New switch suggestion for keytool
Wang Weijun
weijun.wang at oracle.com
Tue Dec 16 00:50:24 UTC 2014
> On Dec 16, 2014, at 04:19, Matthew Hall <mhall at mhcomputing.net> wrote:
>
> It's really useful for things like bootstrapping keystores for symmetric keys.
For a program? It's super easy for a program to create an empty keystore.
>
> Many StackOverflows exist of people doing it manually to "work around" this
> limitation.
In fact, I searched for "create empty keystore" on stackoverflow and didn't notice such a requirement.
--Max
>
> I've done it myself especially when working on an identity management
> appliance.
>
> Matthew.
>
> On Mon, Dec 15, 2014 at 09:54:53AM +0800, Wang Weijun wrote:
>> How is this useful?
>>
>> On the other hand, you can always import a cert and remove it to get an empty keystore.
>>
>> --Max
>>
>>> On Dec 15, 2014, at 04:24, Rich Midwinter <rich.midwinter at gmail.com> wrote:
>>>
>>> Hi
>>>
>>> I'd like to see a new switch added to keytool to initialise an empty keystore, for which I've attached a first shot at a patch.
>>>
>>> Could someone point me in the right direction (a sponsor?) to see if this can be included.
>>>
>>> Thanks
>>> Rich
>>>
>>> <keytool.patch.txt>
>>
More information about the security-dev
mailing list