From owner-freebsd-java@freebsd.org Thu Sep 10 15:34:12 2015 Return-Path: Delivered-To: freebsd-java@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 41DE8A00B39 for ; Thu, 10 Sep 2015 15:34:12 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from mailman.ysv.freebsd.org (mailman.ysv.freebsd.org [IPv6:2001:1900:2254:206a::50:5]) by mx1.freebsd.org (Postfix) with ESMTP id 266251E64 for ; Thu, 10 Sep 2015 15:34:12 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: by mailman.ysv.freebsd.org (Postfix) id 25B65A00B37; Thu, 10 Sep 2015 15:34:12 +0000 (UTC) Delivered-To: java@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 25555A00B35 for ; Thu, 10 Sep 2015 15:34:12 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from kenobi.freebsd.org (kenobi.freebsd.org [IPv6:2001:1900:2254:206a::16:76]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 0B0361E63 for ; Thu, 10 Sep 2015 15:34:12 +0000 (UTC) (envelope-from bugzilla-noreply@freebsd.org) Received: from bugs.freebsd.org ([127.0.1.118]) by kenobi.freebsd.org (8.15.2/8.15.2) with ESMTP id t8AFYBfI084157 for ; Thu, 10 Sep 2015 15:34:11 GMT (envelope-from bugzilla-noreply@freebsd.org) From: bugzilla-noreply@freebsd.org To: java@FreeBSD.org Subject: [Bug 203017] java/openjdk8: unlimited strength policy option not working Date: Thu, 10 Sep 2015 15:34:11 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: new X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Ports & Packages X-Bugzilla-Component: Individual Port(s) X-Bugzilla-Version: Latest X-Bugzilla-Keywords: X-Bugzilla-Severity: Affects Some People X-Bugzilla-Who: lapo@lapo.it X-Bugzilla-Status: New X-Bugzilla-Priority: --- X-Bugzilla-Assigned-To: java@FreeBSD.org X-Bugzilla-Target-Milestone: --- X-Bugzilla-Flags: maintainer-feedback? X-Bugzilla-Changed-Fields: bug_id short_desc product version rep_platform op_sys bug_status bug_severity priority component assigned_to reporter flagtypes.name Message-ID: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: 7bit X-Bugzilla-URL: https://bugs.freebsd.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 X-BeenThere: freebsd-java@freebsd.org X-Mailman-Version: 2.1.20 Precedence: list List-Id: Porting Java to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 10 Sep 2015 15:34:12 -0000 https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=203017 Bug ID: 203017 Summary: java/openjdk8: unlimited strength policy option not working Product: Ports & Packages Version: Latest Hardware: amd64 OS: Any Status: New Severity: Affects Some People Priority: --- Component: Individual Port(s) Assignee: java@FreeBSD.org Reporter: lapo@lapo.it Flags: maintainer-feedback?(java@FreeBSD.org) Assignee: java@FreeBSD.org I didn't verify in depth yet, but it seems to me that openjdk8 unlimited crypto option is not working correctly, as I have the following exception which I don't have using openjdk7: [http-nio-80-exec-6] ERROR 2015-09-10 16:44:16,764 Tile - Errore com.andxor.pki.SigningException: Unable to add authentication data: key invalid in message. at com.andxor.pki.CMSSigner.internalSign(CMSSigner.java:425) at com.andxor.pki.CMSSigner.sign(CMSSigner.java:430) at com.andxor.pki.CMSSigner.sign(CMSSigner.java:490) at com.andxor.pki.CMSSigner.predictP7SSize(CMSSigner.java:530) at com.andxor.pki.CMSSigner.predictP7SSize(CMSSigner.java:501) at com.andxor.pki.PDFSigner.sign(PDFSigner.java:438) at com.andxor.pki.PDFSigner.sign(PDFSigner.java:396) at com.andxor.pdf.web.Tile.doPost(Tile.java:529) at javax.servlet.http.HttpServlet.service(HttpServlet.java:644) at javax.servlet.http.HttpServlet.service(HttpServlet.java:725) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:291) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) at org.apache.tomcat.websocket.server.WsFilter.doFilter(WsFilter.java:52) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:239) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) at com.andxor.pdf.web.CacheFilter.doFilter(CacheFilter.java:27) at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:239) at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206) at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:219) at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:106) at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:501) at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:142) at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:79) at org.apache.catalina.valves.AbstractAccessLogValve.invoke(AbstractAccessLogValve.java:610) at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:88) at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:516) at org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1086) at org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:659) at org.apache.coyote.http11.Http11NioProtocol$Http11ConnectionHandler.process(Http11NioProtocol.java:223) at org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.doRun(NioEndpoint.java:1558) at org.apache.tomcat.util.net.NioEndpoint$SocketProcessor.run(NioEndpoint.java:1515) at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142) at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617) at org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61) at java.lang.Thread.run(Thread.java:745) Caused by: com.andxor.pki.SigningException: Unable to add authentication data: key invalid in message. at com.andxor.pki.CMSSigner.addAuthenticationData(CMSSigner.java:641) at com.andxor.pki.CMSSigner.internalSign(CMSSigner.java:413) ... 34 more Caused by: org.bouncycastle.cms.CMSException: key invalid in message. at org.bouncycastle.cms.CMSEnvelopedDataGenerator.generate(Unknown Source) at org.bouncycastle.cms.CMSEnvelopedDataGenerator.generate(Unknown Source) at com.andxor.pki.Ciphers.encrypt(Ciphers.java:38) at com.andxor.pki.CMSSigner.addAuthenticationData(CMSSigner.java:636) ... 35 more Caused by: java.security.InvalidKeyException: The key must be 256 bits at com.sun.crypto.provider.AESCipher.checkKeySize(AESCipher.java:158) at com.sun.crypto.provider.AESCipher.engineInit(AESCipher.java:346) at javax.crypto.Cipher.init(Cipher.java:1537) ... 39 more -- You are receiving this mail because: You are the assignee for the bug.