[jdk21u-dev] RFR: 8354469: Keytool exposes the password in plain text when command is piped using | grep [v3]
Ralf Schmelter
rschmelter at openjdk.org
Mon Feb 23 15:59:41 UTC 2026
On Sun, 22 Feb 2026 20:06:56 GMT, Goetz Lindenmaier <goetz at openjdk.org> wrote:
>> Edit of src/java.base/share/classes/sun/security/util/resources/security.properties
>> applied to sun/security/util/Resources.java as
>> "8345940: Migrate security-related resources from Java classes to properties files" not in 21.
>>
>>
>> test/jdk/sun/security/util/Resources/Usages.java
>> Trivial resolve as "8338411: Implement JEP 486: Permanently Disable the Security Manager" is not in 21.
>>
>> The new test jdk/sun/security/tools/keytool/EchoPassword.java fails for passwords with non-ascii characters.
>> I think this is because many changes to pass the encoding around are missin in 21, especially https://bugs.openjdk.org/browse/JDK-8330276: Console methods with explicit Locale. Removed the part of the test using non-ascii.
>
> Goetz Lindenmaier has updated the pull request with a new target base due to a merge or a rebase. The pull request now contains six commits:
>
> - Merge branch 'openjdk:master' into goetz_backport_8354469
> - adapt test to 21
> - backport a7a3a660e33fabc025ebe887f5605741be9ca8c3
> - replace StableValue
> - make it compile
> - backport b0a520657d980f14b86afe6027dc0ebd34afef8f
Looks good.
-------------
Marked as reviewed by rschmelter (Reviewer).
PR Review: https://git.openjdk.org/jdk21u-dev/pull/2617#pullrequestreview-3841939441
More information about the jdk-updates-dev
mailing list