[00:05] <JanC> and also the test URLs
[00:06] <JanC> I suppose it protects against accidental edits/overwrites...
[00:06] <mdeslaur> yeah
[00:06] <JanC> but makes no sense to run those tests when certs are external
[00:07] <mdeslaur> and if they are expired perhaps, though that should be handled in a better way
[00:07] <JanC> the URL tests would fail when they expire without being replaced indeed
[00:10] <mdeslaur> looks like debian/ubuntu packaging just deletes the upstream cacerts file and symlinks the path to the system one, so there's nothing in openjdk itself to configure it to use the system ca certs
[00:10] <mdeslaur> which is why nothing disables the tests
[00:13] <JanC> an upstream knob to disable everything related to the CAs collection would be nice, I guess
[00:42] <teward> mdeslaur: it SOUNDS like the test there is doing a test of "What we expect to be present on system" vs. "What is present on system" based on the SRU details
[00:42] <teward> just sayin
[00:42] <teward> it makes sense for *upstream*'s tests to do this, but not necessarily on a distro build (in which case patch the packaging to not run that test)
=== chris14_ is now known as chris14
[12:24] <mdeslaur> teward: exactly
[16:01] <teward> then i'll make a followup comment based on this discussion
[16:02] <teward> thanks for the rubberducking session :)
[18:13] <tsimonq2> Oh, hi. Seems I forgot to re-join this channel after my IRC client disconnected.
[18:13] <tsimonq2> sarnold: So... about that Vim update... :D
[18:19] <teward> mdeslaur: and everyone else, apologies for using y'all as a temporary rubber-ducking session there on jtreg, but it was important enough to bounce off of y'all for any concerns :p