Uploaded image for project: 'JBoss Enterprise Application Platform'
  1. JBoss Enterprise Application Platform
  2. JBEAP-14661

[GSS](7.1.z) Invalid Secret Key when using a vault and JDK 1.8.0_171

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done
    • Icon: Major Major
    • 7.1.3.CR1, 7.1.3.GA
    • 7.1.1.GA
    • Modules
    • None
    • CR1
    • Hide

      JBOSS_MODULES_SYSTEM_PKGS="com.sun.crypto.provider" in standalone.conf

      Show
      JBOSS_MODULES_SYSTEM_PKGS="com.sun.crypto.provider" in standalone.conf
    • EAP 7.1.3

      The following exception is thrown when using vault and JDK 1.8.0_171+ (EAP startup and "vault.sh" script):

      java.lang.Exception: WFLYSEC0045: Exception encountered:
          at org.jboss.as.security.vault.VaultSession.initSecurityVault(VaultSession.java:192)
          at org.jboss.as.security.vault.VaultSession.startVaultSession(VaultSession.java:210)
          at org.jboss.as.security.vault.VaultTool.execute(VaultTool.java:193)
          at org.jboss.as.security.vault.VaultTool.main(VaultTool.java:83)
          at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
          at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62)
          at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
          at java.lang.reflect.Method.invoke(Method.java:498)
          at org.jboss.modules.Module.run(Module.java:335)
          at org.jboss.modules.Main.main(Main.java:505)
      Caused by: org.jboss.security.vault.SecurityVaultException: java.lang.RuntimeException: PBOX00140: Unable to get keystore (/path/to/vault/vault.keystore)
          at org.picketbox.plugins.vault.PicketBoxSecurityVault.init(PicketBoxSecurityVault.java:210)
          at org.jboss.as.security.vault.VaultSession.initSecurityVault(VaultSession.java:189)
          ... 9 more
      Caused by: java.lang.RuntimeException: PBOX00140: Unable to get keystore (/path/to/vault/vault.keystore)
          at org.picketbox.plugins.vault.PicketBoxSecurityVault.getKeyStore(PicketBoxSecurityVault.java:691)
          at org.picketbox.plugins.vault.PicketBoxSecurityVault.init(PicketBoxSecurityVault.java:205)
          ... 10 more
      Caused by: java.io.IOException: Invalid secret key format
          at com.sun.crypto.provider.JceKeyStore.engineLoad(JceKeyStore.java:856)
          at java.security.KeyStore.load(KeyStore.java:1445)
          at org.picketbox.util.KeyStoreUtil.getKeyStore(KeyStoreUtil.java:201)
          at org.picketbox.util.KeyStoreUtil.getKeyStore(KeyStoreUtil.java:151)
          at org.picketbox.plugins.vault.PicketBoxSecurityVault.getKeyStore(PicketBoxSecurityVault.java:688)
          ... 11 more
      

            rhn-support-ivassile Ilia Vassilev
            rhn-support-bmaxwell Brad Maxwell
            Jiří Bílek Jiří Bílek (Inactive)
            Jiří Bílek Jiří Bílek (Inactive)
            Votes:
            0 Vote for this issue
            Watchers:
            6 Start watching this issue

              Created:
              Updated:
              Resolved: