I remember there being quite a few (harmless?) date or timezone warnings
when we tried to upgrade to JDK 25. Is this still the case?
------ Original Message ------
From "Lukasz Lenart" <[email protected]>
To "Struts Users Mailing List" <[email protected]>
Cc "Krishnaraj Viswanathan" <[email protected]>
Date 5/18/2026 2:23:25 AM
Subject Re: JDK 25 support
pon., 18 maj 2026 o 06:33 Krishnaraj Viswanathan via user
<[email protected]> napisał(a):
Confidential - Oracle Restricted \Including External Recipients
I was checking if Struts would run with jdk25 and I see a possible issue with
the usage of SecurityManager.
getSecurityManager has been deprecated since Java24 and would return a null
and setSecurityManager is removed. I see both these used in the Struts code.
The getSecurityManager seems to be used with jasper and some security check and
I assume there would not be an issue if I am not using jasper.
The setSecurityManager seems to be used for some test
classes(com.opensymphony.xwork2.inject.ContainerImplTest) and probably not used
in run time.
On the surface, I don't think there could be a runtime issue. Could anyone
tell if I am right in my assumptions? Of course, a more detailed check would be
required, but from an initial analysis perspective, am I in the right path?
We have a dedicated run on JDK25 and all looks good - Struts 7 should
work on Java 25 without an issue
https://github.com/apache/struts/actions/runs/25915386346/job/76170649948
Regards
Łukasz
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
