[tls] On 8059818 Keytool does not recognize jssecacerts for -trustcacerts command line option

Wang Weijun weijun.wang at oracle.com
Wed Oct 8 03:37:11 UTC 2014


On Oct 8, 2014, at 11:10, Xuelei Fan <xuelei.fan at oracle.com> wrote:
>> 
>> However, I can think of adding a new system property called "jdk.keytool.cacerts" so that people can point it to a file not jre/lib/security/cacerts. This would be useful for the bug reporter and we can now finally testing the -trustcacerts option.
>> 
> If I'm correct, the cacerts can be specified in command line.
> Considering we have had the command line option, the benefit of adding a
> new system property may be limited.

The option is a simple "-trustcacerts" without any parameter. So you cannot customize where the trusted keystore is.

--Max



More information about the security-dev mailing list