| Git Clone URL: | https://aur.archlinux.org/jdk8.git (read-only, click to copy) |
|---|---|
| Package Base: | jdk8 |
| Description: | Oracle Java 8 Development Kit LTS |
| Upstream URL: | https://www.oracle.com/technetwork/java/javase/downloads/index.html |
| Keywords: | java-environment-jdk java-openjfx java-runtime-headless-jre java-runtime-jre java-web-start-jre |
| Licenses: | custom:Oracle |
| Provides: | java-environment, java-environment-jdk, java-openjfx, java-runtime, java-runtime-headless, java-runtime-headless-jre, java-runtime-jre, java-web-start, java-web-start-jre |
| Submitter: | Det |
| Maintainer: | severach |
| Last Packager: | severach |
| Votes: | 105 |
| Popularity: | 0.023779 |
| First Submitted: | 2017-09-21 22:18 (UTC) |
| Last Updated: | 2024-02-03 04:44 (UTC) |
@wulftone, yes, I was also having the same issue. The problem is that the package isn't up-to-date, and old version is no longer available. However, if you want to solve it, just follow the next few steps:
1.- Download and extract https://aur.archlinux.org/cgit/aur.git/snapshot/jdk8.tar.gz
2.- Download this patch (https://pastebin.com/ibkbvRfV) and save it as jdk8-update.patch
3.- Apply the patch: patch PKGBUILD < jdk8-update.patch
4.- Build and install: makepkg -crsi
I hope it works!
Anyone else having issues downloading this package? It's 404ing due to a license agreement check that oracle is doing on that file now. Looking at the URL you get from the browser, there's an additional AuthParam query param on the url, e.g. https://download.oracle.com/otn-pub/java/jdk/8u201-b09/42970487e3af4f5aa5bca3f542482c60/jdk-8u201-linux-x64.tar.gz?AuthParam=1547682810_edf64a570bffeb36da56c21e3eb8f9fb (I changed the param, FYI, so this link doesn't work as is).
EDIT: I think it just needs updated to the latest version/build/hash/md5sum and it will work fine.
Thanks for the notice. I updated the package to latest version 8u181.
The package is currently not working as the linked jdk version is no longer available on the oracle site.
AFAIK the best public MD5 preimage attack is at 2^123.4. Dividing it in half (50% chance of finding collision) gives 7.0×10^36. If you generated distinct hashes with multiple GPUs at speeds of 200 billion/sec, you would find a match with those odds in 1.1 billion billion years (7.0×10^36/(200×10^9×60×60×24×365.2524) ≈ 1.1*10^18) (the universe is 14 billion years old).
I don't get the last part?
I agree it's probably very hard to achieve, but it's still possible.
Is this a reason to keeping using a very-hard-to-break but still vulnerable hashing algorithm?
If the discussion is about what color is best, you win...
How hard can it be :(: https://www.google.com/search?q=preimage+vs+collision
@Det: Some more detailed articles:
As a cryptography ignorant, I'm not gonna tell anybody what algorithms they should use. However, cryptography experts deprecated md5sum algorithm long time ago, and recommended using stronger ones such as sha256sum & sha512sum since. Beside this, even if md5sum was super-safe today, I think nobody can argue that sha256sum & sha512sum are safer. So, why using a weaker hashing algorithm?
Thank you!
That's a really poor article. Have a look at the actual MD5 one, along with collision vs. preimage resistance.
"MD5 algorithm is no longer deemed secure. [...] the use of a newer hashing tool such as sha256sum is recommended."
Source: https://en.wikipedia.org/wiki/Md5sum
Recommended algorithms (sha512sum is the strongest, and the preferred option for many people):
I hope it helps!
Pinned Comments
severach commented on 2019-04-17 06:47 (UTC) (edited on 2019-04-27 04:59 (UTC) by severach)
Direct downloads are no longer available. Create your Oracle account, download, and put in with the PKGBUILD.
New and improved. Now you can just download to ~/Downloads then run the update.