RFR: 8354469: Keytool exposes the password in plain text when command is piped using | grep [v5]
Weijun Wang
weijun at openjdk.org
Mon Sep 15 19:04:26 UTC 2025
> Allow password hiding even if there is no `System.console`. A manual test is included.
Weijun Wang has updated the pull request incrementally with one additional commit since the last revision:
quote keystore paths as well
-------------
Changes:
- all: https://git.openjdk.org/jdk/pull/27196/files
- new: https://git.openjdk.org/jdk/pull/27196/files/5fa7b2f7..d57f56c4
Webrevs:
- full: https://webrevs.openjdk.org/?repo=jdk&pr=27196&range=04
- incr: https://webrevs.openjdk.org/?repo=jdk&pr=27196&range=03-04
Stats: 3 lines in 1 file changed: 0 ins; 0 del; 3 mod
Patch: https://git.openjdk.org/jdk/pull/27196.diff
Fetch: git fetch https://git.openjdk.org/jdk.git pull/27196/head:pull/27196
PR: https://git.openjdk.org/jdk/pull/27196
More information about the security-dev
mailing list