keytool import into a JKS keystore is not deterministic

XMLWordPrintable

    • Type: Bug
    • Resolution: Not an Issue
    • Priority: P4
    • None
    • Affects Version/s: 17
    • Component/s: security-libs
    • None

      If the following keytool import into a fresh JKS keystore is run twice the binary keystore from each run is different:

      keytool -noprompt -import -storetype JKS -alias "myalias" -file mycert.crt -keystore cacerts1 -storepass changeit
      keytool -noprompt -import -storetype JKS -alias "myalias" -file mycert.crt -keystore cacerts2 -storepass changeit
      diff cacerts1 cacerts2
      Binary files cacerts1 and cacerts2 differ

            Assignee:
            Unassigned
            Reporter:
            Andrew Leonard
            Votes:
            0 Vote for this issue
            Watchers:
            4 Start watching this issue

              Created:
              Updated:
              Resolved: