[cp-patches] Re: RFC: add a cacerts file under resource/java/security

Tom Tromey tromey at redhat.com
Thu Jun 8 23:16:45 UTC 2006


>>>>> "Mark" == Mark Wielaard <mark at klomp.org> writes:

Mark> I CCed the devjam list on which a couple of different distribution
Mark> packagers are subscribed. Devjam people, Raif added support for
Mark> importing trusted ca-certs to GNU Classpath so our tls/ssl
Mark> implementation for example can just reuse the ca-certs that are already
Mark> packaged for an distribution (for example those used by Mozilla).

I know zilch about this area, so forgive me if my questions are naive.

Why read these files and transform them into something we can
distribute?  Why not read them dynamically, as needed?  That way if a
new cert is installed, a newly run VM will pick it up automatically.

Tom



More information about the Classpath-patches mailing list