We also need to upgrade the jdk-13 jenkins jobs to at least 13-ea+26, which includes the fix for JDK-8224829...
https://bugs.openjdk.java.net/browse/JDK-8224829 : Date: Tue, 18 Jun 2019 14:44:51 -0700 (MST) : From: Chris Hostetter <hossman_luc...@fucit.org> : To: Uwe Schindler <u...@thetaphi.de> : Cc: Lucene Dev <dev@lucene.apache.org> : Subject: Need to upgrade jenkins jdk-11 jobs >= 11.0.3 to fix JVM SSL bugs : : : TL;DR: Uwe: can you please upgrade the jdk-11 used on the apache lucene jenkis : jobs and your policeman jenkins jobs to 11.0.3 ? : : --- : : Dat & I have (coincidently) found ourselves both looking into some (long : standing) SSL weirdness that has only ever manifested on java>=11. : : Details can be found in SOLR-12988 & SOLR-12990 but the long and short of it : is there are at least 2 known OpenJDK bugs in SSL that have been fixed in : 11.0.3, which we are seeing evidence of in jenkins builds using 11.0.2.... : : https://bugs.openjdk.java.net/browse/JDK-8213202 : https://bugs.openjdk.java.net/browse/JDK-8212885 / JDK-8220723 : : (The nature of these bugs makes it hard -- at least AFAICT -- to try to write : any "assume" logic to auto-detect if they apply to the current JVM.) : : There may in fact still be other SSL related bugs in jdk 11.0.3, but it will : be hard to know until we at least upgrade to 11.0.3 to see what still fails. : : Uwe / whomever has access: if you could help us out here it would be : appreciated. : : : : -Hoss : http://www.lucidworks.com/ : -Hoss http://www.lucidworks.com/ --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@lucene.apache.org For additional commands, e-mail: dev-h...@lucene.apache.org