git: openjdk/jdk: master: 8354469: Keytool exposes the password in plain text when command is piped using | grep
Weijun Wang
weijun at openjdk.org
Wed Oct 15 20:49:54 UTC 2025
Changeset: a7a3a660
Branch: master
Author: Weijun Wang <weijun at openjdk.org>
Date: 2025-10-15 20:47:46 +0000
URL: https://git.openjdk.org/jdk/commit/a7a3a660e33fabc025ebe887f5605741be9ca8c3
8354469: Keytool exposes the password in plain text when command is piped using | grep
Reviewed-by: mullan, smarks, naoto, hchao
! src/java.base/share/classes/jdk/internal/io/JdkConsoleImpl.java
! src/java.base/share/classes/sun/security/util/Password.java
! src/java.base/share/classes/sun/security/util/resources/security.properties
+ test/jdk/sun/security/tools/keytool/EchoPassword.java
+ test/jdk/sun/security/tools/keytool/SetInPassword.java
! test/jdk/sun/security/util/Resources/Usages.java
More information about the jdk-changes
mailing list