Re: Github Actions TestSignatureInfo failing
Thanks Dominik. The tests do pass with java 11. It does seem likely the java 8 fix will be released when the next patch release (8.0.302) comes out. On Sunday 4 July 2021, 22:10:18 IST, Dominik Stadler wrote: When reproducing this in a VM locally I get the failure-details below, maybe the same happens in the Github Action as well. Seems to be a known regression in latest Java 8 patchlevel 292, see e.g. * https://github.com/bcgit/bc-java/issues/941 * https://bugs.openjdk.java.net/browse/JDK-8266279 * https://bugs.openjdk.java.net/browse/JDK-8266261 Unfortunately the workarounds discussed in the Github issue did not work for me locally, so maybe only the next JDK 8 update will fix it again via https://bugs.openjdk.java.net/browse/JDK-8267258 it is scheduled around July, 20th, see https://wiki.openjdk.java.net/display/jdk8u/Main D. at sun.security.pkcs12.PKCS12KeyStore.setKeyEntry(PKCS12KeyStore.java:677) at sun.security.pkcs12.PKCS12KeyStore.engineSetKeyEntry(PKCS12KeyStore.java:577) at java.security.KeyStore.setKeyEntry(KeyStore.java:1140) at org.apache.poi.poifs.crypt.dsig.TestSignatureInfo.initKeyPair(TestSignatureInfo.java:1097) at org.apache.poi.poifs.crypt.dsig.TestSignatureInfo.initKeyPair(TestSignatureInfo.java:1060) at org.apache.poi.poifs.crypt.dsig.TestSignatureInfo.bug65214(TestSignatureInfo.java:749) Caused by: java.security.UnrecoverableKeyException: Encrypt Private Key failed: unrecognized algorithm name: PBEWithSHA1AndDESede at sun.security.pkcs12.PKCS12KeyStore.encryptPrivateKey(PKCS12KeyStore.java:921) at sun.security.pkcs12.PKCS12KeyStore.setKeyEntry(PKCS12KeyStore.java:614) ... 63 more Caused by: java.security.NoSuchAlgorithmException: unrecognized algorithm name: PBEWithSHA1AndDESede at sun.security.x509.AlgorithmId.get(AlgorithmId.java:448) at sun.security.pkcs12.PKCS12KeyStore.mapPBEAlgorithmToOID(PKCS12KeyStore.java:938) at sun.security.pkcs12.PKCS12KeyStore.encryptPrivateKey(PKCS12KeyStore.java:895) ... 64 more On Sun, Jul 4, 2021 at 5:08 PM fannin...@apache.org wrote: > Hi, > Does anyone know why TestSignatureInfo fails when run here? > > https://github.com/apache/poi/actions > > Seems like some crypto algorithms are disabled in the JVM. Could this be > related to preventing crypto mining? > > > > - > To unsubscribe, e-mail: dev-unsubscr...@poi.apache.org > For additional commands, e-mail: dev-h...@poi.apache.org > > - To unsubscribe, e-mail: dev-unsubscr...@poi.apache.org For additional commands, e-mail: dev-h...@poi.apache.org
Re: Github Actions TestSignatureInfo failing
On 04.07.21 23:09, Dominik Stadler wrote: Unfortunately the workarounds discussed in the Github issue did not work for me locally, so maybe only the next JDK 8 update will fix it again via https://bugs.openjdk.java.net/browse/JDK-8267258 it is scheduled around July, 20th, see https://wiki.openjdk.java.net/display/jdk8u/Main D. Should we ignore the test for patchlevel 292? Andi - To unsubscribe, e-mail: dev-unsubscr...@poi.apache.org For additional commands, e-mail: dev-h...@poi.apache.org
Re: Github Actions TestSignatureInfo failing
When reproducing this in a VM locally I get the failure-details below, maybe the same happens in the Github Action as well. Seems to be a known regression in latest Java 8 patchlevel 292, see e.g. * https://github.com/bcgit/bc-java/issues/941 * https://bugs.openjdk.java.net/browse/JDK-8266279 * https://bugs.openjdk.java.net/browse/JDK-8266261 Unfortunately the workarounds discussed in the Github issue did not work for me locally, so maybe only the next JDK 8 update will fix it again via https://bugs.openjdk.java.net/browse/JDK-8267258 it is scheduled around July, 20th, see https://wiki.openjdk.java.net/display/jdk8u/Main D. at sun.security.pkcs12.PKCS12KeyStore.setKeyEntry(PKCS12KeyStore.java:677) at sun.security.pkcs12.PKCS12KeyStore.engineSetKeyEntry(PKCS12KeyStore.java:577) at java.security.KeyStore.setKeyEntry(KeyStore.java:1140) at org.apache.poi.poifs.crypt.dsig.TestSignatureInfo.initKeyPair(TestSignatureInfo.java:1097) at org.apache.poi.poifs.crypt.dsig.TestSignatureInfo.initKeyPair(TestSignatureInfo.java:1060) at org.apache.poi.poifs.crypt.dsig.TestSignatureInfo.bug65214(TestSignatureInfo.java:749) Caused by: java.security.UnrecoverableKeyException: Encrypt Private Key failed: unrecognized algorithm name: PBEWithSHA1AndDESede at sun.security.pkcs12.PKCS12KeyStore.encryptPrivateKey(PKCS12KeyStore.java:921) at sun.security.pkcs12.PKCS12KeyStore.setKeyEntry(PKCS12KeyStore.java:614) ... 63 more Caused by: java.security.NoSuchAlgorithmException: unrecognized algorithm name: PBEWithSHA1AndDESede at sun.security.x509.AlgorithmId.get(AlgorithmId.java:448) at sun.security.pkcs12.PKCS12KeyStore.mapPBEAlgorithmToOID(PKCS12KeyStore.java:938) at sun.security.pkcs12.PKCS12KeyStore.encryptPrivateKey(PKCS12KeyStore.java:895) ... 64 more On Sun, Jul 4, 2021 at 5:08 PM fannin...@apache.org wrote: > Hi, > Does anyone know why TestSignatureInfo fails when run here? > > https://github.com/apache/poi/actions > > Seems like some crypto algorithms are disabled in the JVM. Could this be > related to preventing crypto mining? > > > > - > To unsubscribe, e-mail: dev-unsubscr...@poi.apache.org > For additional commands, e-mail: dev-h...@poi.apache.org > >
Github Actions TestSignatureInfo failing
Hi, Does anyone know why TestSignatureInfo fails when run here? https://github.com/apache/poi/actions Seems like some crypto algorithms are disabled in the JVM. Could this be related to preventing crypto mining? - To unsubscribe, e-mail: dev-unsubscr...@poi.apache.org For additional commands, e-mail: dev-h...@poi.apache.org
