Uploaded image for project: 'JDK'
  1. JDK
  2. JDK-4389689

implicit assumption in keymanagerfactory: keys are protected with same password

    XMLWordPrintable

Details

    • Bug
    • Resolution: Duplicate
    • P4
    • None
    • unknown, 6
    • security-libs
    • generic, x86
    • generic, windows_xp

    Description

      The KeyManagerFactory API right now has room for one password, therefore
      if there are any keys in a keystore which are protected by a different password,
      we throw:

      java.security.UnrecoverableKeyException: Cannot recover key
      at sun.security.provider.KeyProtector.recover(KeyProtector.java:304)
      at ...

      The workaround is to have all entries protected by the same key, but
      this may not be approrpriate in all situations. Either the API should
      change, or this should be documented.

      Brad

      Attachments

        Issue Links

          duplicates

          Bug - A problem which impairs or prevents the functions of the product. JDK-5067456 Need X509KeyManager that supports KeyStoreBuilderParameters

          • P3 - Major loss of function.
          • Resolved
          relates to

          Bug - A problem which impairs or prevents the functions of the product. JDK-4961104 Modify the KeyStore.Builder API

          • P3 - Major loss of function.
          • Resolved

          Activity

            People

              andreas Andreas Sterbenz
              wetmore Bradford Wetmore
              Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:
                Imported:
                Indexed: