[jboss-jira] [JBoss JIRA] (ELY-1494) SecurityException: JCE cannot authenticate the provider WildFlyElytron
Jan Kalina (JIRA)
issues at jboss.org
Mon Jan 22 11:40:00 EST 2018
[ https://issues.jboss.org/browse/ELY-1494?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13522084#comment-13522084 ]
Jan Kalina edited comment on ELY-1494 at 1/22/18 11:39 AM:
-----------------------------------------------------------
It would be necessary to prepare similar workaround like for IBM and Oracle already exists. (ELY-926)
However, this workaround is not already needed for Oracle in latest versions (of JKD 8 and JDK 9 too), and it si not sufficient for IBM JDK (where the custom data storing in PKCS12 is not possible at all).
As it looks this workaround is a relic of the past, I dont see reasonable to port it to another JDK and I will remove it at all.
was (Author: honza889):
It would be necessary to prepare similar workaround like for IBM and Oracle already exists.
However, this workaround is not already needed for Oracle in latest versions (of JKD 8 and JDK 9 too), and it si not sufficient for IBM JDK (where the custom data storing in PKCS12 is not possible at all).
As it looks this workaround is a relic of the past, I dont see reasonable to port it to another JDK and I will remove it at all.
> SecurityException: JCE cannot authenticate the provider WildFlyElytron
> ----------------------------------------------------------------------
>
> Key: ELY-1494
> URL: https://issues.jboss.org/browse/ELY-1494
> Project: WildFly Elytron
> Issue Type: Bug
> Components: Testsuite
> Affects Versions: 1.2.0.Beta11
> Reporter: Martin Choma
> Assignee: Jan Kalina
> Labels: hp-ux, tests
>
> This happens on HP-UX in KeyStoreCredentialStoreTest. It probably related to ELY-1295 fix. Fix have to take HP-UX JDK in account as well.
>
> Btw. Isn't there more elegant way how to enable tests for PKCS12. Necessary hack seems to be problematic.
> {noformat}
> java.lang.SecurityException: JCE cannot authenticate the provider WildFlyElytron
> at javax.crypto.JceSecurity.getInstance(JceSecurity.java:118)
> at javax.crypto.SecretKeyFactory.getInstance(SecretKeyFactory.java:244)
> at org.wildfly.security.credential.store.impl.KeyStoreCredentialStoreTest.installWildFlyElytronProvider(KeyStoreCredentialStoreTest.java:117)
> Caused by: java.lang.SecurityException: Cannot verify jar:file:/hudson_workspace/workspace/wildfly-elytron-unit-tests/8cc93d85/wildfly-elytron/target/classes/!/
> at javax.crypto.JarVerifier.verifySingleJar(JarVerifier.java:448)
> at javax.crypto.JarVerifier.verifyJars(JarVerifier.java:363)
> at javax.crypto.JarVerifier.verify(JarVerifier.java:289)
> at javax.crypto.JceSecurity.verifyProviderJar(JceSecurity.java:164)
> at javax.crypto.JceSecurity.getVerificationResult(JceSecurity.java:190)
> at javax.crypto.JceSecurity.getInstance(JceSecurity.java:114)
> ... 2 more
> Caused by: java.security.PrivilegedActionException: java.io.FileNotFoundException: /hudson_workspace/workspace/wildfly-elytron-unit-tests/8cc93d85/wildfly-elytron/target/classes (Is a directory)
> at java.security.AccessController.doPrivileged(Native Method)
> at javax.crypto.JarVerifier.verifySingleJar(JarVerifier.java:426)
> ... 7 more
> Caused by: java.io.FileNotFoundException: /hudson_workspace/workspace/wildfly-elytron-unit-tests/8cc93d85/wildfly-elytron/target/classes (Is a directory)
> at java.util.zip.ZipFile.open(Native Method)
> at java.util.zip.ZipFile.<init>(ZipFile.java:225)
> at java.util.zip.ZipFile.<init>(ZipFile.java:155)
> at java.util.jar.JarFile.<init>(JarFile.java:166)
> at java.util.jar.JarFile.<init>(JarFile.java:103)
> at javax.crypto.JarVerifier$2.run(JarVerifier.java:440)
> at javax.crypto.JarVerifier$2.run(JarVerifier.java:427)
> ... 9 more
> {noformat}
> [1] https://jenkins.hosts.mwqe.eng.bos.redhat.com/hudson/view/EAP7/view/EAP7-Security/view/Wildfly-Elytron/job/wildfly-elytron-unit-tests/40/jdk=jdk1.8_hpux,label=eap-sustaining&&hpux11v3/testReport/
--
This message was sent by Atlassian JIRA
(v7.5.0#75005)
More information about the jboss-jira
mailing list