From a556619f93569d870a2119ed24f0df2b62c7f89e Mon Sep 17 00:00:00 2001
From: Anthony Scarpino <ascarpino@openjdk.org>
Date: Mon, 14 Nov 2016 10:13:38 -0800
Subject: [PATCH] 8168861: AnchorCertificates uses hardcoded password for
 cacerts keystore

Reviewed-by: vinnie, mullan
---
 .../share/classes/sun/security/util/AnchorCertificates.java     | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/jdk/src/java.base/share/classes/sun/security/util/AnchorCertificates.java b/jdk/src/java.base/share/classes/sun/security/util/AnchorCertificates.java
index 60edcc85d60..e260dd44ac0 100644
--- a/jdk/src/java.base/share/classes/sun/security/util/AnchorCertificates.java
+++ b/jdk/src/java.base/share/classes/sun/security/util/AnchorCertificates.java
@@ -58,7 +58,7 @@ public class AnchorCertificates {
                 try {
                     cacerts = KeyStore.getInstance("JKS");
                     try (FileInputStream fis = new FileInputStream(f)) {
-                        cacerts.load(fis, "changeit".toCharArray());
+                        cacerts.load(fis, null);
                         certs = new HashSet<>();
                         Enumeration<String> list = cacerts.aliases();
                         String alias;