Add java 18 to our CI (netty#12402)

Motivation:

We should ensure the testsuites also pass on java 18

Modifications:

- Add java 18 ci setup
- Add profile for java 18
- Rename compose file to reflect its actually using centos7
- Disable blockhound on Java 18 and above, because their byte-buddy dependency does not support it.

Result:

Tests run on java 18 as well

Author: normanmaurer

.github/workflows/ci-pr-reports.yml

@@ -35,6 +35,7 @@ jobs:
           - setup: linux-x86_64-java11
           - setup: linux-x86_64-java11-boringssl
           - setup: linux-x86_64-java17
+          - setup: linux-x86_64-java18
           - setup: windows-x86_64-java11-boringssl
     continue-on-error: ${{ matrix.ignore-if-missing }}
     steps:

.github/workflows/ci-pr.yml

@@ -148,8 +148,11 @@ jobs:
             docker-compose-build: "-f docker/docker-compose.yaml -f docker/docker-compose.centos-6.graalvm111.yaml build"
             docker-compose-run: "-f docker/docker-compose.yaml -f docker/docker-compose.centos-6.graalvm111.yaml run build-leak"
           - setup: linux-x86_64-java17
-            docker-compose-build: "-f docker/docker-compose.yaml -f docker/docker-compose.centos-6.117.yaml build"
-            docker-compose-run: "-f docker/docker-compose.yaml -f docker/docker-compose.centos-6.117.yaml run build-leak"
+            docker-compose-build: "-f docker/docker-compose.yaml -f docker/docker-compose.centos-7.117.yaml build"
+            docker-compose-run: "-f docker/docker-compose.yaml -f docker/docker-compose.centos-7.117.yaml run build-leak"
+          - setup: linux-x86_64-java18
+            docker-compose-build: "-f docker/docker-compose.yaml -f docker/docker-compose.centos-7.118.yaml build"
+            docker-compose-run: "-f docker/docker-compose.yaml -f docker/docker-compose.centos-7.118.yaml run build-leak"
           - setup: linux-x86_64-java11-boringssl
             docker-compose-build: "-f docker/docker-compose.yaml -f docker/docker-compose.centos-6.111.yaml build"
             docker-compose-run: "-f docker/docker-compose.yaml -f docker/docker-compose.centos-6.111.yaml run build-leak-boringssl-static"

common/src/test/java/io/netty/util/concurrent/DefaultThreadFactoryTest.java

@@ -16,6 +16,7 @@
 
 package io.netty.util.concurrent;
 
+import org.junit.jupiter.api.Assumptions;
 import org.junit.jupiter.api.Test;
 import org.junit.jupiter.api.Timeout;
 
@@ -31,31 +32,38 @@
 import static org.junit.jupiter.api.Assertions.assertTrue;
 
 public class DefaultThreadFactoryTest {
+
     @Test
     @Timeout(value = 2000, unit = TimeUnit.MILLISECONDS)
     public void testDescendantThreadGroups() throws InterruptedException {
         final SecurityManager current = System.getSecurityManager();
 
+        boolean securityManagerSet = false;
         try {
-            // install security manager that only allows parent thread groups to mess with descendant thread groups
-            System.setSecurityManager(new SecurityManager() {
-                @Override
-                public void checkAccess(ThreadGroup g) {
-                    final ThreadGroup source = Thread.currentThread().getThreadGroup();
-
-                    if (source != null) {
-                        if (!source.parentOf(g)) {
-                            throw new SecurityException("source group is not an ancestor of the target group");
+            try {
+                // install security manager that only allows parent thread groups to mess with descendant thread groups
+                System.setSecurityManager(new SecurityManager() {
+                    @Override
+                    public void checkAccess(ThreadGroup g) {
+                        final ThreadGroup source = Thread.currentThread().getThreadGroup();
+
+                        if (source != null) {
+                            if (!source.parentOf(g)) {
+                                throw new SecurityException("source group is not an ancestor of the target group");
+                            }
+                            super.checkAccess(g);
                         }
-                        super.checkAccess(g);
                     }
-                }
 
-                // so we can restore the security manager at the end of the test
-                @Override
-                public void checkPermission(Permission perm) {
-                }
-            });
+                    // so we can restore the security manager at the end of the test
+                    @Override
+                    public void checkPermission(Permission perm) {
+                    }
+                });
+            } catch (UnsupportedOperationException e) {
+                Assumptions.assumeFalse(true, "Setting SecurityManager not supported");
+            }
+            securityManagerSet = true;
 
             // holder for the thread factory, plays the role of a global singleton
             final AtomicReference<DefaultThreadFactory> factory = new AtomicReference<DefaultThreadFactory>();
@@ -114,7 +122,9 @@ public void run() {
 
             assertEquals(2, counter.get());
         } finally {
-            System.setSecurityManager(current);
+            if (securityManagerSet) {
+                System.setSecurityManager(current);
+            }
         }
     }
 
@@ -141,19 +151,26 @@ public DefaultThreadFactory call() throws Exception {
     public void testDefaultThreadFactoryInheritsThreadGroupFromSecurityManager() throws InterruptedException {
         final SecurityManager current = System.getSecurityManager();
 
+        boolean securityManagerSet = false;
         try {
             final ThreadGroup sticky = new ThreadGroup("sticky");
-            System.setSecurityManager(new SecurityManager() {
-                @Override
-                public ThreadGroup getThreadGroup() {
-                    return sticky;
-                }
+            try {
+                System.setSecurityManager(new SecurityManager() {
+                    @Override
+                    public ThreadGroup getThreadGroup() {
+                        return sticky;
+                    }
+
+                    // so we can restore the security manager at the end of the test
+                    @Override
+                    public void checkPermission(Permission perm) {
+                    }
+                });
+            } catch (UnsupportedOperationException e) {
+                Assumptions.assumeFalse(true, "Setting SecurityManager not supported");
+            }
+            securityManagerSet = true;
 
-                // so we can restore the security manager at the end of the test
-                @Override
-                public void checkPermission(Permission perm) {
-                }
-            });
             runStickyThreadGroupTest(
                     new Callable<DefaultThreadFactory>() {
                         @Override
@@ -163,7 +180,9 @@ public DefaultThreadFactory call() throws Exception {
                     },
                     sticky);
         } finally {
-            System.setSecurityManager(current);
+            if (securityManagerSet) {
+                System.setSecurityManager(current);
+            }
         }
     }
 

docker/docker-compose.centos-6.117.yaml docker/docker-compose.centos-7.117.yamldocker/docker-compose.centos-6.117.yaml renamed to docker/docker-compose.centos-7.117.yaml

@@ -0,0 +1,24 @@
+version: "3"
+
+services:
+
+  runtime-setup:
+    image: netty:centos-7-1.17
+    build:
+      args:
+        java_version : "18.0.1-zulu"
+
+  build:
+    image: netty:centos-7-1.17
+
+  build-leak:
+    image: netty:centos-7-1.17
+
+  build-boringssl-static:
+    image: netty:centos-7-1.17
+
+  build-leak-boringssl-static:
+    image: netty:centos-7-1.17
+
+  shell:
+    image: netty:centos-7-1.17

docker/docker-compose.centos-7.118.yaml

@@ -181,6 +181,28 @@
         <testJvm />
       </properties>
     </profile>
+    <profile>
+      <id>java18</id>
+      <activation>
+        <jdk>18</jdk>
+      </activation>
+      <properties>
+        <!-- Not use alpn agent as Java11+ supports alpn out of the box -->
+        <argLine.alpnAgent />
+        <argLine.java9.extras />
+        <!-- Export some stuff which is used during our tests -->
+        <argLine.java9>--illegal-access=deny ${argLine.java9.extras}</argLine.java9>
+        <forbiddenapis.skip>true</forbiddenapis.skip>
+        <!-- 1.4.x does not work in Java10+ -->
+        <jboss.marshalling.version>2.0.5.Final</jboss.marshalling.version>
+        <!-- This is the minimum supported by Java12+ -->
+        <maven.compiler.source>1.7</maven.compiler.source>
+        <maven.compiler.target>1.7</maven.compiler.target>
+        <!-- pax-exam does not work on latest Java12 EA 22 build -->
+        <skipOsgiTestsuite>true</skipOsgiTestsuite>
+        <revapi.skip>true</revapi.skip>
+      </properties>
+    </profile>
     <profile>
       <id>java17</id>
       <activation>

pom.xml

@@ -77,6 +77,15 @@
         <argLine.common>-XX:+AllowRedefinitionToAddDeleteMethods</argLine.common>
       </properties>
     </profile>
+    <profile>
+      <id>java18</id>
+      <activation>
+        <jdk>18</jdk>
+      </activation>
+      <properties>
+        <argLine.common>-XX:+AllowRedefinitionToAddDeleteMethods</argLine.common>
+      </properties>
+    </profile>
   </profiles>
 
   <properties>

transport-blockhound-tests/pom.xml

@@ -52,6 +52,7 @@
 import org.junit.jupiter.api.BeforeAll;
 import org.junit.jupiter.api.Test;
 import org.junit.jupiter.api.Timeout;
+import org.junit.jupiter.api.condition.DisabledIf;
 import reactor.blockhound.BlockHound;
 import reactor.blockhound.BlockingOperationError;
 import reactor.blockhound.integration.BlockHoundIntegration;
@@ -82,8 +83,13 @@
 import static org.junit.jupiter.api.Assertions.fail;
 import static org.junit.jupiter.api.Assumptions.assumeTrue;
 
+@DisabledIf("isDisabledIfJavaVersion18OrAbove")
 public class NettyBlockHoundIntegrationTest {
 
+    private static boolean isDisabledIfJavaVersion18OrAbove() {
+        return PlatformDependent.javaVersion() >= 18;
+    }
+
     @BeforeAll
     public static void setUpClass() {
         BlockHound.install();