RFR: 8260693: Provide the support for specifying a signer in keytool -genkeypair [v5]
Hai-May Chao
hchao at openjdk.java.net
Thu Apr 8 01:52:40 UTC 2021
On Thu, 8 Apr 2021 01:42:18 GMT, Hai-May Chao <hchao at openjdk.org> wrote:
>> test/jdk/sun/security/tools/keytool/GenKeyPairSigner.java line 299:
>>
>>> 297: System.exit(1);
>>> 298: }
>>> 299:
>>
>> Since you are here, you can check if the new entry is indeed protected by the new key password.
>
> In testSignerJKS() has made sure that the new entry created with new key password can *only* be accessed when a correct key password is provided in order to retrieve the corresponding signer’s private key.
The new entry protected by the new key password is an existing function, and its testing should have been covered.
-------------
PR: https://git.openjdk.java.net/jdk/pull/3281
More information about the security-dev
mailing list