Details
-
Sub-task
-
Resolution: Delivered
-
P2
-
9.0.4, 10
-
Verified
Backports
| Issue | Fix Version | Assignee | Priority | Status | Resolution | Resolved In Build |
|---|---|---|---|---|---|---|
| JDK-8193891 | 9.0.4 | Clifford Wayne | P2 | Closed | Delivered |
Description
Provides a default set of root Certification Authority (CA) certificates in the JDK.
The `cacerts` keystore of the OpenJDK 9 binary for Linux x64 has been populated by [JEP 319: Root Certificates](http://openjdk.java.net/jeps/319) [1] with a set of root certificates issued by the CAs of Oracle's Java SE Root CA Program. This addresses the problem of the empty `cacerts` keystore in the OpenJDK 9 binary for Linux x64. The empty `cacerts` keystore had prevented TLS connections from being established because Trusted Root Certificate Authorities were not installed. As a workaround for OpenJDK 9 binaries, users had to set the `javax.net.ssl.trustStore` System Property to use a different keystore.
[1] https://bugs.java.com/view_bug.do?bug_id=JDK-8191486
The `cacerts` keystore of the OpenJDK 9 binary for Linux x64 has been populated by [JEP 319: Root Certificates](http://openjdk.java.net/jeps/319) [1] with a set of root certificates issued by the CAs of Oracle's Java SE Root CA Program. This addresses the problem of the empty `cacerts` keystore in the OpenJDK 9 binary for Linux x64. The empty `cacerts` keystore had prevented TLS connections from being established because Trusted Root Certificate Authorities were not installed. As a workaround for OpenJDK 9 binaries, users had to set the `javax.net.ssl.trustStore` System Property to use a different keystore.
[1] https://bugs.java.com/view_bug.do?bug_id=JDK-8191486
Attachments
Issue Links
- backported by
-
-
- Closed
-