Skip site navigation (1)Skip section navigation (2) 
Date:      Thu, 10 Sep 2015 15:34:11 +0000
From:      bugzilla-noreply@freebsd.org
To:        java@FreeBSD.org
Subject:   maintainer-feedback requested: [Bug 203017] java/openjdk8: unlimited strength policy option not working
Message-ID:  <bug-203017-8522-UCK4A7ZnTL@https.bugs.freebsd.org/bugzilla/>
In-Reply-To: <bug-203017-8522@https.bugs.freebsd.org/bugzilla/>
References:  <bug-203017-8522@https.bugs.freebsd.org/bugzilla/>
index | next in thread | previous in thread | raw e-mail 

lapo@lapo.it has reassigned Bugzilla Automation <bugzilla@FreeBSD.org>'s
request for maintainer-feedback to java@FreeBSD.org:
Bug 203017: java/openjdk8: unlimited strength policy option not working
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=203017



--- Description ---
I didn't verify in depth yet, but it seems to me that openjdk8 unlimited crypto
option is not working correctly, as I have the following exception which I
don't have using openjdk7:

[http-nio-80-exec-6] ERROR 2015-09-10 16:44:16,764 Tile - Errore
com.andxor.pki.SigningException: Unable to add authentication data: key invalid
in message.
	at com.andxor.pki.CMSSigner.internalSign(CMSSigner.java:425)
	at com.andxor.pki.CMSSigner.sign(CMSSigner.java:430)
	at com.andxor.pki.CMSSigner.sign(CMSSigner.java:490)
	at com.andxor.pki.CMSSigner.predictP7SSize(CMSSigner.java:530)
	at com.andxor.pki.CMSSigner.predictP7SSize(CMSSigner.java:501)
	at com.andxor.pki.PDFSigner.sign(PDFSigner.java:438)
	at com.andxor.pki.PDFSigner.sign(PDFSigner.java:396)
	at com.andxor.pdf.web.Tile.doPost(Tile.java:529)
	at javax.servlet.http.HttpServlet.service(HttpServlet.java:644)
	at javax.servlet.http.HttpServlet.service(HttpServlet.java:725)
	at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFil
terChain.java:291)
	at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain
.java:206)
	at
org.apache.tomcat.websocket.server.WsFilter.doFilter(WsFilter.java:52)
	at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFil
terChain.java:239)
	at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain
.java:206)
	at com.andxor.pdf.web.CacheFilter.doFilter(CacheFilter.java:27)
	at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFil
terChain.java:239)
	at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain
.java:206)
	at
org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:
219)
	at
org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:
106)
	at
org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.ja
va:501)
	at
org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:142)
	at
org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:79)
	at
org.apache.catalina.valves.AbstractAccessLogValve.invoke(AbstractAccessLogValve
.java:610)
	at
org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:88
)
	at
org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:516)
	at
org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processo
r.java:1086)
	at
org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractPr
otocol.java:659)
	at
org.apache.coyote.http11.Http11NioProtocol$Http11ConnectionHandler.process(Http
11NioProtocol.java:223)
	at
org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1
558)
	at
org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run(NioEndpoint.java:151
5)
	at
java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142)
	at
java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617)
	at
org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:
61)
	at java.lang.Thread.run(Thread.java:745)
Caused by: com.andxor.pki.SigningException: Unable to add authentication data:
key invalid in message.
	at com.andxor.pki.CMSSigner.addAuthenticationData(CMSSigner.java:641)
	at com.andxor.pki.CMSSigner.internalSign(CMSSigner.java:413)
	... 34 more
Caused by: org.bouncycastle.cms.CMSException: key invalid in message.
	at org.bouncycastle.cms.CMSEnvelopedDataGenerator.generate(Unknown
Source)
	at org.bouncycastle.cms.CMSEnvelopedDataGenerator.generate(Unknown
Source)
	at com.andxor.pki.Ciphers.encrypt(Ciphers.java:38)
	at com.andxor.pki.CMSSigner.addAuthenticationData(CMSSigner.java:636)
	... 35 more
Caused by: java.security.InvalidKeyException: The key must be 256 bits
	at com.sun.crypto.provider.AESCipher.checkKeySize(AESCipher.java:158)
	at com.sun.crypto.provider.AESCipher.engineInit(AESCipher.java:346)
	at javax.crypto.Cipher.init(Cipher.java:1537)
	... 39 more
help

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?bug-203017-8522-UCK4A7ZnTL>