RFR CSR for 8162628: Migrating cacerts keystore to password-less PKCS12 format

[Michael Osipov]

Am 2019-06-02 um 12:36 schrieb Alan Bateman:
> On 02/06/2019 09:48, Weijun Wang wrote:
>> :
>>
>> There is also a compatibility impact as someone out there might be
>> opening cacerts directly.
>>
> A general point here is that the contents of the lib directory is not a
> supported interface, a point that may be relevant to the wording in the
> CSR.

Correct, from a user's POV it is completely opaque to me. It is at the
descretion of Oracle just like the mod files, but from a packager's POV
I need to be able to exchange this sytemwide without much hassle wich
neither JDK nor PKCS12 do this atm compared to a PEM bundle.

Michael