openjdk team mailing list archive

Thread
Date

[Bug 556549] [NEW] PCKS11 security provider not working

To: openjdk@xxxxxxxxxxxxxxxxxxx
From: Matthias Klose <matthias.klose@xxxxxxxxxxxxx>
Date: Tue, 06 Apr 2010 14:39:18 -0000
Reply-to: Bug 556549 <556549@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

Public bug reported:

should work when configured with --enable-nss, however the tests never
did succeed:

FAILED: com/sun/crypto/provider/KeyFactory/TestProviderLeak.java
FAILED: java/security/KeyPairGenerator/Failover.java
FAILED: sun/security/pkcs11/ec/ReadCertificates.java
FAILED: sun/security/pkcs11/ec/ReadPKCS12.java
FAILED: sun/security/pkcs11/ec/TestCurves.java
FAILED: sun/security/pkcs11/ec/TestECDH.java
FAILED: sun/security/pkcs11/ec/TestECDSA.java
FAILED: sun/security/pkcs11/ec/TestECGenSpec.java
FAILED: sun/security/pkcs11/ec/TestKeyFactory.java
FAILED: sun/security/pkcs11/sslecc/ClientJSSEServerJSSE.java
FAILED: sun/security/pkcs11/tls/TestPRF.java
FAILED: sun/security/ssl/javax/net/ssl/NewAPIs/SSLEngine/TestAllSuites.java
FAILED: sun/security/ssl/sanity/ciphersuites/CheckCipherSuites.java
FAILED: sun/security/ssl/sanity/interop/ClientJSSEServerJSSE.java

just turning off security.provider.9 in java.security lets the sun/security/ssl/ succeed.
however there might be pkcs11 certificates in the cacerts file, which could cause upgrade errors when the pkcs11 support is removed/disabled.

** Affects: openjdk-6 (Ubuntu)
     Importance: High
         Status: Confirmed

-- 
PCKS11 security provider not working
https://bugs.launchpad.net/bugs/556549
You received this bug notification because you are a member of OpenJDK,
which is subscribed to openjdk-6 in ubuntu.

Status in “openjdk-6” package in Ubuntu: Confirmed

Bug description:
should work when configured with --enable-nss, however the tests never did succeed:

FAILED: com/sun/crypto/provider/KeyFactory/TestProviderLeak.java
FAILED: java/security/KeyPairGenerator/Failover.java
FAILED: sun/security/pkcs11/ec/ReadCertificates.java
FAILED: sun/security/pkcs11/ec/ReadPKCS12.java
FAILED: sun/security/pkcs11/ec/TestCurves.java
FAILED: sun/security/pkcs11/ec/TestECDH.java
FAILED: sun/security/pkcs11/ec/TestECDSA.java
FAILED: sun/security/pkcs11/ec/TestECGenSpec.java
FAILED: sun/security/pkcs11/ec/TestKeyFactory.java
FAILED: sun/security/pkcs11/sslecc/ClientJSSEServerJSSE.java
FAILED: sun/security/pkcs11/tls/TestPRF.java
FAILED: sun/security/ssl/javax/net/ssl/NewAPIs/SSLEngine/TestAllSuites.java
FAILED: sun/security/ssl/sanity/ciphersuites/CheckCipherSuites.java
FAILED: sun/security/ssl/sanity/interop/ClientJSSEServerJSSE.java

just turning off security.provider.9 in java.security lets the sun/security/ssl/ succeed.
however there might be pkcs11 certificates in the cacerts file, which could cause upgrade errors when the pkcs11 support is removed/disabled.

Follow ups

[Bug 556549] Re: PCKS11 security provider not working
From: Bug Watch Updater, 2012-03-21
[Bug 556549] Re: PCKS11 security provider not working
From: Launchpad Bug Tracker, 2011-04-08
[Bug 556549] Re: PCKS11 security provider not working
From: Bug Watch Updater, 2011-02-04
[Bug 556549] Re: PCKS11 security provider not working
From: Brian Kelley, 2010-05-28
[Bug 556549] Re: PCKS11 security provider not working
From: Launchpad Bug Tracker, 2010-04-14
[Bug 556549] Re: PCKS11 security provider not working
From: Bug Watch Updater, 2010-04-07
[Bug 556549] Re: PCKS11 security provider not working
From: Bug Watch Updater, 2010-04-06
[Bug 556549] Re: PCKS11 security provider not working
From: Matthias Klose, 2010-04-06
[Bug 556549] [NEW] PCKS11 security provider not working
From: Matthias Klose, 2010-04-06
[Bug 556549] Re: PCKS11 security provider not working
From: Matthias Klose, 2010-04-06

References

[Bug 556549] [NEW] PCKS11 security provider not working
From: Matthias Klose, 2010-04-06