-
Sub-task
-
Resolution: Delivered
-
P2
-
9.0.4, 10
-
Verified
Issue | Fix Version | Assignee | Priority | Status | Resolution | Resolved In Build |
---|---|---|---|---|---|---|
JDK-8193891 | 9.0.4 | Clifford Wayne | P2 | Closed | Delivered |
Provides a default set of root Certification Authority (CA) certificates in the JDK.
The `cacerts` keystore of the OpenJDK 9 binary for Linux x64 has been populated by [JEP 319: Root Certificates](http://openjdk.java.net/jeps/319) [1] with a set of root certificates issued by the CAs of Oracle's Java SE Root CA Program. This addresses the problem of the empty `cacerts` keystore in the OpenJDK 9 binary for Linux x64. The empty `cacerts` keystore had prevented TLS connections from being established because Trusted Root Certificate Authorities were not installed. As a workaround for OpenJDK 9 binaries, users had to set the `javax.net.ssl.trustStore` System Property to use a different keystore.
[1] https://bugs.java.com/view_bug.do?bug_id=JDK-8191486
The `cacerts` keystore of the OpenJDK 9 binary for Linux x64 has been populated by [JEP 319: Root Certificates](http://openjdk.java.net/jeps/319) [1] with a set of root certificates issued by the CAs of Oracle's Java SE Root CA Program. This addresses the problem of the empty `cacerts` keystore in the OpenJDK 9 binary for Linux x64. The empty `cacerts` keystore had prevented TLS connections from being established because Trusted Root Certificate Authorities were not installed. As a workaround for OpenJDK 9 binaries, users had to set the `javax.net.ssl.trustStore` System Property to use a different keystore.
[1] https://bugs.java.com/view_bug.do?bug_id=JDK-8191486
- backported by
-
JDK-8193891 Release Note: JEP 319 Root Certificates
-
- Closed
-