Bug ID: JDK-8181737 Support secret keys and trusted certs in PKCS12 keystore

JDK-8181737 : Support secret keys and trusted certs in PKCS12 keystore

Type: Enhancement
Component: security-libs
Sub-Component: java.security
Affected Version: 6,7

Priority: P2
Status: Resolved
Resolution: Fixed

Submitted: 2017-06-07
Updated: 2018-05-15
Resolved: 2017-11-05

Versions (Unresolved/Resolved/Fixed)

The Version table provides details related to the release that this issue/RFE will be addressed.

Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.

To download the current JDK release, click here.

JDK 7
7u171Fixed

Related Reports

Relates :	JDK-8171319 - keytool should print out warnings when reading or generating cert/cert req using weak algorithms
Relates :	JDK-8177569 - keytool should not warn if signature algorithm used in cacerts is weak
Relates :	JDK-8149411 - PKCS12KeyStore cannot extract AES Secret Keys
Relates :	JDK-8029659 - Keytool, print key algorithm of certificate or key entry
Relates :	JDK-7147336 - clarification on warning of keytool -printcrl
Relates :	JDK-8005408 - KeyStore API enhancements

Sub Tasks

JDK-8190943 :

Release Note: PKCS12 Support for Secret Keys and Trusted Certificates - Closed

Description

The PKCS12 implementation was enhanced in JDK 8 to support storing secret keys and trusted certificates. This capability should be backported to JDK 7 to support users migrating from JKS/JCEKS keystores on that JDK release.

Comments

Marking this bug Fixed in 7u181 (fix done as part of bugs listed in previous comment )

05-11-2017

Requires backporting part of JEP 166.

07-06-2017