Calling `keyStore.store(outputStream, null)` on a PKCS12 KeyStore creates a password-less PKCS12 file. The certificates inside the file are not encrypted and the file contains no MacData. This file can then be loaded with any password (including `null`) when calling `keyStore.load(inputStream, password)`.