| Eclipse / JCE / PBEWithMD5AndDES [message #78015] |
Wed, 18 June 2003 19:05 |
Eclipse User |
|
|
|
Originally posted by: sordell.financialengines.com
All,
The following exception only occurs when running our product through
Eclipse 2.1.0 / W2K Professional / JDK 1.4.1_02 / JRun 3.1 (26414):
java.lang.RuntimeException:
fei.util.FeException: FeDSCryptoEncryption failed to decipherToken
caught FeCryptoException could not process key:
fei.crypto.common.FeCryptoException: could not create session key:
java.security.NoSuchAlgorithmException: Algorithm PBEWithMD5AndDES not
available; status code=2.
The line of code that is failing is:
SecretKeyFactory.getInstance("PBEWithMD5AndDes");
I'm not sure if this is related to the strong versus unlimited
cryptography that ships with the JDK by default.
I've replaced the default versions of the
jre\lib\security\US_export_policy.jar and jre\lib\security\local_policy.jar
with the unlimited versions since our application requires it anyway.
Since this works outside of Eclipse, I've tried copying these two files
everywhere I could think of:
(1) The directory that eclipse was started from
(d:\downloads\eclipse\2.1.0),
(2) The workspace directory (d:\workspace),
(3) The project directory (d:\workspace\dakota),
(4) The JRun server directory specific to the application
(JRun\servers\dakota-content-server),
(5) Even a directory of Oracle where I found a copy of the
java.security file (c:\program files\oracle\jre\1.1.7\lib\security).
I've checked the Eclipse build / runtime classpath and found several
references to these two files (JRun, JDK, and ours -
d:\workspace\3rdparty\j2ee).
Everywhere they were referenced I've replaced them with the unlimited
strength versions.
It is my understanding that support for PBEWithMD5AndDES is part of the
JDK.
The Security.getProviders shows that SunJCE is a provider that does
provide PBE support.
This is also shown by the fact that the application works outside of
Eclipse without any modification to the java.security providers list.
The Sun documentation
( http://java.sun.com/j2se/1.4.1/docs/guide/security/jce/JCERe fGuide.html)
also says:
The Java 2 SDK, v 1.4 release comes standard with a JCE provider named
"SunJCE", which comes pre-installed and registered and which supplies the
following cryptographic services:
An implementation of the MD5 with DES-CBC password-based encryption
(PBE) algorithm defined in PKCS #5.
I've also tried the following to try and see what is going on:
(1) Copying the .options file from the org.eclipse.core.runtime_2.1.0
to the directory Eclipse was started from (d:\downloads\eclipse\2.1.0),
(2) Setting the following to true:
(a) org.eclipse.core.runtime/loader/debug=true
(b) org.eclipse.core.runtime/loader/debug/create=true
(c) org.eclipse.core.runtime/loader/debug/actions=true
(3) Starting Eclipse with the -debug -consolelog
At this point I'm at a total loss.
Any help would be greatly appreciated since this is affecting other
developers within our organization as well.
Thanks, Shance.
|
|
|
Powered by
FUDForum. Page generated in 0.03558 seconds
] 
Search
Help
Register
Login
Home
