[rfc][icedtea-web] remove redundnat declaration of changeit

Jiri Vanek jvanek at redhat.com
Thu Apr 2 08:25:09 UTC 2015


On 04/02/2015 03:04 AM, Jacob Wisor wrote:
> Am 01.04.2015 um 17:40 schrieb Jiri Vanek:
>> Hello!
>>
>> Today Ihad spotted quite serious bug, and I'm wondering no one ever compalined.
>
> I have spotted it too but I did not complain because I have learned that IcedTea-Web is full of such
> bugs.
>
>> ITW is not able to work with custom password on keystores.
>> This patch is just small clean  up before actual work.
>
> Well, I have prepared a far more elaborate patch than this one. The problems here are far deeper
[1]
> reaching than this patch addresses. I'd rather say we should not make any quick shots now and

Still this is good thing to do....
> postpone pushing it until after the release of 1.6.

..and even for 1.6
>
> As you say, this is a preparatory patch, so you can keep on working based on this patch and then

I'm already doing so. But it do not block to push it.

> push a set of patches so that we will have a nice history of sequentially dependent patches
> (changesets, speaking in Mercurial).

And this is refactoring. So it is definitive worthy to push ahead.


j.

[1]

The patch I'm doing for this is not so complex.

It  wraps all various calls to keyStore.something(password) by utility method, which tries default 
password  if it do not work and is not-headless then asks user. Even several times.

Small question is, whether to save this password ( I'm +1 to save it as char[])  until java closes.

Then those passwords will be tried before asking user again.

Unless you see something wrong with this patch (" remove redundnat declaration of changeit")  only, 
I really would like to push rather then keep it locally. Maybe for ever.


J.


More information about the distro-pkg-dev mailing list