Closes: 889412 894979
Changes:
 ca-certificates-java (20180413) unstable; urgency=medium
 .
   * Team upload.
   * Always generate a JKS keystore instead of using the default format
 (Closes: #894979)
   * Look for Java 10 and Java 11 when detecting the JRE
   * Removed Damien Raude-Morvan from the uploaders (Closes: #889412)
   * Standards-Version updated to 4.1.4
   * Switch to debhelper level 11
Checksums-Sha1:
 96fcf025e6c85846ce696bf3d6b62a047dda7a07 1805 ca-certificates-java_20180413.dsc
 699d5f58937ad3dc1db6f3fef78a2a7888c3d8cd 16416 
ca-certificates-java_20180413.tar.xz
 92da0e62e7a4f2bf754dd2b6141f5146093eb7de 11107 
ca-certificates-java_20180413_source.buildinfo
Checksums-Sha256:
 c252cf62714128f78bc41191607f91f8a430613e61c52cb4afc307b6af022838 1805 
ca-certificates-java_20180413.dsc
 ab7839a1125abec1882d6e7aac7aca3394241effc0ee24652b6f0e51e8a2ac34 16416 
ca-certificates-java_20180413.tar.xz
 cc8dfa16453714ba429c0ba8fcab9fa24352bce7148e72b9c288003541c23523 11107 
ca-certificates-java_20180413_source.buildinfo
Files:
 4c89dfb769a7f332cea78c3fb5261549 1805 java optional 
ca-certificates-java_20180413.dsc
 b1a6001017b6b943cca0d38c686b705c 16416 java optional 
ca-certificates-java_20180413.tar.xz
 5965a4dfd4e700a4c5c1feb6ef0de852 11107 java optional 
ca-certificates-java_20180413_source.buildinfo

-BEGIN PGP SIGNATURE-
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=ITr0
-END PGP SIGNATURE End Message ---
__
This is the maintainer address of Debian's Java team
<http://lists.alioth.de

Bug#894979: marked as done (ca-certificates-java: does not work with OpenJDK 9, applications fail with InvalidAlgorithmParameterException: the trustAnchors parameter must be non-empty)

2018-04-13 Thread Debian Bug Tracking System 
Your message dated Fri, 13 Apr 2018 12:49:39 +
with message-id <e1f6y95-00093g...@fasolo.debian.org>
and subject line Bug#894979: fixed in ca-certificates-java 20180413
has caused the Debian Bug report #894979,
regarding ca-certificates-java: does not work with OpenJDK 9, applications fail 
with InvalidAlgorithmParameterException: the trustAnchors parameter must be 
non-empty
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
894979: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=894979
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems
--- Begin Message ---
Package: ca-certificates-java
Version: 20170930
Severity: important

Hello,

I am getting an error when connecting to HTTPS from java. Looking around
the problem always seems to talk about this package, but please
re-assign if something else is to blame.

Testing with the following code (I don't really know any Java and it's
the first thing I found to test with):

https://gist.github.com/4ndrej/4547029

```
borisov@glossy:~ $ java SSLPoke google.com 443
javax.net.ssl.SSLException: java.lang.RuntimeException: Unexpected error: 
java.security.InvalidAlgorithmParameterException: the trustAnchors parameter 
must be non-empty
at java.base/sun.security.ssl.Alerts.getSSLException(Alerts.java:214)
at 
java.base/sun.security.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1969)
at 
java.base/sun.security.ssl.SSLSocketImpl.fatal(SSLSocketImpl.java:1921)
at 
java.base/sun.security.ssl.SSLSocketImpl.handleException(SSLSocketImpl.java:1904)
at 
java.base/sun.security.ssl.SSLSocketImpl.handleException(SSLSocketImpl.java:1830)
at 
java.base/sun.security.ssl.AppOutputStream.write(AppOutputStream.java:71)
at 
java.base/sun.security.ssl.AppOutputStream.write(AppOutputStream.java:81)
at SSLPoke.main(SSLPoke.java:23)
Caused by: java.lang.RuntimeException: Unexpected error: 
java.security.InvalidAlgorithmParameterException: the trustAnchors parameter 
must be non-empty
at 
java.base/sun.security.validator.PKIXValidator.(PKIXValidator.java:89)
at 
java.base/sun.security.validator.Validator.getInstance(Validator.java:181)
at 
java.base/sun.security.ssl.X509TrustManagerImpl.getValidator(X509TrustManagerImpl.java:330)
at 
java.base/sun.security.ssl.X509TrustManagerImpl.checkTrustedInit(X509TrustManagerImpl.java:180)
at 
java.base/sun.security.ssl.X509TrustManagerImpl.checkTrusted(X509TrustManagerImpl.java:192)
at 
java.base/sun.security.ssl.X509TrustManagerImpl.checkServerTrusted(X509TrustManagerImpl.java:133)
at 
java.base/sun.security.ssl.ClientHandshaker.checkServerCerts(ClientHandshaker.java:1947)
at 
java.base/sun.security.ssl.ClientHandshaker.serverCertificate(ClientHandshaker.java:1777)
at 
java.base/sun.security.ssl.ClientHandshaker.processMessage(ClientHandshaker.java:264)
at 
java.base/sun.security.ssl.Handshaker.processLoop(Handshaker.java:1092)
at 
java.base/sun.security.ssl.Handshaker.processRecord(Handshaker.java:1026)
at 
java.base/sun.security.ssl.SSLSocketImpl.processInputRecord(SSLSocketImpl.java:1137)
at 
java.base/sun.security.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:1074)
at 
java.base/sun.security.ssl.SSLSocketImpl.readRecord(SSLSocketImpl.java:973)
at 
java.base/sun.security.ssl.SSLSocketImpl.performInitialHandshake(SSLSocketImpl.java:1402)
at 
java.base/sun.security.ssl.SSLSocketImpl.writeRecord(SSLSocketImpl.java:733)
at 
java.base/sun.security.ssl.AppOutputStream.write(AppOutputStream.java:67)
... 2 more
Caused by: java.security.InvalidAlgorithmParameterException: the trustAnchors 
parameter must be non-empty
at 
java.base/java.security.cert.PKIXParameters.setTrustAnchors(PKIXParameters.java:200)
at 
java.base/java.security.cert.PKIXParameters.(PKIXParameters.java:120)
at 
java.base/java.security.cert.PKIXBuilderParameters.(PKIXBuilderParameters.java:104)
at 
java.base/sun.security.validator.PKIXValidator.(PKIXValidator.java:86)
... 18 more
```

I have tried "sudo update-ca-certificates -f" but that did not help.


Thanks,

George

-- System Information:
Debian Release: buster/sid
  APT prefers unstable-debug
  APT policy: (500, 'unstable-debug'), (500, 'unstable')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.15.0-2-amd64 (SMP w/8 CPU cores)
Locale: LANG=en_GB.UTF-8, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8), 
LANGUAGE=en_GB:en (charmap=UTF-8)
Shell: /bin/sh lin

ca-certificates-java_20180413_source.changes ACCEPTED into unstable

2018-04-13 Thread Debian FTP Masters 


Accepted:

-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512

Format: 1.8
Date: Fri, 13 Apr 2018 14:15:39 +0200
Source: ca-certificates-java
Binary: ca-certificates-java
Architecture: source
Version: 20180413
Distribution: unstable
Urgency: medium
Maintainer: Debian Java Maintainers 
<pkg-java-maintainers@lists.alioth.debian.org>
Changed-By: Emmanuel Bourg <ebo...@apache.org>
Description:
 ca-certificates-java - Common CA certificates (JKS keystore)
Closes: 889412 894979
Changes:
 ca-certificates-java (20180413) unstable; urgency=medium
 .
   * Team upload.
   * Always generate a JKS keystore instead of using the default format
 (Closes: #894979)
   * Look for Java 10 and Java 11 when detecting the JRE
   * Removed Damien Raude-Morvan from the uploaders (Closes: #889412)
   * Standards-Version updated to 4.1.4
   * Switch to debhelper level 11
Checksums-Sha1:
 96fcf025e6c85846ce696bf3d6b62a047dda7a07 1805 ca-certificates-java_20180413.dsc
 699d5f58937ad3dc1db6f3fef78a2a7888c3d8cd 16416 
ca-certificates-java_20180413.tar.xz
 92da0e62e7a4f2bf754dd2b6141f5146093eb7de 11107 
ca-certificates-java_20180413_source.buildinfo
Checksums-Sha256:
 c252cf62714128f78bc41191607f91f8a430613e61c52cb4afc307b6af022838 1805 
ca-certificates-java_20180413.dsc
 ab7839a1125abec1882d6e7aac7aca3394241effc0ee24652b6f0e51e8a2ac34 16416 
ca-certificates-java_20180413.tar.xz
 cc8dfa16453714ba429c0ba8fcab9fa24352bce7148e72b9c288003541c23523 11107 
ca-certificates-java_20180413_source.buildinfo
Files:
 4c89dfb769a7f332cea78c3fb5261549 1805 java optional 
ca-certificates-java_20180413.dsc
 b1a6001017b6b943cca0d38c686b705c 16416 java optional 
ca-certificates-java_20180413.tar.xz
 5965a4dfd4e700a4c5c1feb6ef0de852 11107 java optional 
ca-certificates-java_20180413_source.buildinfo

-BEGIN PGP SIGNATURE-

iQJGBAEBCgAwFiEEuM5N4hCA3PkD4WxA9RPEGeS50KwFAlrQonwSHGVib3VyZ0Bh
cGFjaGUub3JnAAoJEPUTxBnkudCs+ZMP/2jGh1jkVtdMHmki2BNTYwS3sIYJaBcs
1Kb83DtxxiqOpLcIrhPppqH8Uos/95pD9Fktrt1YM6jEBLWJdV935n7vxiV/r7Ww
8nLOxjU4jpgesBzL89HB1VemLwt5VBU0+xuVZlT9C7nrlaIqAHrlMzxxtNg/rXCN
zfiwVDG0vDku8YFu7DDHCFNvddBcu+BJinJdZ0YLhEvEXfTQOHnioay6h1gfX/7X
KYLnTdORmh226ArqQU9jyLargtKaaurUSWh4lLtIvxzjFE7IjldNiBsYwoYzhiE7
wH71jmLyTcaTxAcU7gclAozIJL7FYh1CTx+bmRhKLccAzDqxjzDD/JmH4j88sS5L
41QxB8BjzTmXjfY6LlY3SAd+ZVFhl9LmQ/SgYe6SpMoyMYBXwhejQC58HqjkmwAj
vJ8DYsDEbCn+ALv3k3kfWKeVhKNPxPcKe1u0ANOFgJBTz8oktpC74rJD9pjdb+o9
2aYCPrwGRNfgeB2PWrlAzRjCW0nBTi/fzBargAAMw9vYtaQwxvOPUiv3CR3jeUgn
4VodOu5eH0YJ4BRPJ7y46tWx0NBKwIoYycQuocsP/kuvwoU+qly4S9vQCVtt921R
dzO74bnC4MlIvzeCjPxrYpB5mZbsHTP12XFd6ZmjrjJ3VAaEotpIVFCa1JdO6viG
gzn6+q1WnogM
=ITr0
-END PGP SIGNATURE-


Thank you for your contribution to Debian.

__
This is the maintainer address of Debian's Java team
<http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-java-maintainers>. 
Please use
debian-j...@lists.debian.org for discussions and questions.

Processing of ca-certificates-java_20180413_source.changes

2018-04-13 Thread Debian FTP Masters 
ca-certificates-java_20180413_source.changes uploaded successfully to localhost
along with the files:
  ca-certificates-java_20180413.dsc
  ca-certificates-java_20180413.tar.xz
  ca-certificates-java_20180413_source.buildinfo

Greetings,

Your Debian queue daemon (running on host usper.debian.org)

__
This is the maintainer address of Debian's Java team
. 
Please use
debian-j...@lists.debian.org for discussions and questions.

Processed: Pending fixes for bugs in the ca-certificates-java package

2018-04-13 Thread Debian Bug Tracking System 
Processing commands for cont...@bugs.debian.org:

> tag 889412 + pending
Bug #889412 [src:ca-certificates-java] Updating the ca-certificates-java 
Uploaders list
Added tag(s) pending.
> thanks
Stopping processing here.

Please contact me if you need assistance.
-- 
889412: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=889412
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

__
This is the maintainer address of Debian's Java team
. 
Please use
debian-j...@lists.debian.org for discussions and questions.

Bug#894979: Pending fixes for bugs in the ca-certificates-java package

2018-04-13 Thread pkg-java-maintainers 
tag 894979 + pending
thanks

Some bugs in the ca-certificates-java package are closed in revision
36bee5da3677c3904f87fdeae319c0d7688f4186 in branch 'master' by
Emmanuel Bourg

The full diff can be seen at
https://anonscm.debian.org/cgit/pkg-java/ca-certificates-java.git/commit/?id=36bee5d

Commit message:

Always generate a JKS keystore instead of using the default format (Closes: 
#894979)

__
This is the maintainer address of Debian's Java team
. 
Please use
debian-j...@lists.debian.org for discussions and questions.

Processed: Pending fixes for bugs in the ca-certificates-java package

2018-04-13 Thread Debian Bug Tracking System 
Processing commands for cont...@bugs.debian.org:

> tag 894979 + pending
Bug #894979 [ca-certificates-java] ca-certificates-java: does not work with 
OpenJDK 9, applications fail with InvalidAlgorithmParameterException: the 
trustAnchors parameter must be non-empty
Added tag(s) pending.
> thanks
Stopping processing here.

Please contact me if you need assistance.
-- 
894979: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=894979
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

__
This is the maintainer address of Debian's Java team
. 
Please use
debian-j...@lists.debian.org for discussions and questions.

Bug#889412: Pending fixes for bugs in the ca-certificates-java package

2018-04-13 Thread pkg-java-maintainers 
tag 889412 + pending
thanks

Some bugs in the ca-certificates-java package are closed in revision
afb5ee277789c9b81166bf369441108a8b196025 in branch 'master' by
Emmanuel Bourg

The full diff can be seen at
https://anonscm.debian.org/cgit/pkg-java/ca-certificates-java.git/commit/?id=afb5ee2

Commit message:

Removed Damien Raude-Morvan from the uploaders (Closes: #889412)

__
This is the maintainer address of Debian's Java team
. 
Please use
debian-j...@lists.debian.org for discussions and questions.

[ca-certificates-java] 05/06: Removed Damien Raude-Morvan from the uploaders (Closes: #889412)

2018-04-13 Thread Emmanuel Bourg 
This is an automated email from the git hooks/post-receive script.

ebourg-guest pushed a commit to branch master
in repository ca-certificates-java.

commit afb5ee277789c9b81166bf369441108a8b196025
Author: Emmanuel Bourg 
Date:   Fri Apr 13 14:08:17 2018 +0200

Removed Damien Raude-Morvan from the uploaders (Closes: #889412)
---
 debian/changelog | 1 +
 debian/control   | 1 -
 2 files changed, 1 insertion(+), 1 deletion(-)

diff --git a/debian/changelog b/debian/changelog
index b8adb2c..dd1e089 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -4,6 +4,7 @@ ca-certificates-java (20170931) UNRELEASED; urgency=medium
   * Always generate a JKS keystore instead of using the default format
 (Closes: #894979)
   * Look for Java 10 and Java 11 when detecting the JRE
+  * Removed Damien Raude-Morvan from the uploaders (Closes: #889412)
   * Standards-Version updated to 4.1.4
   * Switch to debhelper level 11
 
diff --git a/debian/control b/debian/control
index ddd8920..e30f9b5 100644
--- a/debian/control
+++ b/debian/control
@@ -3,7 +3,6 @@ Section: java
 Priority: optional
 Maintainer: Debian Java Maintainers 

 Uploaders: Matthias Klose ,
-   Damien Raude-Morvan ,
James Page 
 Build-Depends: debhelper (>= 11), default-jdk, javahelper, junit4
 Standards-Version: 4.1.4

-- 
Alioth's /usr/local/bin/git-commit-notice on 
/srv/git.debian.org/git/pkg-java/ca-certificates-java.git

___
pkg-java-commits mailing list
pkg-java-comm...@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-java-commits

[ca-certificates-java] 06/06: Upload to unstable

2018-04-13 Thread Emmanuel Bourg 
This is an automated email from the git hooks/post-receive script.

ebourg-guest pushed a commit to branch master
in repository ca-certificates-java.

commit 08b3360a3bc47ddecde5fa4925c11b56dc3aa079
Author: Emmanuel Bourg <ebo...@apache.org>
Date:   Fri Apr 13 14:15:55 2018 +0200

Upload to unstable
---
 debian/changelog | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/debian/changelog b/debian/changelog
index dd1e089..0068e66 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,4 +1,4 @@
-ca-certificates-java (20170931) UNRELEASED; urgency=medium
+ca-certificates-java (20180413) unstable; urgency=medium
 
   * Team upload.
   * Always generate a JKS keystore instead of using the default format
@@ -8,7 +8,7 @@ ca-certificates-java (20170931) UNRELEASED; urgency=medium
   * Standards-Version updated to 4.1.4
   * Switch to debhelper level 11
 
- -- Emmanuel Bourg <ebo...@apache.org>  Fri, 13 Apr 2018 13:54:23 +0200
+ -- Emmanuel Bourg <ebo...@apache.org>  Fri, 13 Apr 2018 14:15:39 +0200
 
 ca-certificates-java (20170930) unstable; urgency=medium
 

-- 
Alioth's /usr/local/bin/git-commit-notice on 
/srv/git.debian.org/git/pkg-java/ca-certificates-java.git

___
pkg-java-commits mailing list
pkg-java-comm...@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-java-commits

[ca-certificates-java] 01/06: Standards-Version updated to 4.1.4

2018-04-13 Thread Emmanuel Bourg 
This is an automated email from the git hooks/post-receive script.

ebourg-guest pushed a commit to branch master
in repository ca-certificates-java.

commit f7e2749cc01bcdb14c13aff0d694f530e1a99072
Author: Emmanuel Bourg 
Date:   Fri Apr 13 13:54:32 2018 +0200

Standards-Version updated to 4.1.4
---
 debian/changelog | 7 +++
 debian/control   | 2 +-
 2 files changed, 8 insertions(+), 1 deletion(-)

diff --git a/debian/changelog b/debian/changelog
index 7abbf79..fdea4c7 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,10 @@
+ca-certificates-java (20170931) UNRELEASED; urgency=medium
+
+  * Team upload.
+  * Standards-Version updated to 4.1.4
+
+ -- Emmanuel Bourg   Fri, 13 Apr 2018 13:54:23 +0200
+
 ca-certificates-java (20170930) unstable; urgency=medium
 
   * Team upload.
diff --git a/debian/control b/debian/control
index e99ab65..3e820f5 100644
--- a/debian/control
+++ b/debian/control
@@ -6,7 +6,7 @@ Uploaders: Matthias Klose ,
Damien Raude-Morvan ,
James Page 
 Build-Depends: debhelper (>= 9), default-jdk, javahelper, junit4
-Standards-Version: 4.1.0
+Standards-Version: 4.1.4
 Vcs-Git: https://anonscm.debian.org/git/pkg-java/ca-certificates-java.git
 Vcs-Browser: https://anonscm.debian.org/cgit/pkg-java/ca-certificates-java.git
 

-- 
Alioth's /usr/local/bin/git-commit-notice on 
/srv/git.debian.org/git/pkg-java/ca-certificates-java.git

___
pkg-java-commits mailing list
pkg-java-comm...@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-java-commits

[ca-certificates-java] 03/06: Look for Java 10 and Java 11 when detecting the JRE

2018-04-13 Thread Emmanuel Bourg 
This is an automated email from the git hooks/post-receive script.

ebourg-guest pushed a commit to branch master
in repository ca-certificates-java.

commit 2036247bfa26ba467125b97f77664c4a50f60196
Author: Emmanuel Bourg 
Date:   Fri Apr 13 14:05:12 2018 +0200

Look for Java 10 and Java 11 when detecting the JRE
---
 debian/changelog| 1 +
 debian/jks-keystore.hook.in | 6 +-
 debian/postinst.in  | 6 +-
 3 files changed, 11 insertions(+), 2 deletions(-)

diff --git a/debian/changelog b/debian/changelog
index 07e257a..dee9ad3 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,6 +1,7 @@
 ca-certificates-java (20170931) UNRELEASED; urgency=medium
 
   * Team upload.
+  * Look for Java 10 and Java 11 when detecting the JRE
   * Standards-Version updated to 4.1.4
   * Switch to debhelper level 11
 
diff --git a/debian/jks-keystore.hook.in b/debian/jks-keystore.hook.in
index 7569e61..8d519ab 100644
--- a/debian/jks-keystore.hook.in
+++ b/debian/jks-keystore.hook.in
@@ -40,7 +40,11 @@ for jvm in java-7-openjdk-$arch java-7-openjdk \
java-8-openjdk-$arch java-8-openjdk \
oracle-java8-jre-$arch oracle-java8-server-jre-$arch 
oracle-java8-jdk-$arch \
java-9-openjdk-$arch java-9-openjdk \
-   oracle-java9-jre-$arch oracle-java9-server-jre-$arch 
oracle-java9-jdk-$arch; do
+   oracle-java9-jre-$arch oracle-java9-server-jre-$arch 
oracle-java9-jdk-$arch \
+   java-10-openjdk-$arch java-10-openjdk \
+   oracle-java10-jre-$arch oracle-java10-server-jre-$arch 
oracle-java10-jdk-$arch \
+   java-11-openjdk-$arch java-11-openjdk \
+   oracle-java11-jre-$arch oracle-java11-server-jre-$arch 
oracle-java11-jdk-$arch; do
 if [ -x /usr/lib/jvm/$jvm/bin/java ]; then
break
 fi
diff --git a/debian/postinst.in b/debian/postinst.in
index d02a660..dc43c13 100644
--- a/debian/postinst.in
+++ b/debian/postinst.in
@@ -30,7 +30,11 @@ setup_path()
java-8-openjdk-$arch java-8-openjdk \
oracle-java8-jre-$arch oracle-java8-server-jre-$arch 
oracle-java8-jdk-$arch \
java-9-openjdk-$arch java-9-openjdk \
-   oracle-java9-jre-$arch oracle-java9-server-jre-$arch 
oracle-java9-jdk-$arch; do
+   oracle-java9-jre-$arch oracle-java9-server-jre-$arch 
oracle-java9-jdk-$arch \
+   java-10-openjdk-$arch java-10-openjdk \
+   oracle-java10-jre-$arch oracle-java10-server-jre-$arch 
oracle-java10-jdk-$arch \
+   java-11-openjdk-$arch java-11-openjdk \
+   oracle-java11-jre-$arch oracle-java11-server-jre-$arch 
oracle-java11-jdk-$arch; do
 if [ -x /usr/lib/jvm/$jvm/bin/java ]; then
 break
 fi

-- 
Alioth's /usr/local/bin/git-commit-notice on 
/srv/git.debian.org/git/pkg-java/ca-certificates-java.git

___
pkg-java-commits mailing list
pkg-java-comm...@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-java-commits

[ca-certificates-java] 04/06: Always generate a JKS keystore instead of using the default format (Closes: #894979)

2018-04-13 Thread Emmanuel Bourg 
This is an automated email from the git hooks/post-receive script.

ebourg-guest pushed a commit to branch master
in repository ca-certificates-java.

commit 36bee5da3677c3904f87fdeae319c0d7688f4186
Author: Emmanuel Bourg 
Date:   Fri Apr 13 14:07:19 2018 +0200

Always generate a JKS keystore instead of using the default format (Closes: 
#894979)
---
 debian/changelog   | 2 ++
 src/main/java/org/debian/security/KeyStoreHandler.java | 2 +-
 2 files changed, 3 insertions(+), 1 deletion(-)

diff --git a/debian/changelog b/debian/changelog
index dee9ad3..b8adb2c 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,6 +1,8 @@
 ca-certificates-java (20170931) UNRELEASED; urgency=medium
 
   * Team upload.
+  * Always generate a JKS keystore instead of using the default format
+(Closes: #894979)
   * Look for Java 10 and Java 11 when detecting the JRE
   * Standards-Version updated to 4.1.4
   * Switch to debhelper level 11
diff --git a/src/main/java/org/debian/security/KeyStoreHandler.java 
b/src/main/java/org/debian/security/KeyStoreHandler.java
index 6ed7c72..0f1edfa 100644
--- a/src/main/java/org/debian/security/KeyStoreHandler.java
+++ b/src/main/java/org/debian/security/KeyStoreHandler.java
@@ -56,7 +56,7 @@ class KeyStoreHandler {
  * Try to open an existing keystore or create an new one.
  */
 public void load() throws GeneralSecurityException, IOException, 
InvalidKeystorePasswordException {
-KeyStore ks = KeyStore.getInstance(KeyStore.getDefaultType());
+KeyStore ks = KeyStore.getInstance("JKS");
 File file = new File(filename);
 FileInputStream in = null;
 if (file.canRead()) {

-- 
Alioth's /usr/local/bin/git-commit-notice on 
/srv/git.debian.org/git/pkg-java/ca-certificates-java.git

___
pkg-java-commits mailing list
pkg-java-comm...@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-java-commits

[ca-certificates-java] 02/06: Switch to debhelper level 11

2018-04-13 Thread Emmanuel Bourg 
This is an automated email from the git hooks/post-receive script.

ebourg-guest pushed a commit to branch master
in repository ca-certificates-java.

commit 44e83c110304f079dac77eed8f388f1803670622
Author: Emmanuel Bourg 
Date:   Fri Apr 13 13:54:37 2018 +0200

Switch to debhelper level 11
---
 debian/changelog | 1 +
 debian/compat| 2 +-
 debian/control   | 2 +-
 3 files changed, 3 insertions(+), 2 deletions(-)

diff --git a/debian/changelog b/debian/changelog
index fdea4c7..07e257a 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -2,6 +2,7 @@ ca-certificates-java (20170931) UNRELEASED; urgency=medium
 
   * Team upload.
   * Standards-Version updated to 4.1.4
+  * Switch to debhelper level 11
 
  -- Emmanuel Bourg   Fri, 13 Apr 2018 13:54:23 +0200
 
diff --git a/debian/compat b/debian/compat
index ec63514..b4de394 100644
--- a/debian/compat
+++ b/debian/compat
@@ -1 +1 @@
-9
+11
diff --git a/debian/control b/debian/control
index 3e820f5..ddd8920 100644
--- a/debian/control
+++ b/debian/control
@@ -5,7 +5,7 @@ Maintainer: Debian Java Maintainers 
,
Damien Raude-Morvan ,
James Page 
-Build-Depends: debhelper (>= 9), default-jdk, javahelper, junit4
+Build-Depends: debhelper (>= 11), default-jdk, javahelper, junit4
 Standards-Version: 4.1.4
 Vcs-Git: https://anonscm.debian.org/git/pkg-java/ca-certificates-java.git
 Vcs-Browser: https://anonscm.debian.org/cgit/pkg-java/ca-certificates-java.git

-- 
Alioth's /usr/local/bin/git-commit-notice on 
/srv/git.debian.org/git/pkg-java/ca-certificates-java.git

___
pkg-java-commits mailing list
pkg-java-comm...@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-java-commits

[ca-certificates-java] branch master updated (53651f7 -> 08b3360)

2018-04-13 Thread Emmanuel Bourg 
This is an automated email from the git hooks/post-receive script.

ebourg-guest pushed a change to branch master
in repository ca-certificates-java.

  from  53651f7   Import Debian version 20170930
   new  f7e2749   Standards-Version updated to 4.1.4
   new  44e83c1   Switch to debhelper level 11
   new  2036247   Look for Java 10 and Java 11 when detecting the JRE
   new  36bee5d   Always generate a JKS keystore instead of using the 
default format (Closes: #894979)
   new  afb5ee2   Removed Damien Raude-Morvan from the uploaders (Closes: 
#889412)
   new  08b3360   Upload to unstable

The 6 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails.  The revisions
listed as "adds" were already present in the repository and have only
been added to this reference.


Summary of changes:
 debian/changelog   | 12 
 debian/compat  |  2 +-
 debian/control |  5 ++---
 debian/jks-keystore.hook.in|  6 +-
 debian/postinst.in |  6 +-
 src/main/java/org/debian/security/KeyStoreHandler.java |  2 +-
 6 files changed, 26 insertions(+), 7 deletions(-)

-- 
Alioth's /usr/local/bin/git-commit-notice on 
/srv/git.debian.org/git/pkg-java/ca-certificates-java.git

___
pkg-java-commits mailing list
pkg-java-comm...@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-java-commits

Bug#816541: ca-certificates: avoid creating an empty /etc/java-6-sun

2018-04-13 Thread Emmanuel Bourg 
This has probably been fixed in the version 20160321 when Java 6 support
was dropped.

__
This is the maintainer address of Debian's Java team
. 
Please use
debian-j...@lists.debian.org for discussions and questions.

Processed: retitle 894979 to ca-certificates-java: does not work with OpenJDK 9, applications fail with InvalidAlgorithmParameterException: the trustAnchors parameter must be non-empty

2018-04-13 Thread Debian Bug Tracking System 
Processing commands for cont...@bugs.debian.org:

> retitle 894979 ca-certificates-java: does not work with OpenJDK 9, 
> applications fail with InvalidAlgorithmParameterException: the trustAnchors 
> parameter must be non-empty
Bug #894979 [ca-certificates-java] ca-certificates-java: SSL error: "the 
trustAnchors parameter must be non-empty"
Changed Bug title to 'ca-certificates-java: does not work with OpenJDK 9, 
applications fail with InvalidAlgorithmParameterException: the trustAnchors 
parameter must be non-empty' from 'ca-certificates-java: SSL error: "the 
trustAnchors parameter must be non-empty"'.
> thanks
Stopping processing here.

Please contact me if you need assistance.
-- 
894979: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=894979
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

__
This is the maintainer address of Debian's Java team
. 
Please use
debian-j...@lists.debian.org for discussions and questions.

Processed: severity of 894979 is serious

2018-04-13 Thread Debian Bug Tracking System 
Processing commands for cont...@bugs.debian.org:

> severity 894979 serious
Bug #894979 [ca-certificates-java] ca-certificates-java: does not work with 
OpenJDK 9, applications fail with InvalidAlgorithmParameterException: the 
trustAnchors parameter must be non-empty
Severity set to 'serious' from 'important'
> thanks
Stopping processing here.

Please contact me if you need assistance.
-- 
894979: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=894979
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

__
This is the maintainer address of Debian's Java team
. 
Please use
debian-j...@lists.debian.org for discussions and questions.