ConcurrentModificationException if jdk.crypto.disabledAlgorithms has multiple entries with known oid

XMLWordPrintable

    • Type: Bug
    • Resolution: Unresolved
    • Priority: P3
    • tbd
    • Affects Version/s: 26
    • Component/s: security-libs
    • None

      If the jdk.crypto.disabledAlgorithms system or security property has multiple entries and at least one with known oid, the following exception is thrown when instantiating a crypto object (ex: Cipher) that checks if it is disabled:

      Exception in thread "main" java.lang.ExceptionInInitializerError
      at java.base/sun.security.util.CryptoAlgorithmConstraints.permits(CryptoAlgorithmConstraints.java:66)
      at java.base/javax.crypto.Cipher.getInstance(Cipher.java:552)
      at Test.main(Test.java:5)
      Caused by: java.util.ConcurrentModificationException
      at java.base/java.util.TreeMap$PrivateEntryIterator.nextEntry(TreeMap.java:1522)
      at java.base/java.util.TreeMap$KeyIterator.next(TreeMap.java:1576)
      at java.base/sun.security.util.CryptoAlgorithmConstraints.<init>(CryptoAlgorithmConstraints.java:86)
      at java.base/sun.security.util.CryptoAlgorithmConstraints$CryptoHolder.<clinit>(CryptoAlgorithmConstraints.java:55)
      ... 3 more

      See attached test case, and run as:

      java -Djdk.crypto.disabledAlgorithms="Cipher.RSA/ECB/PKCS1Padding, Cipher.DES" Test

        1. Test.java
          0.2 kB

            Assignee:
            Valerie Peng
            Reporter:
            Sean Mullan
            Votes:
            0 Vote for this issue
            Watchers:
            4 Start watching this issue

              Created:
              Updated: