git: openjdk/jdk21u-dev: master: 8354469: Keytool exposes the password in plain text when command is piped using | grep
Goetz Lindenmaier
goetz at openjdk.org
Mon Feb 23 16:10:22 UTC 2026
Changeset: f1d3049f
Branch: master
Author: Goetz Lindenmaier <goetz at openjdk.org>
Date: 2026-02-23 16:07:28 +0000
URL: https://git.openjdk.org/jdk21u-dev/commit/f1d3049fa80260f207dc6a794485b6f582d66fe1
8354469: Keytool exposes the password in plain text when command is piped using | grep
Reviewed-by: rschmelter
Backport-of: a7a3a660e33fabc025ebe887f5605741be9ca8c3
! src/java.base/share/classes/jdk/internal/io/JdkConsoleImpl.java
! src/java.base/share/classes/sun/security/util/Password.java
! src/java.base/share/classes/sun/security/util/Resources.java
+ test/jdk/sun/security/tools/keytool/EchoPassword.java
+ test/jdk/sun/security/tools/keytool/SetInPassword.java
! test/jdk/sun/security/util/Resources/Usages.java
More information about the jdk-updates-changes
mailing list