8168861: AnchorCertificates uses hardcoded password for cacerts keystore

Reviewed-by: ascarpino

8168861: AnchorCertificates uses hardcoded password for cacerts keystore
Reviewed-by: ascarpino
84244570 · robm · 4e28640c · 84244570
隐藏空白更改
内联并排

Showing with 1 addition and 1 deletion

src/share/classes/sun/security/util/AnchorCertificates.java src/share/classes/sun/security/util/AnchorCertificates.java +1 -1

未找到文件。
--- a/src/share/classes/sun/security/util/AnchorCertificates.java
+++ b/src/share/classes/sun/security/util/AnchorCertificates.java
@@ -56,7 +56,7 @@ public class AnchorCertificates {
                try {
                    cacerts = KeyStore.getInstance("JKS");
                    try (FileInputStream fis = new FileInputStream(f)) {
-                        cacerts.load(fis, "changeit".toCharArray());
+                        cacerts.load(fis, null);
                        certs = new HashSet<>();
                        Enumeration<String> list = cacerts.aliases();
                        String alias;