Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-8013035

Improve error message reporting around use of strong crypto encryption requests

    XMLWordPrintable

Details

    Description

      We should consider improving the exception messages thrown when applications are denied a request for a strong encryption ciphers. i.e. Message should hint at obtaining unlimited strength JCE policy files. It should help clear confusion for some users/developers that may not be aware of the strong versus stronger JCE policy files configuration.

      An example would be to make this exception more verbose in messaging :
      jdk/src/share/classes/javax/crypto/Cipher.java#1068

              if (!cryptoPerm.implies(checkPerm)) {
                  if (debug != null) {
                      debug.println("Crypto Permission check failed");
                      debug.println("granted: " + cryptoPerm);
                      debug.println("requesting: " + checkPerm);
                  }

      Attachments

        Issue Links

          duplicates

          Bug - A problem which impairs or prevents the functions of the product. JDK-8146315 Better diagnostic information when unlimited policy files are missing

          • P3 - Major loss of function.
          • Closed
          relates to

          Enhancement - null JDK-7024850 Consider shipping Unlimited Crypto Policy files by default.

          • P3 - Major loss of function.
          • Resolved

          Bug - A problem which impairs or prevents the functions of the product. JDK-8146315 Better diagnostic information when unlimited policy files are missing

          • P3 - Major loss of function.
          • Closed

          Activity

            People

              coffeys Sean Coffey
              coffeys Sean Coffey
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: