#96 OSX GeneralSSLEngine problem

[Will Sheldon]

After updating java to latest version using OSX Software Update (Java for Mac OS X 10.6 Update1) ALS agent no longer syncs.
Error as per attached image (sorry couldn't get a text version)

Confirmed as issue on leopard and snow leopard.

W.

[Will Sheldon]

agent error debug screenshot

[Will Sheldon]

According to http://discussions.apple.com/thread.jspa?threadID=2261748&tstart=1
"Apple changed the keystore password that protects the "cacerts" file on Mac OS X"
It seems to have changed from "changeit" to "changeme".

I changed the value in the following files, and it works now:

adito/boot/src/com/adito/boot/SSLTrustManager.java:38: String password = "changeit";
maverick-ssl/src1.5/com/maverick/ssl/SSLTransportTrustManager.java:30: String password = "changeit";
maverick-ssl/build/tmp/com/maverick/ssl/SSLTransportTrustManager.java:30: String password = "changeit"
maverick-ssl/build/src/com/maverick/ssl/SSLTransportTrustManager.java:30: String password = "changeit"

[Will Sheldon]

I'm not a java expert, is it possible to use a different password dependant on version? I don't want to update the svn if it's going to break compatibility on older versions.

This is going to cause big problems, as it essentially breaks OS X support.
I know we have been considering a new release, perhaps this issue a suitable catalyst?

W

[Will Sheldon]

Hmm. After further investigation, it would appear (http://lists.apple.com/archives/java-dev/2009/Dec/msg00105.html) that Apple is going to change it back.

In the mean time a workaround is to change the keystore password back manually using the command:

sudo keytool -storepasswd -new changeit -keystore /Library/Java/Home/lib/security/cacerts -storepass changeme

W