RFR: Release Note for JDK-8264968 Provide the support for specifying a signer in keytool -genkeypair command

Sean Mullan sean.mullan at oracle.com
Tue Apr 13 13:39:30 UTC 2021

Looks good, a couple of suggested rewordings in the second sentence:

The `-signer` and `-signerkeypass` options have been added to the 
`-genkeypair` command of the `keytool` utility. The `-signer` option 
specifies the keystore alias of a signer and the `-signerkeypass` option 
specifies the password used to protect the signer’s private key. These 
options allow `keytool -genkeypair` to sign the certificate using the 
signer’s private key. This is especially useful for generating a 
certificate with a key agreement algorithm as its public key algorithm.


On 4/9/21 5:12 PM, Hai-May Chao wrote:
> Please review the release note for JDK-8264968:
>    https://bugs.openjdk.java.net/browse/JDK-8264968
> Thanks,
> Hai-May

More information about the security-dev mailing list