[jboss-jira] [JBoss JIRA] (WFLY-5593) VaultTool does not support KeySize != 128

Hynek Švábek (JIRA) issues at jboss.org
Wed Apr 27 04:44:00 EDT 2016 

    [ https://issues.jboss.org/browse/WFLY-5593?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13196451#comment-13196451 ] 

Hynek Švábek edited comment on WFLY-5593 at 4/27/16 4:43 AM:
-------------------------------------------------------------

Hi,

It works for me for AES 256. But you need OpenJDK or others JDK with Java Cryptography Extension (JCE).

Note:
You must use same value for *"-storepass PASSWORD -keypass PASSWORD"*.



was (Author: hsvabek):
Hi,

It works for me for AES 256. But you need OpenJDK or others JDK with Java Cryptography Extension (JCE).

Hi,

It works for me for AES 256. But you need OpenJDK or others JDK with Java Cryptography Extension (JCE).

Note:
You must use same value for *"-storepass PASSWORD -keypass PASSWORD"*.


> VaultTool does not support KeySize != 128
> -----------------------------------------
>
>                 Key: WFLY-5593
>                 URL: https://issues.jboss.org/browse/WFLY-5593
>             Project: WildFly
>          Issue Type: Bug
>          Components: Security
>    Affects Versions: 10.0.0.CR4
>            Reporter: Andreas Weise
>            Assignee: Darran Lofthouse
>            Priority: Minor
>
> Vault tool (vault.sh) returns exception PBOX00137: Security Vault does not contain SecretKey entry under alias (vault) when using a JCEKS with AES 256.
> It seems only 128 Bit Key Length is supported by the Vault Tool, which is default in [org/picketbox/plugins/vault/PicketBoxSecurityVault.java|https://github.com/picketbox/bare-vault/blob/master/src/main/java/org/picketbox/plugins/vault/PicketBoxSecurityVault.java]
> Key length could be parametrized in PicketBoxSecurityVault, but vault tool does not support this, more specifically [org/jboss/as/security/vault/VaultSession.getVaultOptionsMap()|https://github.com/wildfly/wildfly/blob/master/security/subsystem/src/main/java/org/jboss/as/security/vault/VaultSession.java]



--
This message was sent by Atlassian JIRA
(v6.4.11#64026)

More information about the jboss-jira mailing list