JDK-8225068 : Remove DocuSign root certificate that is expiring in May 2020
The Version table provides details related to the release that this issue/RFE will be addressed.
Unresolved : Release in which this issue/RFE will be addressed. Resolved: Release in which this issue/RFE has been resolved. Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.
The following DocuSign root certificate is expiring in May 2020 and needs action.
CN=KEYNECTIS ROOT CA, OU=ROOT, O=KEYNECTIS, C=FR
EXPIRATION DATE: 5/25/2020
Please ensure not to remove the certificate before the expiration date.
Fix Request [8u262]:
Patch backports cleanly after path shuffling. Patched test fails with certificate present, passes once removed
Fix request (13u)
Requesting backport to 13u for parity with 11u, applies cleanly.
jdk11 backport request
I would like to have the patch in OpenJDK11 as well, because the issue is present there too. The patch applies cleanly.
Fix Request (14u):
Requesting backport of this fix to 14.0.2. The change is to remove expiring root certificate from cacerts file. Patch applies cleanly and has associated test with it for verification.