Please merge ca-certificates-java 20180413 (main) from Debian unstable (main)
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
JOSM |
Unknown
|
Critical
|
|||
ca-certificates-java (Ubuntu) |
Fix Released
|
Undecided
|
Julian Andres Klode | ||
Bionic |
Fix Released
|
Undecided
|
Unassigned |
Bug Description
[Original Merge description]
There's a new ca-certificates
The following changes should be kept:
1) debian/control: Bump javahelper build dependency.
2) debian/rules:
2a) Explicitly depend on openjdk-
2b) Replace javac arguments '-source 1.7 -target 1.7' with '--release 7'
as, per JEP-247, it also takes care of setting the right -bootclasspath
argument.
And a new change should be considered:
- remove the creation of a default jvm-*.cfg file from debian/
[Impact]
Besides the fix in bug 1739631 this merge also removes the usage of a fixed jvm config file by ca-certificates
This usage is no longer required since OpenJDK packages have provided their own default exactly for this scenario since 2009 back to Jaunty's openjdk version 6b14-0ubuntu4 [2] - which is the correct approach for this problem as the openjdk maintainers known what jvm should default to in each architecture.
This has already been fixed in the postinst script by debian 874276 [3], but unfortunately the jks-keystore hook was not fixed at the time.
[Test Case]
* Install ca-certificates
[Regression Potential]
* if the openjdk package ever fail to ship a default jvm config file (or ships a badly configured one) the configuration step of ca-certificates
[Other Info]
[References]
[1] https:/
[2] https:/
[3] https:/
tags: | added: cosmic |
tags: | added: upgrade-software-version |
Changed in josm: | |
importance: | Unknown → Critical |
Changed in ca-certificates-java (Ubuntu): | |
assignee: | nobody → Julian Andres Klode (juliank) |
status: | Confirmed → In Progress |
description: | updated |
Debdiff from Ubuntu version 20170930ubuntu1.