openjdk team mailing list archive

Thread
Date

[Bug 1926634] Re: openjdk 1.8.0_292 fails with unrecognized algorithm name: PBEWithSHA1AndDESede

To: openjdk@xxxxxxxxxxxxxxxxxxx
From: Thorsten Glaser <1926634@xxxxxxxxxxxxxxxxxx>
Date: Mon, 22 Jan 2024 04:48:16 -0000
Reply-to: Bug 1926634 <1926634@xxxxxxxxxxxxxxxxxx>
Sender: noreply@xxxxxxxxxxxxx

upstream reported as fixed in 8u302+

** Changed in: openjdk-8 (Ubuntu)
       Status: New => Fix Released

-- 
You received this bug notification because you are a member of OpenJDK,
which is subscribed to openjdk-8 in Ubuntu.
https://bugs.launchpad.net/bugs/1926634

Title:
  openjdk 1.8.0_292 fails with unrecognized algorithm name:
  PBEWithSHA1AndDESede

Status in openjdk-8 package in Ubuntu:
  Fix Released

Bug description:
  After upgrading my Ubuntu 20.04 systems to the latest updates, which
  installed openjdk-8-jdk-headless version 1.8.0_292, I'm getting
  exceptions thrown in a variety of my code:

  Caused by: java.security.KeyStoreException: Key protection  algorithm not found: java.security.UnrecoverableKeyException: Encrypt Private Key failed: unrecognized algorithm name: PBEWithSHA1AndDESede
  	at sun.security.pkcs12.PKCS12KeyStore.setKeyEntry(PKCS12KeyStore.java:677)
  	at sun.security.pkcs12.PKCS12KeyStore.engineSetKeyEntry(PKCS12KeyStore.java:577)
  	at java.security.KeyStore.setKeyEntry(KeyStore.java:1140)
  	... 43 more
  Caused by: java.security.UnrecoverableKeyException: Encrypt Private Key failed: unrecognized algorithm name: PBEWithSHA1AndDESede
  	at sun.security.pkcs12.PKCS12KeyStore.encryptPrivateKey(PKCS12KeyStore.java:921)
  	at sun.security.pkcs12.PKCS12KeyStore.setKeyEntry(PKCS12KeyStore.java:614)
  	... 45 more
  Caused by: java.security.NoSuchAlgorithmException: unrecognized algorithm name: PBEWithSHA1AndDESede
  	at sun.security.x509.AlgorithmId.get(AlgorithmId.java:448)
  	at sun.security.pkcs12.PKCS12KeyStore.mapPBEAlgorithmToOID(PKCS12KeyStore.java:938)
  	at sun.security.pkcs12.PKCS12KeyStore.encryptPrivateKey(PKCS12KeyStore.java:895)
  	... 46 more

  This code worked fine with all previous versions.

  It looks like this is a bug in this version of OpenJDK; see
  https://bugs.openjdk.java.net/browse/JDK-8266261 and related bugs
  reported to OpenJDK.  There are at least 3 bugs already filed against
  OpenJDK about this.

  Can/should we downgrade openjdk-8 from this version until upstream can
  fix this bug?

  Info:

  $ apt-cache policy openjdk-8-jdk-headless
  openjdk-8-jdk-headless:
    Installed: 8u292-b10-0ubuntu1~20.04
    Candidate: 8u292-b10-0ubuntu1~20.04
    Version table:
   *** 8u292-b10-0ubuntu1~20.04 500
          500 http://archive.ubuntu.com:80/ubuntu focal-updates/universe amd64 Packages
          500 http://security.ubuntu.com/ubuntu focal-security/universe amd64 Packages
          100 /var/lib/dpkg/status
       8u252-b09-1ubuntu1 500
          500 http://archive.ubuntu.com:80/ubuntu focal/universe amd64 Packages

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/openjdk-8/+bug/1926634/+subscriptions

References

[Bug 1926634] [NEW] openjdk 1.8.0_292 fails with unrecognized algorithm name: PBEWithSHA1AndDESede
From: Paul Smith, 2021-04-29