--- a/src/java.base/share/classes/sun/security/tools/keytool/Main.java Mon Nov 26 15:06:53 2018 -0800
+++ b/src/java.base/share/classes/sun/security/tools/keytool/Main.java Tue Nov 27 08:51:20 2018 +0800
@@ -1328,28 +1328,39 @@
if (f.exists()) {
// Probe for real type. A JKS can be loaded as PKCS12 because
// DualFormat support, vice versa.
- keyStore = KeyStore.getInstance(f, pass);
- String realType = keyStore.getType();
- if (realType.equalsIgnoreCase("JKS")
- || realType.equalsIgnoreCase("JCEKS")) {
- boolean allCerts = true;
- for (String a : Collections.list(keyStore.aliases())) {
- if (!keyStore.entryInstanceOf(
- a, TrustedCertificateEntry.class)) {
- allCerts = false;
- break;
+ String realType = storetype;
+ try {
+ keyStore = KeyStore.getInstance(f, pass);
+ realType = keyStore.getType();
+ if (realType.equalsIgnoreCase("JKS")
+ || realType.equalsIgnoreCase("JCEKS")) {
+ boolean allCerts = true;
+ for (String a : Collections.list(keyStore.aliases())) {
+ if (!keyStore.entryInstanceOf(
+ a, TrustedCertificateEntry.class)) {
+ allCerts = false;
+ break;
+ }
+ }
+ // Don't warn for "cacerts" style keystore.
+ if (!allCerts) {
+ weakWarnings.add(String.format(
+ rb.getString("jks.storetype.warning"),
+ realType, ksfname));
}
}
- // Don't warn for "cacerts" style keystore.
- if (!allCerts) {
- weakWarnings.add(String.format(
- rb.getString("jks.storetype.warning"),
- realType, ksfname));
- }
+ } catch (KeyStoreException e) {
+ // Probing not supported, therefore cannot be JKS or JCEKS.
+ // Skip the legacy type warning at all.
}
if (inplaceImport) {
- String realSourceStoreType = KeyStore.getInstance(
- new File(inplaceBackupName), srcstorePass).getType();
+ String realSourceStoreType = srcstoretype;
+ try {
+ realSourceStoreType = KeyStore.getInstance(
+ new File(inplaceBackupName), srcstorePass).getType();
+ } catch (KeyStoreException e) {
+ // Probing not supported. Assuming srcstoretype.
+ }
String format =
realType.equalsIgnoreCase(realSourceStoreType) ?
rb.getString("backup.keystore.warning") :