JDK-8259733 : Release Note: Added -trustcacerts and -keystore Options to keytool -printcert and -printcrl Commands
- Type: Sub-task
- Component: security-libs
- Sub-Component: java.security
- Affected Version: 16
- Priority: P4
- Status: Resolved
- Resolution: Fixed
- Submitted: 2021-01-14
- Updated: 2021-02-16
- Resolved: 2021-01-19
The Version table provides details related to the release that this issue/RFE will be addressed.
Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.
To download the current JDK release, click here.
Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.
To download the current JDK release, click here.
| JDK 16 |
|---|
16Fixed  |
Description
The `-trustcacerts` and `-keystore` options have been added to the `-printcert` and `-printcrl` commands of the `keytool` utility. The `-printcert` command does not check for the weakness of a certificate's signature algorithm if it is a trusted certificate in the user's keystore or in the `cacerts` keystore. The `-printcrl` command verifies the CRL using a certificate from the user's keystore or the `cacerts` keystore, and will print out a warning if it cannot be verified.