[jira] [Commented] (KNOX-1568) Upgrade nimbus-jose-jwt to 6.3

Thu, 08 Nov 2018 13:52:32 -0800 


    [ 
https://issues.apache.org/jira/browse/KNOX-1568?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16679769#comment-16679769
 ] 

Kevin Risden commented on KNOX-1568:
------------------------------------

This causes a failure since nimbus-jose-jwt 6.1 added checks for RSA keys less 
than 2048 bits.

>From the 
>[changelog|https://bitbucket.org/connect2id/nimbus-jose-jwt/src/master/CHANGELOG.txt?fileviewer=file-view-default#CHANGELOG.txt-882]:
{code:java}
version 6.1 (2018-10-08)
    * Updates the RSASSASigner to reject weak RSA keys (shorter than 2048
      bits). To use a weak key use the new RSASSASigner constructors with the
      boolean allowWeakKey parameter (iss #219).
    * Updates the RSADecrypter to reject weak RSA keys (shorter than 2048
      bits). To use a weak key use the new RSADecrypter constructor with the
      boolean allowWeakKey parameter (iss #219).{code}
The test failure:
{code:java}
[INFO] Running 
org.apache.knox.gateway.services.token.impl.DefaultTokenAuthorityServiceTest
[ERROR] Tests run: 6, Failures: 0, 
Errors: 4, Skipped: 0, Time elapsed: 0.206 s <<< 
FAILURE! - in 
org.apache.knox.gateway.services.token.impl.DefaultTokenAuthorityServiceTest
[ERROR] 
testTokenCreationNullAudience(org.apache.knox.gateway.services.token.impl.DefaultTokenAuthorityServiceTest)
  Time elapsed: 0.096 s  <<< ERROR!
java.lang.IllegalArgumentException: The RSA key size must be at least 2048 bits
        at 
org.apache.knox.gateway.services.token.impl.DefaultTokenAuthorityServiceTest.testTokenCreationNullAudience(DefaultTokenAuthorityServiceTest.java:163)

[ERROR] 
testTokenCreation(org.apache.knox.gateway.services.token.impl.DefaultTokenAuthorityServiceTest)
  Time elapsed: 0.002 s  <<< ERROR!
java.lang.IllegalArgumentException: The RSA key size must be at least 2048 bits
        at 
org.apache.knox.gateway.services.token.impl.DefaultTokenAuthorityServiceTest.testTokenCreation(DefaultTokenAuthorityServiceTest.java:78)

[ERROR] 
testTokenCreationAudience(org.apache.knox.gateway.services.token.impl.DefaultTokenAuthorityServiceTest)
  Time elapsed: 0.002 s  <<< ERROR!
java.lang.IllegalArgumentException: The RSA key size must be at least 2048 bits
        at 
org.apache.knox.gateway.services.token.impl.DefaultTokenAuthorityServiceTest.testTokenCreationAudience(DefaultTokenAuthorityServiceTest.java:120)

[ERROR] 
testTokenCreationSignatureAlgorithm(org.apache.knox.gateway.services.token.impl.DefaultTokenAuthorityServiceTest)
  Time elapsed: 0.002 s  <<< ERROR!
java.lang.IllegalArgumentException: The RSA key size must be at least 2048 bits
        at 
org.apache.knox.gateway.services.token.impl.DefaultTokenAuthorityServiceTest.testTokenCreationSignatureAlgorithm(DefaultTokenAuthorityServiceTest.java:205)

{code}

> Upgrade nimbus-jose-jwt to 6.3
> ------------------------------
>
>                 Key: KNOX-1568
>                 URL: https://issues.apache.org/jira/browse/KNOX-1568
>             Project: Apache Knox
>          Issue Type: Sub-task
>          Components: Build
>            Reporter: Kevin Risden
>            Assignee: Kevin Risden
>            Priority: Minor
>             Fix For: 1.3.0
>
>         Attachments: KNOX-1568.patch
>
>
> nimbus-jose-jwt 6.0.2 to 6.3



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

Reply via email to