> Henri, I think this is something you would have to bring up with Apple. The > cacerts file in Apple's JDK was generated from the certificates in the > 'System Roots' keychain (or, it was the last time I was responsible for doing > it), so you may not have the legal right to redistribute it. As usual, there > are no lawyers here. > > As Dalibor says, each JDK distributor or licensee is responsible for > obtaining their own root certificates, and in Apple's case, they are already > distributed via the OS, so the JDK was covered by those licenses.
Ok, so I'll have to mimic OpenJDKs packaging performed on Linux distribution, using Mozilla provided CA certs. Thanks
