Comment 16 for bug 1723198

If I compare a pure installation via apt-get install ca-certificates-java in Xenial (no upgrade involve) I see a behaviour change between the package currently in the archive and the one I have fix in a PPA.

--------------------------------
# Current ca-certificates-java (from archive) #
It is installaing "openjdk-9-jre-headless"

sudo apt-get install ca-certificates-java
Reading package lists... Done
Building dependency tree
Reading state information... Done
The following additional packages will be installed:
  java-common libavahi-client3 libavahi-common-data libavahi-common3 libcups2 libjpeg-turbo8 libjpeg8 liblcms2-2 libnspr4 libnss3 libnss3-nssdb libpcsclite1 libxi6 libxrender1 libxtst6 openjdk-9-jre-headless
  x11-common

# ca-certificates-java fix to depend on openjdk-8
It is now installing "openjdk-8-jre-headless"

sudo apt-get install ca-certificates-java
Reading package lists... Done
Building dependency tree
Reading state information... Done
The following additional packages will be installed:
  fontconfig-config fonts-dejavu-core java-common libavahi-client3 libavahi-common-data libavahi-common3 libcups2 libfontconfig1 libjpeg-turbo8 libjpeg8 liblcms2-2 libnspr4 libnss3 libnss3-nssdb libpcsclite1
  libxi6 libxrender1 libxtst6 openjdk-8-jre-headless x11-common

# rmadison openjdk-9-jre-headless --suite=xenial
 openjdk-9-jre-headless | 9~b114-0ubuntu1 | xenial/universe | amd64, i386

# rmadison openjdk-8-jre-headless --suite=xenial
 openjdk-8-jre-headless | 8u77-b03-3ubuntu3 | xenial | amd64, arm64, armhf, i386, powerpc, ppc64el, s390x
--------------------------------

This might have an impact on user already having ca-certificates-java with openjdk-9 at next package upgrade.

I consider that using the package found in main (openjdk-8) is IMHO a better approach than using the universe (openjdk-9), but while this may affect current ca-certificates-java user. I wonder if we should put the xenial package to depen on openjdk-9.

I'll look with foundation team.

- Eric