Re: [JSch-users] Intermittent Failure
Status: Alpha
Brought to you by:
ymnk
Menu
▾
▴
Re: [JSch-users] Intermittent Failure
|
From: Scott S. <spy...@ii...> - 2010-08-06 21:00:19
|
On Fri, Aug 6, 2010 at 11:55 AM, Scott Spyrison <spy...@ii...> wrote:
> On Tue, Aug 3, 2010 at 10:06 PM, Atsuhiko Yamanaka <ym...@jc...> wrote:
>> Nice to hear that. Now, you have a solution.
>> So, may I ask you to try one more and last thing?
>> JCE spec states that the default key size of KeyPairGenerator
>> is 1024 bits, but its implementation on some Solaris machine(T2 processor?)
>> may not be. Can you try the following patch?
Hello Atsuhiko,
Here are the results of my latest testing, both on Machine B.
1) Under JDK 6, with bouncycastle provider at position 1, the issue
seems to be resolved.
2) Under JDK 6, with bouncycastle provider at any other position, the
intermittent symptoms return.
3) Under JDK 5, with bouncycastle provider at position 1 or 2, nothing
works. java.security.InvalidKeyException: Public key presented not
for certificate signature. (exception below)
4) Under JDK 5, with bouncycastle provider at position 3 or greater,
it works but the intermittent symptoms return.
Under JDK 5, I replicate the same results with or without the
Unlimited Strength JCE Policy Files. They didn't help or harm in my
testing.
I think I am probably at the end of my road with this issue. JDK 5
represents my current environment, and that is the one variable I can
not change. JDK 6 represents my future environment, and I have much
more flexibility there. I'll focus my energies on the future
environment, and thereby resolve the issue by eliminating JDK 5
(fingers crossed).
Many thanks for all your assistance. If you have any other patches or
ideas, I'm happy to test them out for you if that would be helpful in
any way.
--
Best Regards,
Scott Spyrison
Exception in thread "main" java.lang.ExceptionInInitializerError
at javax.crypto.Cipher.getInstance(DashoA12275)
at com.jcraft.jsch.jce.AES256CTR.init(AES256CTR.java:56)
at com.jcraft.jsch.Session.checkCipher(Session.java:1891)
at com.jcraft.jsch.Session.checkCiphers(Session.java:1868)
at com.jcraft.jsch.Session.send_kexinit(Session.java:553)
at com.jcraft.jsch.Session.connect(Session.java:274)
at com.jcraft.jsch.Session.connect(Session.java:150)
at Tester.main(Tester.java:38)
Caused by: java.lang.SecurityException: Cannot set up certs for trusted CAs
at javax.crypto.SunJCE_b.<clinit>(DashoA12275)
... 8 more
Caused by: java.security.PrivilegedActionException:
java.security.InvalidKeyException: Public key presented not for
certificate signature
at java.security.AccessController.doPrivileged(Native Method)
... 9 more
Caused by: java.security.InvalidKeyException: Public key presented not
for certificate signature
at org.bouncycastle.jce.provider.X509CertificateObject.checkSignature(Unknown
Source)
at org.bouncycastle.jce.provider.X509CertificateObject.verify(Unknown
Source)
at javax.crypto.SunJCE_b.c(DashoA12275)
at javax.crypto.SunJCE_b.b(DashoA12275)
at javax.crypto.SunJCE_q.run(DashoA12275)
... 10 more
|