[jboss-jira] [JBoss JIRA] (JGRP-2279) Error during ASYM_ENCRYPT-----exception occurred decrypting messagejavax.crypto.BadPaddingException: Given final block not properly padded

Bela Ban (JIRA) issues at jboss.org
Wed Jun 27 06:37:00 EDT 2018 

    [ https://issues.jboss.org/browse/JGRP-2279?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13597587#comment-13597587 ] 

Bela Ban commented on JGRP-2279:
--------------------------------

Works for me, on master. I start 3 instances as follows: {{draw -props ./asym-ssl2.xml -name A}} (then {{-name B}} and {{-name C}}). They successfully cluster:
{noformat}
[belasmac] /Users/bela$ probe.sh jmx=ASYM_ENCRYPT


#1 (606 bytes):
local_addr=B [ip=127.0.0.1:7601, version=4.0.13-SNAPSHOT (Schiener Berg), cluster=draw, 3 mbr(s)]
ASYM_ENCRYPT={after_creation_hook=null, asym_algorithm=RSA, asym_keylength=2048, change_key_on_leave=true, cipher_pool_size=8, encrypt_entire_message=false, ergonomics=true, id=59, key_map_max_size=20, key_server=false, key_server_address=A, key_server_interval=1000, level=WARN, min_time_between_key_requests=2000, provider=null, sign_msgs=false, stats=true, sym_algorithm=AES/ECB/PKCS5Padding, sym_keylength=128, use_adler=false, use_external_key_exchange=false, version=D9B8007ADF58DB36E9029F6F9B43A411}

#2 (605 bytes):
local_addr=A [ip=127.0.0.1:7600, version=4.0.13-SNAPSHOT (Schiener Berg), cluster=draw, 3 mbr(s)]
ASYM_ENCRYPT={after_creation_hook=null, asym_algorithm=RSA, asym_keylength=2048, change_key_on_leave=true, cipher_pool_size=8, encrypt_entire_message=false, ergonomics=true, id=59, key_map_max_size=20, key_server=true, key_server_address=A, key_server_interval=1000, level=WARN, min_time_between_key_requests=2000, provider=null, sign_msgs=false, stats=true, sym_algorithm=AES/ECB/PKCS5Padding, sym_keylength=128, use_adler=false, use_external_key_exchange=false, version=D9B8007ADF58DB36E9029F6F9B43A411}

#3 (606 bytes):
local_addr=C [ip=127.0.0.1:7602, version=4.0.13-SNAPSHOT (Schiener Berg), cluster=draw, 3 mbr(s)]
ASYM_ENCRYPT={after_creation_hook=null, asym_algorithm=RSA, asym_keylength=2048, change_key_on_leave=true, cipher_pool_size=8, encrypt_entire_message=false, ergonomics=true, id=59, key_map_max_size=20, key_server=false, key_server_address=A, key_server_interval=1000, level=WARN, min_time_between_key_requests=2000, provider=null, sign_msgs=false, stats=true, sym_algorithm=AES/ECB/PKCS5Padding, sym_keylength=128, use_adler=false, use_external_key_exchange=false, version=D9B8007ADF58DB36E9029F6F9B43A411}

3 responses (3 matches, 0 non matches)
{noformat}

> Error during ASYM_ENCRYPT-----exception occurred decrypting messagejavax.crypto.BadPaddingException: Given final block not properly padded
> ------------------------------------------------------------------------------------------------------------------------------------------
>
>                 Key: JGRP-2279
>                 URL: https://issues.jboss.org/browse/JGRP-2279
>             Project: JGroups
>          Issue Type: Bug
>    Affects Versions: 4.0.1
>         Environment: OS:Red Hat
> JDK:1.8
>            Reporter: George Jiang
>            Assignee: Bela Ban
>            Priority: Critical
>             Fix For: 4.0.13
>
>         Attachments: asym-ssl2.xml
>
>
> *asym parameters:*
> <ASYM_ENCRYPT encrypt_entire_message="true"
>                   sign_msgs="true"
>                   sym_keylength="128"
>                   sym_algorithm="AES/ECB/PKCS5Padding"
>                   asym_keylength="2048"
>                   asym_algorithm="RSA"
>                   change_key_on_leave="true"/>
> *Throws the following error:*
> 2018-05-23T03:11:53,891 +2903450778 [jgroups--12467,-1491537117,1] ERROR org.jgroups.protocols.ASYM_ENCRYPT - 1: failed decrypting message from 2 (offset=0, length=1136, buf.length=1136): javax.crypto.BadPaddingException: Given final block not properly padded, headers are ASYM_ENCRYPT: [ENCRYPT version=16 bytes], TP: [cluster_name=-1491537117]
> 2018-05-23T03:11:53,893 +2903450780 [jgroups--12467,-1491537117,1] TRACE org.jgroups.protocols.TCP_NIO2 - 1: received message batch of 1 messages from 2
> 2018-05-23T03:11:53,895 +2903450782 [jgroups--12467,-1491537117,1] DEBUG org.jgroups.protocols.ASYM_ENCRYPT - 1: received secret key from keyserver 2
> 2018-05-23T03:11:53,895 +2903450782 [jgroups--12467,-1491537117,1] DEBUG org.jgroups.protocols.ASYM_ENCRYPT - 1: created 8 symmetric ciphers with secret key (16 bytes)
> 2018-05-23T03:11:54,369 +2903451256 [jgroups--12467,-1491537117,1] TRACE org.jgroups.protocols.TCP_NIO2 - 1: received [dst:***
> 2018-05-23T03:11:54,369 +2903451256 [jgroups--12467,-1491537117,1] WARN  org.jgroups.protocols.ASYM_ENCRYPT - 1: exception occurred decrypting message
> javax.crypto.BadPaddingException: Given final block not properly padded
> 	at com.sun.crypto.provider.CipherCore.doFinal(CipherCore.java:991) ~[sunjce_provider.jar:1.8.0_162]
> 	at com.sun.crypto.provider.CipherCore.doFinal(CipherCore.java:847) ~[sunjce_provider.jar:1.8.0_162]
> 	at com.sun.crypto.provider.AESCipher.engineDoFinal(AESCipher.java:446) ~[sunjce_provider.jar:1.8.0_162]
> 	at javax.crypto.Cipher.doFinal(Cipher.java:2222) ~[?:1.8.0_171]
> 	at org.jgroups.protocols.Encrypt.code(Encrypt.java:365) ~[jgroups-4.0.1.Final.jar:4.0.1.Final]
> 	at org.jgroups.protocols.Encrypt.decryptChecksum(Encrypt.java:387) ~[jgroups-4.0.1.Final.jar:4.0.1.Final]
> 	at org.jgroups.protocols.Encrypt._decrypt(Encrypt.java:299) ~[jgroups-4.0.1.Final.jar:4.0.1.Final]
> 	at org.jgroups.protocols.Encrypt.decryptMessage(Encrypt.java:283) ~[jgroups-4.0.1.Final.jar:4.0.1.Final]
> 	at org.jgroups.protocols.Encrypt.handleEncryptedMessage(Encrypt.java:242) ~[jgroups-4.0.1.Final.jar:4.0.1.Final]
> 	at org.jgroups.protocols.Encrypt.handleUpMessage(Encrypt.java:229) ~[jgroups-4.0.1.Final.jar:4.0.1.Final]
> 	at org.jgroups.protocols.Encrypt.up(Encrypt.java:155) [jgroups-4.0.1.Final.jar:4.0.1.Final]
> 	at org.jgroups.protocols.ASYM_ENCRYPT.up(ASYM_ENCRYPT.java:143) [jgroups-4.0.1.Final.jar:4.0.1.Final]
> 	at org.jgroups.protocols.VERIFY_SUSPECT.up(VERIFY_SUSPECT.java:129) [jgroups-4.0.1.Final.jar:4.0.1.Final]
> 	at org.jgroups.protocols.FD_ALL.up(FD_ALL.java:197) [jgroups-4.0.1.Final.jar:4.0.1.Final]
> 	at org.jgroups.protocols.FD_SOCK.up(FD_SOCK.java:252) [jgroups-4.0.1.Final.jar:4.0.1.Final]
> 	at org.jgroups.protocols.MERGE3.up(MERGE3.java:277) [jgroups-4.0.1.Final.jar:4.0.1.Final]
> 	at org.jgroups.protocols.Discovery.up(Discovery.java:262) [jgroups-4.0.1.Final.jar:4.0.1.Final]
> 	at org.jgroups.protocols.TP.passMessageUp(TP.java:1203) [jgroups-4.0.1.Final.jar:4.0.1.Final]
> 	at org.jgroups.util.SubmitToThreadPool$SingleMessageHandler.run(SubmitToThreadPool.java:87) [jgroups-4.0.1.Final.jar:4.0.1.Final]
> 	at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1149) [?:1.8.0_162]
> 	at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:624) [?:1.8.0_162]
> 	at java.lang.Thread.run(Thread.java:748) [?:1.8.0_162]



--
This message was sent by Atlassian JIRA
(v7.5.0#75005)

More information about the jboss-jira mailing list