[jboss-jira] [JBoss JIRA] (WFLY-5593) VaultTool does not support KeySize != 128
Hynek Švábek (JIRA)
issues at jboss.org
Mon Apr 25 07:00:05 EDT 2016
[ https://issues.jboss.org/browse/WFLY-5593?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13196451#comment-13196451 ]
Hynek Švábek commented on WFLY-5593:
------------------------------------
Hi,
It works for me. But you need OpenJDK or others JDK with Java Cryptography Extension (JCE).
I noticed one problem there:
I have to use same value for params *"-storepass PASSWORD -keypass PASSWORD"* otherwise I get same exception as above: PBOX00137: Security Vault does not contain SecretKey entry under alias (vault)
> VaultTool does not support KeySize != 128
> -----------------------------------------
>
> Key: WFLY-5593
> URL: https://issues.jboss.org/browse/WFLY-5593
> Project: WildFly
> Issue Type: Bug
> Components: Security
> Affects Versions: 10.0.0.CR4
> Reporter: Andreas Weise
> Assignee: Darran Lofthouse
> Priority: Minor
>
> Vault tool (vault.sh) returns exception PBOX00137: Security Vault does not contain SecretKey entry under alias (vault) when using a JCEKS with AES 256.
> It seems only 128 Bit Key Length is supported by the Vault Tool, which is default in [org/picketbox/plugins/vault/PicketBoxSecurityVault.java|https://github.com/picketbox/bare-vault/blob/master/src/main/java/org/picketbox/plugins/vault/PicketBoxSecurityVault.java]
> Key length could be parametrized in PicketBoxSecurityVault, but vault tool does not support this, more specifically [org/jboss/as/security/vault/VaultSession.getVaultOptionsMap()|https://github.com/wildfly/wildfly/blob/master/security/subsystem/src/main/java/org/jboss/as/security/vault/VaultSession.java]
--
This message was sent by Atlassian JIRA
(v6.4.11#64026)
More information about the jboss-jira
mailing list