Bug#980355: ca-certificates-java: option to store the jks elsewhere
Mattia Rizzolo
mattia at debian.org
Mon Jan 18 03:40:51 GMT 2021
Package: ca-certificates-java
Version: 20190909
Severity: wishlist
Control: affects -1 jenkins.debian.org
Dear ca-certificates-java maintainer,
I would like to propose a simple feature for
/usr/share/ca-certificates-java/ca-certificates-java.jar.
I'd like a new flag to override the hadcoded /etc/ssl/certs/java/cacerts
so I can run the the program on whatever set of certificates I want to.
My use case here is exactly to run this on a .debian.org system, where
the system's ca store only contains Debian's own CA and the Let's
Encrypt root, nothing else. I would want to run this on "ca-global" (I
suppose I would have to create a useful stdin for
ca-certificates-java.jar, but that's doable; though it would be awesome
if it also learnt to just crawl a directory…) and then save the
generated JKS someplaces I have write access to.
Thanks for considering!
--
regards,
Mattia Rizzolo
GPG Key: 66AE 2B4A FCCF 3F52 DA18 4D18 4B04 3FCD B944 4540 .''`.
More about me: https://mapreri.org : :' :
Launchpad user: https://launchpad.net/~mapreri `. `'`
Debian QA page: https://qa.debian.org/developer.php?login=mattia `-
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: not available
URL: <http://alioth-lists.debian.net/pipermail/pkg-java-maintainers/attachments/20210118/b54d8015/attachment.sig>
More information about the pkg-java-maintainers
mailing list