Update to Openjdk 1.8.0-141 or later versions changes jssecacerts behavior

Solution Verified - Updated -

Issue

  • With openjdk 131 and earlier, it was expected that jssecacerts would be found in /usr/lib/jvm/jre/lib/security.
  • After updating OpenJDK from 1.8.0.131-3.b12.el7_3; there is behavioral change that now it first read the cacerts file and ignore the jssecacerts file at all if cacerts exist.

Environment

  • Red Hat Enterprise Linux 7
  • java-1.8.0-openjdk-1.8.0.131-11.b12.el7.x86_64 and later

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In
Close

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.