Details
-
Type:
Sub-task
-
Status: Resolved
-
Priority:
P4
-
Resolution: Fixed
-
Affects Version/s: 16
-
Fix Version/s: 16
-
Component/s: security-libs
-
Labels:
-
Subcomponent:
Description
The `-trustcacerts` and `-keystore` options have been added to the `-printcert` and `-printcrl` commands of the `keytool` utility. The `-printcert` command does not check for the weakness of a certificate's signature algorithm if it is a trusted certificate in the user's keystore or in the `cacerts` keystore. The `-printcrl` command verifies the CRL using a certificate from the user's keystore or the `cacerts` keystore, and will print out a warning if it cannot be verified.