Java
This article is about Java, the programming language.
Java Web Start
Available as javaws
in package adoptopenjdk-icedtea-web
.
JDK options
Your default choice should probably be to install jdk
, which is an alias the latest LTS. If you're in a server environment, go for jdk21_headless
. Java 21 is the currently-maintained LTS version of OpenJDK as of April 2024.
As you might expect, though, many flavors of Java are available in NixOS.
- OpenJDK, by far the most popular non-Oracle JVM implementation
jdk8[_headless]
for a legacy Java 8 VM required by some older appsjdk21[_headless]
, the currently-supported LTS version of OpenJDKjdk22[_headless]
, the current version of OpenJDK
- Temurin, formerly AdoptOpenJDK, prebuilt binaries for OpenJDK
temurin-bin
points to the latest version of AdoptOpenJDK, which is version 21 at the time of writing.temurin-jre-bin
is available if you want to avoid downloading the compiler and only require the runtime environment.
- JetBrains JDK (
jetbrains.jdk
), a fork of OpenJDK with modifications made by JetBrains - Oracle's JDK (
oraclejdk
), only version 8 and 11 is available.
Using Oracle JDK instead of Open JDK
Almost all Java packages in nixpkgs use Open JDK in form of a jre dependency. If you use Oracle JDK and also want other applications to use it, you can simply tweak your .nixpkgs/config.nix
so that your desired application uses Oracles JDK or JRE.
Example with UMLet with JRE
{
allowUnfree = true;
packageOverrides = pkgs: rec {
umlet = pkgs.umlet.override {
jre = pkgs.oraclejre8;
};
};
}
To install the Oracle JRE system-wide, you need to explicitly accept the license in addition to allowing unfree modules:
# /etc/nixos/configuration.nix
{
nixpkgs.config.allowUnfree = true;
programs.java = { enable = true; package = pkgs.oraclejre8; };
}
Working with `requireFile` (manual downloading the tarballs and manual adding in to the nix store) might be annoying and nixops-unfriendly, so it can be overridden in overlays
nixpkgs.overlays = let
files = {
"jdk-8u241-linux-linux-arm32-vfp-hflt.tar.gz" = /home/user/blobs/java/jdk-8u241-linux-linux-arm32-vfp-hflt.tar.gz;
"jdk-8u241-linux-linux-arm64-vfp-hflt.tar.gz" = /home/user/blobs/java/jdk-8u241-linux-linux-arm64-vfp-hflt.tar.gz;
"jdk-8u241-linux-i586.tar.gz" = /home/user/blobs/java/jdk-8u241-linux-i586.tar.gz;
"jdk-8u241-linux-x64.tar.gz" = /home/user/blobs/java/jdk-8u241-linux-x64.tar.gz;
};
in [
(self: super: {
requireFile = args @ {name, url, sha1 ? null, sha256 ? null}:
if files?${name} then
self.stdenvNoCC.mkDerivation {
inherit name;
outputHashMode = "flat";
outputHashAlgo = if sha256 != null then "sha256" else "sha1";
outputHash = if sha256 != null then sha256 else sha1 ;
buildCommand = "cp ${files.${name}} $out";
}
else
super.requireFile args;
})
];
Better font rendering
By default java does not enable antialiasing for font rendering. By exporting environment variables, this can be fixed:
$ export _JAVA_OPTIONS='-Dawt.useSystemAAFontSettings=lcd'
More options can be found in the archlinux wiki
Overriding java jks Certificate Store
Overriding the java certificate store may be required for adding your own Root certificates in case your company uses an internal PKI or the company utilizes an intercepting proxy.
jdk8
Overriding the jdk8 certificate store is possible by overriding the cacert parameter of the package:
{ pkgs, ... }:
let
myjdk = pkgs.jdk8.override {
cacert = pkgs.runCommand "mycacert" {} ''
mkdir -p $out/etc/ssl/certs
cat ${pkgs.cacert}/etc/ssl/certs/ca-bundle.crt \
${./my-company-root-certificate.crt} > $out/etc/ssl/certs/ca-bundle.crt
'';
};
in {
programs.java = {
enable = true;
package = myjdk
};
}
the java package build will use the ca-bundle to run keytool and transform it into jks format.
you could also use
{
nixpkgs.overlays = [(self: super: {jdk = super.jdk8.override { };} )];
}
to override the default jdk so all packages use the patched java version.
jdk11
JDK11 does not provide the cacert overridable and therefore it is not possible to use the same technique to override the truststore.
Building and Packaging
see the Java section in the Nixpkgs manual
Maven
Maven is a build tool for Java. The typical build command is
mvn verify
mvn2nix can be used to build Maven projects with Nix
See also: Packaging a Maven application with Nix
Ant
Ant is a build tool for Java. To build the compile
target, run
ant compile
To list available build targets, run
ant -p
Ivy
Ivy is a package manager for Ant, not to be confused with ivy - an APL-like calculator
To fetch ivy sources manually, see for example pkgs/applications/editors/jedit
To fetch ivy sources in a fixed-output-derivation, see for example yacy.nix