RFR: 8281234: The -protected option is not always checked in keytool and jarsigner [v2]
Weijun Wang
weijun at openjdk.org
Fri Dec 20 18:20:50 UTC 2024
On Fri, 4 Feb 2022 01:19:51 GMT, Weijun Wang <weijun at openjdk.org> wrote:
>> The option means there is no need to provide a password when loading a keystore. In some places in jarsigner and keytool, even with the option specified, password is still prompted for or warnings are still shown.
>
> Weijun Wang has updated the pull request incrementally with one additional commit since the last revision:
>
> only expand system property if it has a name
Yes, this is a bug. The timeout you observed means the jarsigner tool is waiting for the password input but actually it’s not required. It’s fine to backport it to update releases.
-------------
PR Comment: https://git.openjdk.org/jdk/pull/7339#issuecomment-2557503184
More information about the security-dev
mailing list