-
Bug
-
Resolution: Not an Issue
-
P3
-
None
-
8u221
The customer faced an issue recently with one of their application teams with
regards to the JCE policy in the JDK version 1.8.0_221-b27. The issue is with
the time it takes to generate the random AES key for encoding the user
credentials to send to the Kerberos Domain Controller. The team was using JDK
version 1.8.0_152 earlier where the AES key generation was usually less than
a second. After migrating to the version JDK 1.8.0_221-b27, it is taking a
very long time of around 15 minutes to generate the AES key.
Version Details below:
Java(TM) SE Runtime Environment (build 1.8.0_221-b27)
Red Hat Enterprise Linux Server release 6.10 (Santiago)
This issue is impacting User Acceptance Testing (UAT) for the customer.
The problem is also observed in a production environment and is preventing
them to upgrade to the latest Java Critical Patch Update (CPU).
The customer confirmed they do not see this issue when running with
1.8.0_212-b25.
regards to the JCE policy in the JDK version 1.8.0_221-b27. The issue is with
the time it takes to generate the random AES key for encoding the user
credentials to send to the Kerberos Domain Controller. The team was using JDK
version 1.8.0_152 earlier where the AES key generation was usually less than
a second. After migrating to the version JDK 1.8.0_221-b27, it is taking a
very long time of around 15 minutes to generate the AES key.
Version Details below:
Java(TM) SE Runtime Environment (build 1.8.0_221-b27)
Red Hat Enterprise Linux Server release 6.10 (Santiago)
This issue is impacting User Acceptance Testing (UAT) for the customer.
The problem is also observed in a production environment and is preventing
them to upgrade to the latest Java Critical Patch Update (CPU).
The customer confirmed they do not see this issue when running with
1.8.0_212-b25.