New switch suggestion for keytool

Matthew Hall mhall at mhcomputing.net
Mon Dec 15 20:19:31 UTC 2014


It's really useful for things like bootstrapping keystores for symmetric keys.

Many StackOverflows exist of people doing it manually to "work around" this 
limitation.

I've done it myself especially when working on an identity management 
appliance.

Matthew.

On Mon, Dec 15, 2014 at 09:54:53AM +0800, Wang Weijun wrote:
> How is this useful?
> 
> On the other hand, you can always import a cert and remove it to get an empty keystore.
> 
> --Max
> 
> > On Dec 15, 2014, at 04:24, Rich Midwinter <rich.midwinter at gmail.com> wrote:
> > 
> > Hi
> > 
> > I'd like to see a new switch added to keytool to initialise an empty keystore, for which I've attached a first shot at a patch.
> > 
> > Could someone point me in the right direction (a sponsor?) to see if this can be included.
> > 
> > Thanks
> > Rich
> > 
> > <keytool.patch.txt>
> 



More information about the security-dev mailing list