Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8278157

keytool import into a JKS keystore is not deterministic

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Not an Issue
    • Icon: P4 P4
    • None
    • 17
    • security-libs
    • None

      If the following keytool import into a fresh JKS keystore is run twice the binary keystore from each run is different:

      keytool -noprompt -import -storetype JKS -alias "myalias" -file mycert.crt -keystore cacerts1 -storepass changeit
      keytool -noprompt -import -storetype JKS -alias "myalias" -file mycert.crt -keystore cacerts2 -storepass changeit
      diff cacerts1 cacerts2
      Binary files cacerts1 and cacerts2 differ

            Unassigned Unassigned
            aleonard Andrew Leonard
            Votes:
            0 Vote for this issue
            Watchers:
            4 Start watching this issue

              Created:
              Updated:
              Resolved: