Update to jdk-11.0.11.0+5

Update release notes to 11.0.11.0+5

.gitignore

@@ -82,3 +82,4 @@
 /jdk-updates-jdk11u-jdk-11.0.11+3-4curve.tar.xz
 /jdk-updates-jdk11u-jdk-11.0.11+4-4curve.tar.xz
 /tapsets-icedtea-6.0.0pre00-c848b93a8598.tar.xz
+/jdk-updates-jdk11u-jdk-11.0.11+5-4curve.tar.xz

NEWS

@@ -26,12 +26,14 @@ Live versions of these release notes can be found at:
   - JDK-8211825: ModuleLayer.defineModulesWithXXX does not setup delegation when module reads automatic module
   - JDK-8212043: Add floating-point Math.min/max intrinsics
   - JDK-8212218: [TESTBUG] runtime/ErrorHandling/TestHeapDumpOnOutOfMemoryErrorInMetaspace.java timed out
+  - JDK-8213116: javax/swing/JComboBox/WindowsComboBoxSize/WindowsComboBoxSizeTest.java fails in Windows
   - JDK-8213909: jdeps --print-module-deps should report missing dependences
   - JDK-8214180: Need better granularity for sleeping
   - JDK-8214223: tools/jdeps/listdeps/ListModuleDeps.java failed due to missing Lib2 file
   - JDK-8214230: Classes generated by SystemModulesPlugin.java are not reproducable
   - JDK-8214741: docs/index.html has no title or copyright
   - JDK-8215687: [Graal] unit test CheckGraalIntrinsics failed after 8212043
+  - JDK-8217848: [Graal] vmTestbase/nsk/jvmti/ResourceExhausted/resexhausted003/TestDescription.java fails
   - JDK-8218482: sun/security/krb5/auto/ReplayCachePrecise.java failed - no KrbException thrown
   - JDK-8218550: Add test omitted from JDK-8212043
   - JDK-8221584: SIGSEGV in os::PlatformEvent::unpark() in JvmtiRawMonitor::raw_exit while posting method exit event
@@ -80,6 +82,7 @@ Live versions of these release notes can be found at:
   - JDK-8245026: PsAdaptiveSizePolicy::_old_gen_policy_is_ready is unused
   - JDK-8245283: JFR: Can't handle constant dynamic used by Jacoco agent
   - JDK-8245512: CRC32 optimization using AVX512 instructions
+  - JDK-8245527: LDAP Channel Binding support for Java GSS/Kerberos
   - JDK-8246707: (sc) SocketChannel.read/write throws AsynchronousCloseException on closed channel
   - JDK-8246709: sun/security/tools/jarsigner/TsacertOptionTest.java compilation failed after JDK-8244683
   - JDK-8247200: assert((unsigned)fpargs < 32)
@@ -101,6 +104,7 @@ Live versions of these release notes can be found at:
   - JDK-8253274: The CycleDMImagetest brokes the system
   - JDK-8253353: Crash in C2: guarantee(n != NULL) failed: No Node
   - JDK-8253368: TLS connection always receives close_notify exception
+  - JDK-8255368: Math.exp() gives wrong result for large values on x86 32-bit platforms
   - JDK-8255401: Shenandoah: Allow oldval and newval registers to overlap in cmpxchg_oop()
   - JDK-8253404: C2: assert(C->live_nodes() <= C->max_node_limit()) failed: Live Node limit exceeded limit
   - JDK-8253476: TestUseContainerSupport.java fails on some Linux kernels w/o swap limit capabilities
@@ -161,6 +165,7 @@ Live versions of these release notes can be found at:
   - JDK-8257633: Missing -mmacosx-version-min=X flag when linking libjvm
   - JDK-8257670: sun/security/ssl/SSLSocketImpl/SSLSocketLeak.java reports leaks
   - JDK-8257707: Fix incorrect format string in Http1HeaderParser
+  - JDK-8257746: Regression introduced with JDK-8250984 - memory might be null in some machines
   - JDK-8257798: [PPC64] undefined reference to Klass::vtable_start_offset()
   - JDK-8257884: Re-enable sun/security/ssl/SSLSocketImpl/SSLSocketLeak.java as automatic test
   - JDK-8257910: [JVMCI] Set exception_seen accordingly in the runtime.
@@ -189,6 +194,7 @@ Live versions of these release notes can be found at:
   - JDK-8259949: x86 32-bit build fails when -fcf-protection is passed in the compiler flags
   - JDK-8259619: C1: 3-arg StubAssembler::call_RT stack-use condition is incorrect
   - JDK-8259706: C2 compilation fails with assert(vtable_index == Method::invalid_vtable_index) failed: correct sentinel value
+  - JDK-8259707: LDAP channel binding does not work with StartTLS extension
   - JDK-8259773: Incorrect encoding of AVX-512 kmovq instruction
   - JDK-8259849: Shenandoah: Rename store-val to IU-barrier
   - JDK-8259954: gc/shenandoah/mxbeans tests fail with -Xcomp
@@ -208,20 +214,37 @@ Live versions of these release notes can be found at:
   - JDK-8261251: Shenandoah: Use object size for full GC humongous compaction
   - JDK-8261310: PPC64 Zero build fails with 'VMError::controlled_crash(int)::FunctionDescriptor functionDescriptor' has incomplete type and cannot be defined
   - JDK-8261334: NMT: tuning statistic shows incorrect hash distribution
+  - JDK-8261413: Shenandoah: Disable class-unloading in I-U mode
   - JDK-8261522: [PPC64] AES intrinsics write beyond the destination array
   - JDK-8261534: Test sun/security/pkcs11/KeyAgreement/IllegalPackageAccess.java fails on platforms where no nsslib artifacts are defined
+  - JDK-8261585: Restore HandleArea used in Deoptimization::uncommon_trap
   - JDK-8261753: Test java/lang/System/OsVersionTest.java still failing on BigSur patch versions after JDK-8253702
   - JDK-8261829: Exclude tools/jlink/JLinkReproducibleTest.java in 11u
+  - JDK-8261912: Code IfNode::fold_compares_helper more defensively
+  - JDK-8261920: [AIX] jshell command throws java.io.IOError on non English locales
   - JDK-8262018: Wrong format in SAP copyright header of OsVersionTest
 
 Notes on individual issues:
 ===========================
 
+core-libs/javax.naming:
+
+JDK-8258824: LDAP Channel Binding Support for Java GSS/Kerberos
+===============================================================
+A new JNDI environment property "com.sun.jndi.ldap.tls.cbtype" has
+been added to enable TLS Channel Binding data in LDAP authentication
+over SSL/TLS protocol to the Windows AD server.  The only valid value
+at present is "tls-server-end-point", where channel binding data is
+created on the base of the TLS server certificate. See RFC-5929 [0]
+and the module description of the `java.naming` module for further
+details.
+
+[0] RFC-5929 "Channel Bindings for TLS": https://www.ietf.org/rfc/rfc5929.txt
+
 security-libs/java.security:
 
 JDK-8260597: Added 2 HARICA Root CA Certificates
 ================================================
-
 The following root certificates have been added to the cacerts truststore:
 
 Alias Name: haricarootca2015

java-11-openjdk.spec

@@ -344,8 +344,8 @@
 %global origin_nice     OpenJDK
 %global top_level_dir_name   %{origin}
 %global top_level_dir_name_backup %{top_level_dir_name}-backup
-%global buildver        4
-%global rpmrelease      1
+%global buildver        5
+%global rpmrelease      0
 #%%global tagsuffix      ""
 # Priority must be 8 digits in total; up to openjdk 1.8, we were using 18..... so when we moved to 11, we had to add another digit
 %if %is_system_jdk
@@ -2283,6 +2283,10 @@ require "copy_jdk_configs.lua"
 %endif
 
 %changelog
+* Tue Apr 06 2021 Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.5-0.0.ea
+- Update to jdk-11.0.11.0+5
+- Update release notes to 11.0.11.0+5
+
 * Mon Mar 29 2021 Andrew Hughes <gnu.andrew@redhat.com> - 1:11.0.11.0.4-0.1.ea
 - Update tapsets from IcedTea 6.x repository with fix for JDK-8015774 changes (_heap->_heaps)
 - Update icedtea_sync.sh with a VCS mode that retrieves sources from a Mercurial repository

sources

@@ -1,2 +1,2 @@
 SHA512 (tapsets-icedtea-6.0.0pre00-c848b93a8598.tar.xz) = 97d026212363b3c83f6a04100ad7f6fdde833d16579717f8756e2b8c2eb70e144a41a330cb9ccde9c3badd37a2d54fdf4650a950ec21d8b686d545ecb2a64d30
-SHA512 (jdk-updates-jdk11u-jdk-11.0.11+4-4curve.tar.xz) = d1f0cac52d0be57c9773195fe52ef79023809643dc0f80d84a0ed1f3bbddd3c08f80a69555e494137327b40ec89e6824359b56b830097a758f43575f721a06c5
+SHA512 (jdk-updates-jdk11u-jdk-11.0.11+5-4curve.tar.xz) = d2a6944f2721bd2a644c34d54209b6530617968a4c5c870d0dadbb8b75b77f796de4893227f46f9bd48d53027c545dc8375d7d8b34e5dc0ec85624f3d77b8c7f