-
Bug
-
Resolution: Duplicate
-
P3
-
None
-
1.4.2
-
x86
-
windows_xp
Name: nt126004 Date: 06/12/2003
FULL PRODUCT VERSION :
java version "1.4.2-beta"
Java(TM) 2 Runtime Environment, Standard Edition (build 1.4.2-beta-b19)
Java HotSpot(TM) Client VM (build 1.4.2-beta-b19, mixed mode)
FULL OS VERSION :
Microsoft Windows XP [Version 5.1.2600]
A DESCRIPTION OF THE PROBLEM :
Parsing of a valid X.509 certificat fails with "keytool error: java.lang.Exception: Input not an X.509 certificate".
Further, when "-list" is issued on keystore containing the same certificate (keystore was created using JDK 1.4.1_02) the following exception occurs:
keytool error: java.security.cert.CertificateParsingException: java.io.IOExcepti
on: java.io.IOException: Host portion is not a valid DNS name, IPv4 address, or
IPv6 address.
The problem seems to be parsing of the "CRL distribution points". See attached
stack trace. Same certificate manipulation with keytool succeeds under JDK 1.4.1_02.
STEPS TO FOLLOW TO REPRODUCE THE PROBLEM :
Try importing the attached certificate into any keystore or try using it from existing keystore.
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
ERROR MESSAGES/STACK TRACES THAT OCCUR :
java.security.cert.CertificateParsingException: java.io.IOException: java.io.IOException: Host portion is not a valid DNS name, IPv4 address, or IPv6 address
at sun.security.x509.X509CertInfo.<init>(X509CertInfo.java:157)
at sun.security.x509.X509CertImpl.parse(X509CertImpl.java:1679)
at sun.security.x509.X509CertImpl.<init>(X509CertImpl.java:173)
at sun.security.provider.X509Factory.engineGenerateCertificate(X509Factory.java:90)
at java.security.cert.CertificateFactory.generateCertificate(CertificateFactory.java:389)
at sun.security.provider.JavaKeyStore.engineLoad(JavaKeyStore.java:684)
at java.security.KeyStore.load(KeyStore.java:652)
at org.mortbay.http.SunJsseListener.createFactory(SunJsseListener.java:216)
at org.mortbay.http.JsseListener.newServerSocket(JsseListener.java:164)
at org.mortbay.util.ThreadedServer.start(ThreadedServer.java:389)
at org.mortbay.http.SocketListener.start(SocketListener.java:153)
at org.mortbay.http.HttpServer.start(HttpServer.java:655)
at org.jboss.jetty.JettyService.startService(JettyService.java:175)
at org.jboss.system.ServiceMBeanSupport.start(ServiceMBeanSupport.java:192)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:324)
at org.jboss.mx.capability.ReflectedMBeanDispatcher.invoke(ReflectedMBeanDispatcher.java:284)
at org.jboss.mx.server.MBeanServerImpl.invoke(MBeanServerImpl.java:549)
at org.jboss.system.ServiceController$ServiceProxy.invoke(ServiceController.java:966)
at $Proxy10.start(Unknown Source)
at org.jboss.system.ServiceController.start(ServiceController.java:392)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:324)
at org.jboss.mx.capability.ReflectedMBeanDispatcher.invoke(ReflectedMBeanDispatcher.java:284)
at org.jboss.mx.server.MBeanServerImpl.invoke(MBeanServerImpl.java:549)
at org.jboss.mx.util.MBeanProxyExt.invoke(MBeanProxyExt.java:177)
at $Proxy5.start(Unknown Source)
at org.jboss.deployment.SARDeployer.start(SARDeployer.java:226)
at org.jboss.deployment.MainDeployer.start(MainDeployer.java:832)
at org.jboss.deployment.MainDeployer.deploy(MainDeployer.java:640)
at org.jboss.deployment.MainDeployer.deploy(MainDeployer.java:613)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:324)
at org.jboss.mx.capability.ReflectedMBeanDispatcher.invoke(ReflectedMBeanDispatcher.java:284)
at org.jboss.mx.server.MBeanServerImpl.invoke(MBeanServerImpl.java:549)
at org.jboss.mx.util.MBeanProxyExt.invoke(MBeanProxyExt.java:177)
at $Proxy7.deploy(Unknown Source)
at org.jboss.deployment.scanner.URLDeploymentScanner.deploy(URLDeploymentScanner.java:302)
at org.jboss.deployment.scanner.URLDeploymentScanner.scan(URLDeploymentScanner.java:476)
at org.jboss.deployment.scanner.AbstractDeploymentScanner$ScannerThread.doScan(AbstractDeploymentSc
anner.java:200)
at org.jboss.deployment.scanner.AbstractDeploymentScanner.startService(AbstractDeploymentScanner.ja
va:273)
at org.jboss.system.ServiceMBeanSupport.start(ServiceMBeanSupport.java:192)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:324)
at org.jboss.mx.capability.ReflectedMBeanDispatcher.invoke(ReflectedMBeanDispatcher.java:284)
at org.jboss.mx.server.MBeanServerImpl.invoke(MBeanServerImpl.java:549)
at org.jboss.system.ServiceController$ServiceProxy.invoke(ServiceController.java:966)
at $Proxy0.start(Unknown Source)
at org.jboss.system.ServiceController.start(ServiceController.java:392)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:324)
at org.jboss.mx.capability.ReflectedMBeanDispatcher.invoke(ReflectedMBeanDispatcher.java:284)
at org.jboss.mx.server.MBeanServerImpl.invoke(MBeanServerImpl.java:549)
at org.jboss.mx.util.MBeanProxyExt.invoke(MBeanProxyExt.java:177)
at $Proxy5.start(Unknown Source)
at org.jboss.deployment.SARDeployer.start(SARDeployer.java:226)
at org.jboss.deployment.MainDeployer.start(MainDeployer.java:832)
at org.jboss.deployment.MainDeployer.deploy(MainDeployer.java:640)
at org.jboss.deployment.MainDeployer.deploy(MainDeployer.java:613)
at org.jboss.deployment.MainDeployer.deploy(MainDeployer.java:597)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:324)
at org.jboss.mx.capability.ReflectedMBeanDispatcher.invoke(ReflectedMBeanDispatcher.java:284)
at org.jboss.mx.server.MBeanServerImpl.invoke(MBeanServerImpl.java:549)
at org.jboss.mx.util.MBeanProxyExt.invoke(MBeanProxyExt.java:177)
at $Proxy6.deploy(Unknown Source)
at org.jboss.system.server.ServerImpl.doStart(ServerImpl.java:365)
at org.jboss.system.server.ServerImpl.start(ServerImpl.java:272)
at org.jboss.Main.boot(Main.java:150)
at org.jboss.Main$1.run(Main.java:388)
at java.lang.Thread.run(Thread.java:534)
Caused by: java.io.IOException: java.io.IOException: Host portion is not a valid DNS name, IPv4 addr
ess, or IPv6 address
at sun.security.x509.CertificateExtensions.parseExtension(CertificateExtensions.java:111)
at sun.security.x509.CertificateExtensions.init(CertificateExtensions.java:78)
at sun.security.x509.CertificateExtensions.<init>(CertificateExtensions.java:57)
at sun.security.x509.X509CertInfo.parse(X509CertInfo.java:731)
at sun.security.x509.X509CertInfo.<init>(X509CertInfo.java:155)
... 82 more
Caused by: java.io.IOException: Host portion is not a valid DNS name, IPv4 address, or IPv6 address
at sun.security.x509.URIName.parseName(URIName.java:205)
at sun.security.x509.URIName.<init>(URIName.java:85)
at sun.security.x509.GeneralName.<init>(GeneralName.java:94)
at sun.security.x509.GeneralNames.<init>(GeneralNames.java:51)
at sun.security.x509.DistributionPoint.<init>(DistributionPoint.java:193)
at sun.security.x509.CRLDistributionPointsExtension.<init>(CRLDistributionPointsExtension.java:126)
at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method)
at sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:39)
at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java
:27)
at java.lang.reflect.Constructor.newInstance(Constructor.java:274)
at sun.security.x509.CertificateExtensions.parseExtension(CertificateExtensions.java:105)
... 86 more
REPRODUCIBILITY :
This bug can be reproduced always.
Release Regression From : mantis-beta
The above release value was the last known release where this
bug was known to work. Since then there has been a regression.
(Review ID: 187230)
======================================================================
- duplicates
-
-
- Closed
-