RFR: 8341059: Change Entrust TLS distrust date to November 12, 2024
Rajan Halade
rhalade at openjdk.org
Fri Sep 27 16:27:49 UTC 2024
Please review this change to distrust TLS server certificates issued after November 11, 2024 and anchored by Entrust Root CAs. This is a follow up fix after JDK-8337664 to update only the distrust date. TLS server certificates issued before this date will continue to be valid until they expire. This restriction should have minimal compatibility impact since Entrust has announced they will be using a partner (SSL.com) for all TLS server certificates issued after Nov 11, 2024. The addition of these new TLS root certificates from SSL.com is tracked with https://bugs.openjdk.org/browse/JDK-8341057
See the CSR for more details: https://bugs.openjdk.org/browse/JDK-8341087
-------------
Commit messages:
- 8341059: Change Entrust TLS distrust date to November 12, 2024
Changes: https://git.openjdk.org/jdk/pull/21225/files
Webrev: https://webrevs.openjdk.org/?repo=jdk&pr=21225&range=00
Issue: https://bugs.openjdk.org/browse/JDK-8341059
Stats: 8 lines in 4 files changed: 0 ins; 0 del; 8 mod
Patch: https://git.openjdk.org/jdk/pull/21225.diff
Fetch: git fetch https://git.openjdk.org/jdk.git pull/21225/head:pull/21225
PR: https://git.openjdk.org/jdk/pull/21225
More information about the security-dev
mailing list