Please do not reply directly to this email. All additional comments should be made in the comments box of this bug report.
Summary: Review Request: ca-certificates - Mozilla CA root bundle package
https://bugzilla.redhat.com/show_bug.cgi?id=448497
------- Additional Comments From fitzsim@redhat.com 2008-05-27 17:32 EST ------- The plan is to symlink $JAVA_HOME/jre/lib/security/cacerts to /etc/pki/java/cacerts so the location of cacerts doesn't really matter.
The only situation in which it would matter would be if an app assumed that cacerts was under $JAVA_HOME, dereferenced it fully, then looked for another file relative to that. But cacerts should be under /etc and not under JAVA_HOME because 1) it's a config file, 2) it should (ideally) be shared by all JREs on the system. I don't have a good solution for the lookup-relative-to-cacerts situation, so I'll just have to hope that no app does that. (Having ca-certificates provide /usr/lib/jvm/java-1.6.0-openjdk-1.6.0.0/jre/lib/security/cacerts directly wouldn't work due to the versioned directory and for other reasons).
So basically, it doesn't matter to me if it's /etc/pki/java/cacerts or /etc/pki/tls/certs/cacerts.