8223499: Remove two DocuSign root certificates that are expiring
Reviewed-by: mullan
Binary file src/java.base/share/lib/security/cacerts has changed
--- a/test/jdk/sun/security/lib/cacerts/VerifyCACerts.java Thu May 16 11:30:32 2019 -0700
+++ b/test/jdk/sun/security/lib/cacerts/VerifyCACerts.java Thu May 16 12:36:08 2019 -0700
@@ -26,6 +26,7 @@
* @test
* @bug 8189131 8198240 8191844 8189949 8191031 8196141 8204923 8195774 8199779
* 8209452 8209506 8210432 8195793 8216577 8222089 8222133 8222137 8222136
+ * 8223499
* @summary Check root CA entries in cacerts file
*/
import java.io.File;
@@ -49,7 +50,7 @@
+ File.separator + "security" + File.separator + "cacerts";
// The numbers of certs now.
- private static final int COUNT = 90;
+ private static final int COUNT = 88;
// map of cert alias to SHA-256 fingerprint
@SuppressWarnings("serial")
@@ -143,10 +144,6 @@
"69:DD:D7:EA:90:BB:57:C9:3E:13:5D:C8:5E:A6:FC:D5:48:0B:60:32:39:BD:C4:54:FC:75:8B:2A:26:CF:7F:79");
put("verisignclass3g5ca [jdk]",
"9A:CF:AB:7E:43:C8:D8:80:D0:6B:26:2A:94:DE:EE:E4:B4:65:99:89:C3:D0:CA:F1:9B:AF:64:05:E4:1A:B7:DF");
- put("certplusclass2primaryca [jdk]",
- "0F:99:3C:8A:EF:97:BA:AF:56:87:14:0E:D5:9A:D1:82:1B:B4:AF:AC:F0:AA:9A:58:B5:D5:7A:33:8A:3A:FB:CB");
- put("certplusclass3pprimaryca [jdk]",
- "CC:C8:94:89:37:1B:AD:11:1C:90:61:9B:EA:24:0A:2E:6D:AD:D9:9F:9F:6E:1D:4D:41:E5:8E:D6:DE:3D:02:85");
put("keynectisrootca [jdk]",
"42:10:F1:99:49:9A:9A:C3:3C:8D:E0:2B:A6:DB:AA:14:40:8B:DD:8A:6E:32:46:89:C1:92:2D:06:97:15:A3:32");
put("dtrustclass3ca2 [jdk]",
@@ -243,10 +240,6 @@
@SuppressWarnings("serial")
private static final HashSet<String> EXPIRY_EXC_ENTRIES = new HashSet<>() {
{
- // Valid until: Sat Jul 06 19:59:59 EDT 2019
- add("certplusclass2primaryca [jdk]");
- // Valid until: Sat Jul 06 19:59:59 EDT 2019
- add("certplusclass3pprimaryca [jdk]");
// Valid until: Tue Jul 09 14:40:36 EDT 2019
add("utnuserfirstobjectca [jdk]");
}