[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

AW: [iaik-ssl] Cannot set up certs for trusted CAs, with IBM JDK 1.3.0 SR09 + IBM-JCE-1-2-1, and WebMethods



Hello,

per default iSaSiLk uses the IAIK-JCE crypto provider. JCE 1.2.1 requires
a provider to be signed which will the case for the next version of IAIK-JCE.
However, iSaSiLk may be configured to run with any crypto provider as long
as it supplies the required cryptographic services. If you want to use the
IBM JCE provider you may configure iSaSiLk´s SecurityProvider 
http://jcewww.iaik.at/products/isasilk/documentation/security%20provider/index.php
to use the IBM provdier.

Regards,
Dieter Bratko

-----Ursprüngliche Nachricht-----
Von: iaik-ssl-owner@iaik.tu-graz.ac.at
[mailto:iaik-ssl-owner@iaik.tu-graz.ac.at]Im Auftrag von Anjarivo
Razafinimanana
Gesendet: Mittwoch, 12. Dezember 2001 18:41
An: iaik-jce@iaik.at; iaik-ssl@iaik.at
Betreff: [iaik-ssl] Cannot set up certs for trusted CAs, with IBM JDK
1.3.0 SR09 + IBM-JCE-1-2-1, and WebMethods


Hi,

I've been using IBM JDK 1.3.0 SR09 since september, and it works well.
Two days ago, I wanted to use IBM JDK + IBM-JCE-1-2-1  to provide SSL access
on my WebServer (WebMethods product).
It fails every time, and I always receive the same message (see below).
I modified my classpath and I added this string :

";C:\JDK_IBM_1.3\jre\lib\ext\ibmjceprovider.jar;C:\JDK_IBM_1.3\jre\lib\ext\i
bmjcefw.jar;C:\JDK_IBM_1.3\jre\lib\ext\ibmjsse.jar;C:\JDK_IBM_1.3\jre\lib\ex
t\US_export_policy.jar;C:\JDK_IBM_1.3\jre\lib\ext\local_policy.jar;"

But I can't prevent errors to occur ;-(


0004E3  HTPREQ0001V  GET /WmRoot/images/leftheader.gif
0004E5  HTPSLS9998V  Exception => null
java.lang.ExceptionInInitializerError: java.lang.SecurityException: Cannot
set up certs for trusted CAs
        at javax.crypto.a.<clinit>(Unknown Source)
        at javax.crypto.Mac.getInstance(Unknown Source)
        at iaik.security.ssl.IaikProvider.getMac(Unknown Source)
        at iaik.security.ssl.r.<init>(Unknown Source)
        at iaik.security.ssl.f.<init>(Unknown Source)
        at iaik.security.ssl.SSLTransport.setUseClientMode(Unknown Source)
        at iaik.security.ssl.SSLTransport.f(Unknown Source)
        at iaik.security.ssl.SSLTransport.<init>(Unknown Source)
        at iaik.security.ssl.SSLSocket.a(Unknown Source)
        at iaik.security.ssl.SSLServerSocket.accept(Unknown Source)
        at
CommerceOneSSLServerSocket.accept(CommerceOneSSLServerSocket.java:25)

        at wm.server.net.IaikHTTPSListener.loop(IaikHTTPSListener.java:402)
        at wm.server.net.Listener.run(Listener.java:140)
        at java.lang.Thread.run(Thread.java:498)

If someone can help me .....
Thanks a lot !

--
Mailinglist-archive at http://jcewww.iaik.at/mailarchive/iaik-ssl/sslthreads.html

To unsubscribe send an email to listserv@iaik.at with the folowing content: UNSUBSCRIBE iaik-ssl
 


--
Mailinglist-archive at http://jcewww.iaik.at/mailarchive/iaik-ssl/sslthreads.html

To unsubscribe send an email to listserv@iaik.at with the folowing content: UNSUBSCRIBE iaik-ssl