RFR 8238264: Exception thrown when setting javax.net.ssl.keyStoreType = PKCS11

Martin Balao mbalao at redhat.com
Wed Feb 5 21:11:21 UTC 2020

On 2/5/20 4:10 PM, Xuelei Fan wrote:
> For the property, the default key store is none.

If "javax.net.ssl.keyStore" system property is not set, the default
"keyStore" value is an empty string (not "NONE").

We may not want to
> introduce new compatibility risks by adding a new default value.

I don't intend to change the default value. The default will continue to
be an empty string. All I want is to fix the ambiguity between empty
string and string "NONE" when checking the condition.

> application want to use key store other than the default one, it is
> required to set it.

Yes, sure. I'm not discussing this.


More information about the security-dev mailing list