JDK-8232019 : Add LuxTrust certificate updates to the existing root program
The Version table provides details related to the release that this issue/RFE will be addressed.
Unresolved : Release in which this issue/RFE will be addressed. Resolved: Release in which this issue/RFE has been resolved. Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.
New root requested to be added with
DN: CN=LuxTrust Global Root 2, O=LuxTrust S.A., C=LU
Fix Request (8u):
Needed for merge with 8u242. Patch applies cleanly now JDK-8193255 & JDK-8225392 is in place.
Approving binary blob backport for 8u242.
Source backport should go to 8u252 following integration of JDK-8193255.
Fix Request (OpenJDK 8u):
Please approve backporting this to OpenJDK 8u. Specifically for 8u242 as the backports adds a new root certificate for LuxTrust. 8u242 since it's in Oracle JDK 8u241. I'll be sure to include relevant bits of this in the backport of JDK-8193255. The patch has been reviewed by Volker Simonis, Christoph Langer and Martin Balao. The JDK 11u patch didn't apply cleanly and needed a review.
HG export patch (as this includes binary blob cacerts):
Testing (ActalisCA.java is problem-listed and tracked with JDK-8224768):
Fix request (11u and 13u):
Request to backport this additional root certificate to both, JDK11 updates and JDK13 updates. Patch applies cleanly but needs to be followed by JDK-8234245 to be free of regressions.