JDK-8225130 : Add exception for expiring Comodo roots to VerifyCACerts test
The Version table provides details related to the release that this issue/RFE will be addressed.
Unresolved : Release in which this issue/RFE will be addressed. Resolved: Release in which this issue/RFE has been resolved. Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.
The expiring Comodo roots must be added to the exemption list before Sunday, March 1, 2020 (90 days before it expires) to avoid test failures.
Fix request (13u)
Requesting backport to 13u for parity with 11u, applies cleanly.
Approving for 8u252 as this is time critical.
I am working on restructuring this test to avoid frequent updates. New bug will be filed to address it.
Can I suggest that we modify VerifyCACerts.java testcase to flag certs 180 days before they expire ? 90 days is too short given the current release model/cadence.
Fix Request (14u)
Same thing as 8u and 11u. Applies cleanly to 14u, VerifyCA test starts to pass.
Fix Request (8u), critical
Same reason as for 11u. Patch applies with reshuffling. Affected test starts to pass.
Fix Request (11u), critical
This resolves VerifyCA test failure in 11u and keeps codebases in sync (I see 11.0.8-oracle). Patch applies cleanly to 11u, passes VerifyCA test. I would like to have it sooner to make testing clean, therefore "critical".
addtrustclass1ca:Valid from: Tue May 30 10:38:31 GMT 2000 until: Sat May 30 10:38:31 GMT 2020
addtrustexternalca:Valid from: Tue May 30 10:48:38 GMT 2000 until: Sat May 30 10:48:38 GMT 2020
addtrustqualifiedca:Valid from: Tue May 30 10:44:50 GMT 2000 until: Sat May 30 10:44:50 GMT 2020