Re: [JSch-users] Intermittent Failure
Status: Alpha
Brought to you by:
ymnk
From: Scott S. <spy...@ii...> - 2010-08-06 21:00:19
|
On Fri, Aug 6, 2010 at 11:55 AM, Scott Spyrison <spy...@ii...> wrote: > On Tue, Aug 3, 2010 at 10:06 PM, Atsuhiko Yamanaka <ym...@jc...> wrote: >> Nice to hear that. Now, you have a solution. >> So, may I ask you to try one more and last thing? >> JCE spec states that the default key size of KeyPairGenerator >> is 1024 bits, but its implementation on some Solaris machine(T2 processor?) >> may not be. Can you try the following patch? Hello Atsuhiko, Here are the results of my latest testing, both on Machine B. 1) Under JDK 6, with bouncycastle provider at position 1, the issue seems to be resolved. 2) Under JDK 6, with bouncycastle provider at any other position, the intermittent symptoms return. 3) Under JDK 5, with bouncycastle provider at position 1 or 2, nothing works. java.security.InvalidKeyException: Public key presented not for certificate signature. (exception below) 4) Under JDK 5, with bouncycastle provider at position 3 or greater, it works but the intermittent symptoms return. Under JDK 5, I replicate the same results with or without the Unlimited Strength JCE Policy Files. They didn't help or harm in my testing. I think I am probably at the end of my road with this issue. JDK 5 represents my current environment, and that is the one variable I can not change. JDK 6 represents my future environment, and I have much more flexibility there. I'll focus my energies on the future environment, and thereby resolve the issue by eliminating JDK 5 (fingers crossed). Many thanks for all your assistance. If you have any other patches or ideas, I'm happy to test them out for you if that would be helpful in any way. -- Best Regards, Scott Spyrison Exception in thread "main" java.lang.ExceptionInInitializerError at javax.crypto.Cipher.getInstance(DashoA12275) at com.jcraft.jsch.jce.AES256CTR.init(AES256CTR.java:56) at com.jcraft.jsch.Session.checkCipher(Session.java:1891) at com.jcraft.jsch.Session.checkCiphers(Session.java:1868) at com.jcraft.jsch.Session.send_kexinit(Session.java:553) at com.jcraft.jsch.Session.connect(Session.java:274) at com.jcraft.jsch.Session.connect(Session.java:150) at Tester.main(Tester.java:38) Caused by: java.lang.SecurityException: Cannot set up certs for trusted CAs at javax.crypto.SunJCE_b.<clinit>(DashoA12275) ... 8 more Caused by: java.security.PrivilegedActionException: java.security.InvalidKeyException: Public key presented not for certificate signature at java.security.AccessController.doPrivileged(Native Method) ... 9 more Caused by: java.security.InvalidKeyException: Public key presented not for certificate signature at org.bouncycastle.jce.provider.X509CertificateObject.checkSignature(Unknown Source) at org.bouncycastle.jce.provider.X509CertificateObject.verify(Unknown Source) at javax.crypto.SunJCE_b.c(DashoA12275) at javax.crypto.SunJCE_b.b(DashoA12275) at javax.crypto.SunJCE_q.run(DashoA12275) ... 10 more |