Integrated: 8354469: Keytool exposes the password in plain text when command is piped using | grep
Weijun Wang
weijun at openjdk.org
Wed Oct 15 20:50:59 UTC 2025
On Wed, 10 Sep 2025 15:43:52 GMT, Weijun Wang <weijun at openjdk.org> wrote:
> Allow password hiding even if there is no `System.console`. A manual test is included.
This pull request has now been integrated.
Changeset: a7a3a660
Author: Weijun Wang <weijun at openjdk.org>
URL: https://git.openjdk.org/jdk/commit/a7a3a660e33fabc025ebe887f5605741be9ca8c3
Stats: 335 lines in 6 files changed: 287 ins; 12 del; 36 mod
8354469: Keytool exposes the password in plain text when command is piped using | grep
Reviewed-by: mullan, smarks, naoto, hchao
-------------
PR: https://git.openjdk.org/jdk/pull/27196
More information about the security-dev
mailing list