Red Hat Summit Red Hat SummitSupportConsoleDevelopersStart a trialContact

Chapter 3. Red Hat build of OpenJDK features

The latest Red Hat build of OpenJDK 11 release might include new features. Additionally, the latest release might enhance, deprecate, or remove features that originated from previous Red Hat build of OpenJDK 11 releases.

Note

For all the other changes and security fixes, see OpenJDK 11.0.19 Released.

Red Hat build of OpenJDK new features and enhancements

Review the following release notes to understand new features and feature enhancements that are included with the Red Hat build of OpenJDK 11.0.19 release:

SSLv2Hello and SSLv3 protocols removed from default-enabled TLS protocols

SSLv2Hello and SSLv3 are versions of the SSL protocol that are disabled by default, because they have not been considered secure for some time. The SSLv2Hello and SSLv3 protocols are superseded by the more secure and modern TLS protocol and users can switch to TLS versions 1.2 or 1.3.

With release Red Hat build of OpenJDK 11.0.19, the list of default-enabled protocols no longer includes SSLv2Hello and SSLv3. Therefore, even if you remove SSLv3 from the jdk.tls.disabledAlgorithms security property, the following methods will no longer return SSLv3:

  • SSLServerSocket.getEnabledProtocols()
  • SSLEngine.getEnabledProtocols()
  • SSLParameters.getProtocols()

Now, if you want to enable SSLv3, you must use the jdk.tls.client.protocols or jdk.tls.server.protocols system properties on the command line, or call one of the following methods to enable SSLv3 programmatically:

  • SSLSocket.setEnabledProtocols()
  • SSLServerSocket.setEnabledProtocols()
  • SSLEngine.setEnabledProtocols()

See JDK-8190492 (JDK Bug System).

Certigna (Dhimyotis) root certificate authority (CA) certificate added

In release Red Hat build of OpenJDK 11.0.19, the cacerts truststore includes the Certigna (Dhimyotis) root certificate:

  • Name: Certigna (Dhimyotis)
  • Alias name: certignarootca
  • Distinguished name: CN=Certigna, O=Dhimyotis, C=FR

See JDK-8245654 (JDK Bug System).

listRoots method returns all available drives on Windows

In previous releases, the java.io.File.listRoots() method on Windows systems filtered out any disk drives that were not accessible or did not have media loaded. However, this filtering led to observable performance issues.

Now, with release Red Hat build of OpenJDK 11.0.19, the listRoots method returns all available disk drives unfiltered.

See JDK-8208077 (JDK Bug System).

Enhanced Swing platform support

In earlier releases of Red Hat build of OpenJDK, HTML object tags rendered embedded in Swing HTML components. With release Red Hat build of OpenJDK 11.0.19, rendering only occurs if you set the new system property swing.html.object to true. By default, the swing.html.object property is set to false.

JDK bug system reference ID: JDK-8296832.

Red Hat logoGithubRedditYoutubeTwitter

Learn

Try, buy, & sell

Communities

About Red Hat Documentation

We help Red Hat users innovate and achieve their goals with our products and services with content they can trust.

Making open source more inclusive

Red Hat is committed to replacing problematic language in our code, documentation, and web properties. For more details, see the Red Hat Blog.

About Red Hat

We deliver hardened solutions that make it easier for enterprises to work across platforms and environments, from the core datacenter to the network edge.

© 2024 Red Hat, Inc.