RFR 8076190: Customizing the generation of a PKCS12 keystore
Weijun Wang
weijun.wang at oracle.com
Tue Dec 18 09:49:05 UTC 2018
> On Dec 15, 2018, at 5:09 AM, Sean Mullan <sean.mullan at oracle.com> wrote:
>
> On 12/12/18 10:57 AM, Weijun Wang wrote:
>> Thanks. Will you please also take a look at the release note athttps://bugs.openjdk.java.net/browse/JDK-8215293?
>
> I'm not sure about including the second sentence: "In particular, the algorithm for certificate protection and MacData can be set to "NONE" so that a PKCS #12 keystore that only contains certificates does not require a password."
OK. Release note updated.
>
> I would probably remove this sentence and leave specific details and use cases like that to the programming guides.
We can add some examples to the keytool doc once cacerts is migrated to password-less.
Thanks,
Max
>
> --Sean
More information about the security-dev
mailing list