United StatesChange Country, Oracle Worldwide Web Sites Communities I am a... I want to...
Bug ID: JDK-6656520 Loading cacerts file from running JRE directory (JRE 1.4.2)
JDK-6656520 : Loading cacerts file from running JRE directory (JRE 1.4.2)

Details
Type:
Enhancement
Submit Date:
2008-01-29
Status:
Resolved
Updated Date:
2010-09-17
Project Name:
JDK
Resolved Date:
2008-04-02
Component:
deploy
OS:
windows_nt
Sub-Component:
plugin
CPU:
x86
Priority:
P2
Resolution:
Fixed
Affected Versions:
6u10
Fixed Versions:
6u7 (b01)

Related Reports
Backport:
Backport:
Relates:

Sub Tasks

Description
Using JRE5 or JRE6 release, Java webstart application can force to use old JRE, such as JRE 1.4.2_15 in jnlp file, in current design, we are still loading cacerts file from JRE5 or JRE 6 directory, not JRE 1.4.2_15.

With new certificate come from AOL has been added into cacerts file in JRE 5 and JRE 6, the JSSE api in JRE 1.4.2 can't parse this new certificate in cacerts file (lengthn > 4k), therefore the application will failed to load during loading cacerts file, the following exception will be thrown:

java.secutrity.cert.CertificateParsingException in 5.0u15-b02

java.security.cert.CertificateParsingException: java.io.IOException
subject key, Unknown key spec, Invalid RSA modulus size.

                                    

Comments
EVALUATION

We will load cacerts file from JRE1.4.2 instead of JRE 5 and JRE 6.
                                     
2008-01-29



Hardware and Software, Engineered to Work Together