-
Enhancement
-
Resolution: Fixed
-
P2
-
6u10
-
b01
-
x86
-
windows_nt
Issue | Fix Version | Assignee | Priority | Status | Resolution | Resolved In Build |
---|---|---|---|---|---|---|
JDK-2199192 | 7 | Dennis Gu | P2 | Resolved | Fixed | b64 |
JDK-2158487 | 5.0u16 | Abhijit Saha | P2 | Resolved | Fixed | b01 |
Using JRE5 or JRE6 release, Java webstart application can force to use old JRE, such as JRE 1.4.2_15 in jnlp file, in current design, we are still loading cacerts file from JRE5 or JRE 6 directory, not JRE 1.4.2_15.
With new certificate come from AOL has been added into cacerts file in JRE 5 and JRE 6, the JSSE api in JRE 1.4.2 can't parse this new certificate in cacerts file (lengthn > 4k), therefore the application will failed to load during loading cacerts file, the following exception will be thrown:
java.secutrity.cert.CertificateParsingException in 5.0u15-b02
java.security.cert.CertificateParsingException: java.io.IOException
subject key, Unknown key spec, Invalid RSA modulus size.
With new certificate come from AOL has been added into cacerts file in JRE 5 and JRE 6, the JSSE api in JRE 1.4.2 can't parse this new certificate in cacerts file (lengthn > 4k), therefore the application will failed to load during loading cacerts file, the following exception will be thrown:
java.secutrity.cert.CertificateParsingException in 5.0u15-b02
java.security.cert.CertificateParsingException: java.io.IOException
subject key, Unknown key spec, Invalid RSA modulus size.
- backported by
-
JDK-2158487 Loading cacerts file from running JRE directory (JRE 1.4.2)
-
- Resolved
-
-
JDK-2199192 Loading cacerts file from running JRE directory (JRE 1.4.2)
-
- Resolved
-
- relates to
-
JDK-6656050 Add AOL Root CA #2 to JDK
-
- Resolved
-