Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8162628

The CACERTS keystore type

    Details

    • Type: Enhancement
    • Status: Open
    • Priority: P3
    • Resolution: Unresolved
    • Affects Version/s: None
    • Fix Version/s: None
    • Component/s: security-libs
    • Labels:
      None

      Description

      The built-in collection of trust anchors for a JDK release is the cacerts keystore. It is in JKS format which has some limitations and is proprietary. Investigate migrating to a more standard format.

        Attachments

          Issue Links

          csr for

          CSR - null JDK-8224891 The CACERTS keystore type

          • P3 - Major loss of function.
          • Draft
          is blocked by

          Bug - A problem which impairs or prevents the functions of the product. JDK-8194702 pkcs12 can be loaded with null password but certificates are missing

          • P3 - Major loss of function.
          • Open

          Enhancement - null JDK-8076190 Customizing the generation of a PKCS12 keystore

          • P3 - Major loss of function.
          • Resolved

          Enhancement - null JDK-8208176 Enhance keytool to deal with password-less pkcs12 keystores nicely

          • P4 - Minor loss of function, or other problem where easy workaround is present.
          • Closed
          relates to

          Bug - A problem which impairs or prevents the functions of the product. JDK-8194749 password handling with keytool -cacerts

          • P3 - Major loss of function.
          • Closed

          Enhancement - null JDK-8163354 keytool/jarsigner should print out warning messages or fail when -storepass is not provided to a pkcs12 keystore

          • P4 - Minor loss of function, or other problem where easy workaround is present.
          • Open

          Enhancement - null JDK-8225099 Tagging jdkCA certs in pkcs12 keystore differently

          • P4 - Minor loss of function, or other problem where easy workaround is present.
          • Open

          Enhancement - null JDK-8074426 Add JKS support for trust settings on root certificates

          • P2 - Crashes, loss of data, severe memory leak.
          • Resolved

          Enhancement - null JDK-8153005 Upgrade the default PKCS12 encryption/MAC algorithms

          • P3 - Major loss of function.
          • Resolved

            Activity

              People

              • Assignee:
                weijun Weijun Wang
                Reporter:
                vinnie Vincent Ryan
              • Votes:
                0 Vote for this issue
                Watchers:
                4 Start watching this issue

                Dates

                • Created:
                  Updated: