JDK-8242565 : Policy initialization issues when the denyAfter constraint is enabled
  • Type: Bug
  • Component: security-libs
  • Sub-Component: java.security
  • Affected Version: 8,11,13,15
  • Priority: P3
  • Status: Closed
  • Resolution: Fixed
  • Submitted: 2020-04-13
  • Updated: 2022-10-11
  • Resolved: 2020-04-16
The Version table provides details related to the release that this issue/RFE will be addressed.

Unresolved : Release in which this issue/RFE will be addressed.
Resolved: Release in which this issue/RFE has been resolved.
Fixed : Release in which this issue/RFE has been fixed. The release containing this fix may be available for download as an Early Access Release or a General Availability Release.

To download the current JDK release, click here.
JDK 11 JDK 13 JDK 15 JDK 7 JDK 8 Other
11.0.11-oracleFixed 13.0.13Fixed 15 b20Fixed 7u301Fixed 8u291Fixed openjdk8u302Fixed
Related Reports
Blocks :  
JDK-8196415 - Disable SHA-1 Signed JARs
Duplicate :  
JDK-8266279 - 8u292 NoSuchAlgorithmException unrecognized algorithm name: PBEWithSHA1AndDESede
Duplicate :  
JDK-8266290 - Jar Verification performs initializations that cause NoSuchAlgorithmException
Relates :  
JDK-8247961 - java.security.debug may raise ClassCircularityError
Relates :  
JDK-8266290 - Jar Verification performs initializations that cause NoSuchAlgorithmException
Relates :  
JDK-8266279 - 8u292 NoSuchAlgorithmException unrecognized algorithm name: PBEWithSHA1AndDESede
Description
Policy fails to initialize properly under the following set of conditions:

1. Signed JAR on the classpath
2. SHA-1 denyAfter constraint set in the jdk.jar.disabledAlgorithms property in the java.security file
3. SecurityManager enabled
4. Policy file granting permission based on who signed jar and keystore entry containing the alias/key
5. Code triggering a permission check based on that grant

There are two issues that prevent the application from being granted the permission:

1. A recursive load of the SunEC provider. The PKCS12 KeyStore in the policy file needs to load SunJCE in order to verify the integrity of the keystore. This uses ServiceLoader to find SunJCE which causes all Providers to be loaded, SL also triggers a permission check, which causes the Policy to be parsed again, etc ...

See comments for stack trace.
 
2. Similar to above. The PKCS12 KeyStore in the policy file calls sun.security.util.KeyStoreUtil.signedBy(). The static initialization of KeyStoreUtil instantiates java.text.Collator, which uses ServiceLoader to find a locale provider, which triggers a permission check, which causes Policy to be parsed again, etc ...

See comments for stack trace.
Comments
Fix Request [13u] I'd like to backport this to fix the regression caused by JDK-8269039
10-10-2022
A pull request was submitted for review. URL: https://git.openjdk.org/jdk13u-dev/pull/416 Date: 2022-10-10 13:40:16 +0000
10-10-2022
Fix Request [8u] I'd like to backport it for parity with Oracle. Also, it fixes issues JDK-8266279, JDK-8266261, JDK-8266290 by adding SunJCE provider to the list of thread-local jar verification providers. The original patch applies almost clean except for copyright years and SunJCE provider class name in the Providers.java class Review started at https://mail.openjdk.java.net/pipermail/jdk8u-dev/2021-May/013795.html
06-05-2021
Fix Request Should get backported for parity with 11.0.11-oracle. Applies cleanly except Copyright years.
12-01-2021
URL: https://hg.openjdk.java.net/jdk/jdk/rev/8d34198a0e26 User: mullan Date: 2020-04-16 13:49:23 +0000
16-04-2020
Here is the ServiceConfigurationError stack trace (caused by a java.lang.ClassCircularityError when loading sun/util/resources/cldr/provider/CLDRLocaleDataMetaInfo) when java.security.debug tracing is enabled. PKCS12KeyStore is calling into KeyStoreUtil.signedBy(). The static initialization of KeyStoreUtil instantiates java.text.Collator, which uses ServiceLoader to find a locale provider, which triggers a permission check, which causes Policy to be parsed again, etc ... pkcs12: Checking keystore integrity (HmacPBESHA1 iterations: 100000) ProviderConfig: Encountered java.util.ServiceConfigurationError: java.security.Provider: Provider org.jcp.xml.dsig.internal.dom.XMLDSigRI could not be instantiated while iterating through SL, ignore and move on java.util.ServiceConfigurationError: java.security.Provider: Provider org.jcp.xml.dsig.internal.dom.XMLDSigRI could not be instantiated at java.base/java.util.ServiceLoader.fail(ServiceLoader.java:584) at java.base/java.util.ServiceLoader$ProviderImpl.newInstance(ServiceLoader.java:806) at java.base/java.util.ServiceLoader$ProviderImpl.get(ServiceLoader.java:724) at java.base/java.util.ServiceLoader$3.next(ServiceLoader.java:1396) at java.base/sun.security.jca.ProviderConfig$ProviderLoader.load(ProviderConfig.java:335) at java.base/sun.security.jca.ProviderConfig$3.run(ProviderConfig.java:243) at java.base/sun.security.jca.ProviderConfig$3.run(ProviderConfig.java:237) at java.base/java.security.AccessController.doPrivileged(AccessController.java:312) at java.base/sun.security.jca.ProviderConfig.doLoadProvider(ProviderConfig.java:237) at java.base/sun.security.jca.ProviderConfig.getProvider(ProviderConfig.java:217) at java.base/sun.security.jca.ProviderList.getProvider(ProviderList.java:267) at java.base/sun.security.jca.ProviderList.getService(ProviderList.java:380) at java.base/sun.security.jca.GetInstance.getInstance(GetInstance.java:157) at java.base/java.security.Security.getImpl(Security.java:700) at java.base/java.security.AlgorithmParameters.getInstance(AlgorithmParameters.java:157) at java.base/sun.security.pkcs12.PKCS12KeyStore.parseAlgParameters(PKCS12KeyStore.java:818) at java.base/sun.security.pkcs12.PKCS12KeyStore.engineLoad(PKCS12KeyStore.java:2059) at java.base/sun.security.util.KeyStoreDelegator.engineLoad(KeyStoreDelegator.java:220) at java.base/java.security.KeyStore.load(KeyStore.java:1472) at java.base/sun.security.util.PolicyUtil.getKeyStore(PolicyUtil.java:166) at java.base/sun.security.provider.PolicyFile.init(PolicyFile.java:523) at java.base/sun.security.provider.PolicyFile$4.run(PolicyFile.java:413) at java.base/sun.security.provider.PolicyFile$4.run(PolicyFile.java:385) at java.base/java.security.AccessController.doPrivileged(AccessController.java:312) at java.base/sun.security.provider.PolicyFile.initPolicyFile(PolicyFile.java:385) at java.base/sun.security.provider.PolicyFile.initPolicyFile(PolicyFile.java:372) at java.base/sun.security.provider.PolicyFile.init(PolicyFile.java:329) at java.base/sun.security.provider.PolicyFile.<init>(PolicyFile.java:283) at java.base/java.security.Policy.loadPolicyProvider(Policy.java:207) at java.base/java.security.Policy.getPolicyNoCheck(Policy.java:178) at java.base/java.security.ProtectionDomain.implies(ProtectionDomain.java:321) at java.base/java.security.ProtectionDomain.impliesWithAltFilePerm(ProtectionDomain.java:353) at java.base/java.security.AccessControlContext.checkPermission(AccessControlContext.java:450) at java.base/java.security.AccessController.checkPermission(AccessController.java:1036) at java.base/java.lang.SecurityManager.checkPermission(SecurityManager.java:408) at java.base/java.lang.SecurityManager.checkPackageAccess(SecurityManager.java:1324) at java.base/java.lang.ClassLoader$1.run(ClassLoader.java:689) at java.base/java.lang.ClassLoader$1.run(ClassLoader.java:687) at java.base/java.security.AccessController.doPrivileged(AccessController.java:391) at java.base/java.lang.ClassLoader.checkPackageAccess(ClassLoader.java:687) at java.base/java.lang.ClassLoader.defineClass2(Native Method) at java.base/java.lang.ClassLoader.defineClass(ClassLoader.java:1106) at java.base/java.security.SecureClassLoader.defineClass(SecureClassLoader.java:183) at java.base/jdk.internal.loader.BuiltinClassLoader.defineClass(BuiltinClassLoader.java:784) at java.base/jdk.internal.loader.BuiltinClassLoader.lambda$findClassInModuleOrNull$2(BuiltinClassLoader.java:707) at java.base/java.security.AccessController.doPrivileged(AccessController.java:312) at java.base/jdk.internal.loader.BuiltinClassLoader.findClassInModuleOrNull(BuiltinClassLoader.java:708) at java.base/jdk.internal.loader.BuiltinClassLoader.findClass(BuiltinClassLoader.java:586) at java.base/java.lang.ClassLoader.loadClass(ClassLoader.java:632) at java.base/java.lang.Class.forName(Class.java:509) at java.base/java.util.ServiceLoader.lambda$loadProvider$1(ServiceLoader.java:859) at java.base/java.security.AccessController.doPrivileged(AccessController.java:554) at java.base/java.util.ServiceLoader.loadProvider(ServiceLoader.java:861) at java.base/java.util.ServiceLoader$ModuleServicesLookupIterator.hasNext(ServiceLoader.java:1078) at java.base/java.util.ServiceLoader$2.hasNext(ServiceLoader.java:1301) at java.base/java.util.ServiceLoader$3.hasNext(ServiceLoader.java:1386) at java.base/sun.util.cldr.CLDRLocaleProviderAdapter$1.run(CLDRLocaleProviderAdapter.java:89) at java.base/sun.util.cldr.CLDRLocaleProviderAdapter$1.run(CLDRLocaleProviderAdapter.java:86) at java.base/java.security.AccessController.doPrivileged(AccessController.java:554) at java.base/sun.util.cldr.CLDRLocaleProviderAdapter.<init>(CLDRLocaleProviderAdapter.java:86) at java.base/jdk.internal.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method) at java.base/jdk.internal.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:62) at java.base/jdk.internal.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:45) at java.base/java.lang.reflect.Constructor.newInstanceWithCaller(Constructor.java:500) at java.base/java.lang.reflect.ReflectAccess.newInstance(ReflectAccess.java:124) at java.base/jdk.internal.reflect.ReflectionFactory.newInstance(ReflectionFactory.java:346) at java.base/java.lang.Class.newInstance(Class.java:608) at java.base/sun.util.locale.provider.LocaleProviderAdapter.forType(LocaleProviderAdapter.java:176) at java.base/sun.util.locale.provider.LocaleProviderAdapter.findAdapter(LocaleProviderAdapter.java:279) at java.base/sun.util.locale.provider.LocaleProviderAdapter.getAdapter(LocaleProviderAdapter.java:250) at java.base/java.util.Calendar.createCalendar(Calendar.java:1693) at java.base/java.util.Calendar.getInstance(Calendar.java:1661) at java.base/java.text.SimpleDateFormat.initializeCalendar(SimpleDateFormat.java:677) at java.base/java.text.SimpleDateFormat.<init>(SimpleDateFormat.java:621) at java.base/java.text.SimpleDateFormat.<init>(SimpleDateFormat.java:600) at java.base/sun.security.util.DisabledAlgorithmConstraints$DenyAfterConstraint.<clinit>(DisabledAlgorithmConstraints.java:652) at java.base/sun.security.util.DisabledAlgorithmConstraints$Constraints.<init>(DisabledAlgorithmConstraints.java:371) at java.base/sun.security.util.DisabledAlgorithmConstraints.<init>(DisabledAlgorithmConstraints.java:121) at java.base/sun.security.util.DisabledAlgorithmConstraints.<init>(DisabledAlgorithmConstraints.java:88) at java.base/sun.security.pkcs.SignerInfo.<clinit>(SignerInfo.java:73) at java.base/sun.security.pkcs.PKCS7.parseSignedData(PKCS7.java:391) at java.base/sun.security.pkcs.PKCS7.parse(PKCS7.java:186) at java.base/sun.security.pkcs.PKCS7.parse(PKCS7.java:154) at java.base/sun.security.pkcs.PKCS7.<init>(PKCS7.java:136) at java.base/sun.security.util.SignatureFileVerifier.<init>(SignatureFileVerifier.java:126) at java.base/java.util.jar.JarVerifier.processEntry(JarVerifier.java:297) at java.base/java.util.jar.JarVerifier.update(JarVerifier.java:230) at java.base/java.util.jar.JarFile.initializeVerifier(JarFile.java:759) at java.base/java.util.jar.JarFile.getInputStream(JarFile.java:840) at java.base/jdk.internal.loader.URLClassPath$JarLoader$2.getInputStream(URLClassPath.java:869) at java.base/jdk.internal.loader.Resource.cachedInputStream(Resource.java:77) at java.base/jdk.internal.loader.Resource.getByteBuffer(Resource.java:163) at java.base/jdk.internal.loader.BuiltinClassLoader.defineClass(BuiltinClassLoader.java:816) at java.base/jdk.internal.loader.BuiltinClassLoader$4.run(BuiltinClassLoader.java:736) at java.base/jdk.internal.loader.BuiltinClassLoader$4.run(BuiltinClassLoader.java:731) at java.base/java.security.AccessController.doPrivileged(AccessController.java:312) at java.base/jdk.internal.loader.BuiltinClassLoader.findClassOnClassPathOrNull(BuiltinClassLoader.java:744) at java.base/jdk.internal.loader.BuiltinClassLoader.loadClassOrNull(BuiltinClassLoader.java:646) at java.base/jdk.internal.loader.BuiltinClassLoader.loadClass(BuiltinClassLoader.java:604) at java.base/jdk.internal.loader.ClassLoaders$AppClassLoader.loadClass(ClassLoaders.java:178) at java.base/java.lang.ClassLoader.loadClass(ClassLoader.java:520) at java.base/java.lang.Class.forName0(Native Method) at java.base/java.lang.Class.forName(Class.java:431) at java.base/sun.launcher.LauncherHelper.loadMainClass(LauncherHelper.java:780) at java.base/sun.launcher.LauncherHelper.checkAndLoadMain(LauncherHelper.java:675) Caused by: java.util.ServiceConfigurationError: sun.util.locale.provider.LocaleDataMetaInfo: Unable to load sun.util.resources.cldr.provider.CLDRLocaleDataMetaInfo at java.base/java.util.ServiceLoader.fail(ServiceLoader.java:584) at java.base/java.util.ServiceLoader.loadProvider(ServiceLoader.java:865) at java.base/java.util.ServiceLoader$ModuleServicesLookupIterator.hasNext(ServiceLoader.java:1078) at java.base/java.util.ServiceLoader$2.hasNext(ServiceLoader.java:1301) at java.base/java.util.ServiceLoader$3.hasNext(ServiceLoader.java:1386) at java.base/sun.util.cldr.CLDRLocaleProviderAdapter$1.run(CLDRLocaleProviderAdapter.java:89) at java.base/sun.util.cldr.CLDRLocaleProviderAdapter$1.run(CLDRLocaleProviderAdapter.java:86) at java.base/java.security.AccessController.doPrivileged(AccessController.java:554) at java.base/sun.util.cldr.CLDRLocaleProviderAdapter.<init>(CLDRLocaleProviderAdapter.java:86) at java.base/jdk.internal.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method) at java.base/jdk.internal.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:62) at java.base/jdk.internal.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:45) at java.base/java.lang.reflect.Constructor.newInstanceWithCaller(Constructor.java:500) at java.base/java.lang.reflect.ReflectAccess.newInstance(ReflectAccess.java:124) at java.base/jdk.internal.reflect.ReflectionFactory.newInstance(ReflectionFactory.java:346) at java.base/java.lang.Class.newInstance(Class.java:608) at java.base/sun.util.locale.provider.LocaleProviderAdapter.forType(LocaleProviderAdapter.java:176) at java.base/sun.util.locale.provider.LocaleProviderAdapter.findAdapter(LocaleProviderAdapter.java:279) at java.base/sun.util.locale.provider.LocaleProviderAdapter.getAdapter(LocaleProviderAdapter.java:250) at java.base/java.text.Collator.getInstance(Collator.java:240) at java.base/java.text.Collator.getInstance(Collator.java:225) at java.base/sun.security.tools.KeyStoreUtil.<clinit>(KeyStoreUtil.java:66) at java.base/sun.security.pkcs12.PKCS12KeyStore.engineLoad(PKCS12KeyStore.java:2199) at java.base/sun.security.util.KeyStoreDelegator.engineLoad(KeyStoreDelegator.java:220) at java.base/java.security.KeyStore.load(KeyStore.java:1472) at java.base/sun.security.util.PolicyUtil.getKeyStore(PolicyUtil.java:166) at java.base/sun.security.provider.PolicyFile.init(PolicyFile.java:523) at java.base/sun.security.provider.PolicyFile$4.run(PolicyFile.java:413) at java.base/sun.security.provider.PolicyFile$4.run(PolicyFile.java:385) at java.base/java.security.AccessController.doPrivileged(AccessController.java:312) at java.base/sun.security.provider.PolicyFile.initPolicyFile(PolicyFile.java:385) at java.base/sun.security.provider.PolicyFile.initPolicyFile(PolicyFile.java:372) at java.base/sun.security.provider.PolicyFile.init(PolicyFile.java:329) at java.base/sun.security.provider.PolicyFile.<init>(PolicyFile.java:283) at java.base/java.security.Policy.loadPolicyProvider(Policy.java:207) at java.base/java.security.Policy.getPolicyNoCheck(Policy.java:178) at java.base/java.security.ProtectionDomain.implies(ProtectionDomain.java:321) at java.base/java.security.ProtectionDomain.impliesWithAltFilePerm(ProtectionDomain.java:353) at java.base/java.security.AccessControlContext.checkPermission(AccessControlContext.java:450) at java.base/java.security.AccessController.checkPermission(AccessController.java:1036) at java.base/java.lang.SecurityManager.checkPermission(SecurityManager.java:408) at java.base/java.lang.SecurityManager.checkPropertyAccess(SecurityManager.java:1152) at java.base/java.lang.System.getProperty(System.java:829) at java.xml.crypto/org.jcp.xml.dsig.internal.dom.XMLDSigRI$1.run(XMLDSigRI.java:64) at java.xml.crypto/org.jcp.xml.dsig.internal.dom.XMLDSigRI$1.run(XMLDSigRI.java:62) at java.base/java.security.AccessController.doPrivileged(AccessController.java:312) at java.xml.crypto/org.jcp.xml.dsig.internal.dom.XMLDSigRI.<clinit>(XMLDSigRI.java:62) at java.base/jdk.internal.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method) at java.base/jdk.internal.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:62) at java.base/jdk.internal.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:45) at java.base/java.lang.reflect.Constructor.newInstanceWithCaller(Constructor.java:500) at java.base/java.lang.reflect.Constructor.newInstance(Constructor.java:481) at java.base/java.util.ServiceLoader$ProviderImpl$2.run(ServiceLoader.java:790) at java.base/java.security.AccessController.doPrivileged(AccessController.java:691) at java.base/java.util.ServiceLoader$ProviderImpl.newInstance(ServiceLoader.java:795) ... 103 more Caused by: java.lang.ClassCircularityError: sun/util/resources/cldr/provider/CLDRLocaleDataMetaInfo at java.base/java.lang.ClassLoader.defineClass2(Native Method) at java.base/java.lang.ClassLoader.defineClass(ClassLoader.java:1106) at java.base/java.security.SecureClassLoader.defineClass(SecureClassLoader.java:183) at java.base/jdk.internal.loader.BuiltinClassLoader.defineClass(BuiltinClassLoader.java:784) at java.base/jdk.internal.loader.BuiltinClassLoader.lambda$findClassInModuleOrNull$2(BuiltinClassLoader.java:707) at java.base/java.security.AccessController.doPrivileged(AccessController.java:312) at java.base/jdk.internal.loader.BuiltinClassLoader.findClassInModuleOrNull(BuiltinClassLoader.java:708) at java.base/jdk.internal.loader.BuiltinClassLoader.findClass(BuiltinClassLoader.java:586) at java.base/java.lang.ClassLoader.loadClass(ClassLoader.java:632) at java.base/java.lang.Class.forName(Class.java:509) at java.base/java.util.ServiceLoader.lambda$loadProvider$1(ServiceLoader.java:859) at java.base/java.security.AccessController.doPrivileged(AccessController.java:554) at java.base/java.util.ServiceLoader.loadProvider(ServiceLoader.java:861) ... 156 more
13-04-2020
Here is the SunEC recursion stack trace error when java.security.debug tracing is enabled. PKCS12KeyStore is trying to instantiate a "PBE" AlgorithmParameters instance which is in the SunJCE provider, and while searching for that algorithm across all configured providers, SunEC is loaded recursively: policy: reading file:/Users/smullan/tests/8196415/SignedJar/SignedJarTest_1.policy Provider: KeyStore.PKCS12 type from: SUN policy: reading passwordfile:keypass policy: reading keystorefile:both.jks pkcs12: Loading PKCS#7 data ProviderConfig: Recursion loading provider: SunEC java.lang.Exception: Call trace at java.base/sun.security.jca.ProviderConfig.getProvider(ProviderConfig.java:210) at java.base/sun.security.jca.ProviderList.getProvider(ProviderList.java:267) at java.base/sun.security.jca.ProviderList.getService(ProviderList.java:380) at java.base/sun.security.jca.GetInstance.getInstance(GetInstance.java:157) at java.base/java.security.Security.getImpl(Security.java:700) at java.base/java.security.AlgorithmParameters.getInstance(AlgorithmParameters.java:157) at java.base/sun.security.pkcs12.PKCS12KeyStore.parseAlgParameters(PKCS12KeyStore.java:818) at java.base/sun.security.pkcs12.PKCS12KeyStore.engineLoad(PKCS12KeyStore.java:2059) at java.base/sun.security.util.KeyStoreDelegator.engineLoad(KeyStoreDelegator.java:220) at java.base/java.security.KeyStore.load(KeyStore.java:1472) at java.base/sun.security.util.PolicyUtil.getKeyStore(PolicyUtil.java:166) at java.base/sun.security.provider.PolicyFile.init(PolicyFile.java:523) at java.base/sun.security.provider.PolicyFile$4.run(PolicyFile.java:413) at java.base/sun.security.provider.PolicyFile$4.run(PolicyFile.java:385) at java.base/java.security.AccessController.doPrivileged(AccessController.java:312) at java.base/sun.security.provider.PolicyFile.initPolicyFile(PolicyFile.java:385) at java.base/sun.security.provider.PolicyFile.initPolicyFile(PolicyFile.java:372) at java.base/sun.security.provider.PolicyFile.init(PolicyFile.java:329) at java.base/sun.security.provider.PolicyFile.<init>(PolicyFile.java:283) at java.base/java.security.Policy.loadPolicyProvider(Policy.java:207) at java.base/java.security.Policy.getPolicyNoCheck(Policy.java:178) at java.base/java.security.ProtectionDomain.implies(ProtectionDomain.java:321) at java.base/java.security.ProtectionDomain.impliesWithAltFilePerm(ProtectionDomain.java:353) at java.base/java.security.AccessControlContext.checkPermission(AccessControlContext.java:450) at java.base/java.security.AccessController.checkPermission(AccessController.java:1036) at java.base/java.lang.SecurityManager.checkPermission(SecurityManager.java:408) at java.base/java.lang.SecurityManager.checkPackageAccess(SecurityManager.java:1324) at java.base/java.lang.ClassLoader$1.run(ClassLoader.java:689) at java.base/java.lang.ClassLoader$1.run(ClassLoader.java:687) at java.base/java.security.AccessController.doPrivileged(AccessController.java:391) at java.base/java.lang.ClassLoader.checkPackageAccess(ClassLoader.java:687) at java.smartcardio/sun.security.smartcardio.SunPCSC.<init>(SunPCSC.java:69) at java.base/jdk.internal.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method) at java.base/jdk.internal.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:62) at java.base/jdk.internal.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:45) at java.base/java.lang.reflect.Constructor.newInstanceWithCaller(Constructor.java:500) at java.base/java.lang.reflect.Constructor.newInstance(Constructor.java:481) at java.base/java.util.ServiceLoader$ProviderImpl$2.run(ServiceLoader.java:790) at java.base/java.security.AccessController.doPrivileged(AccessController.java:691) at java.base/java.util.ServiceLoader$ProviderImpl.newInstance(ServiceLoader.java:795) at java.base/java.util.ServiceLoader$ProviderImpl.get(ServiceLoader.java:724) at java.base/java.util.ServiceLoader$3.next(ServiceLoader.java:1396) at java.base/sun.security.jca.ProviderConfig$ProviderLoader.load(ProviderConfig.java:335) at java.base/sun.security.jca.ProviderConfig$3.run(ProviderConfig.java:243) at java.base/sun.security.jca.ProviderConfig$3.run(ProviderConfig.java:237) at java.base/java.security.AccessController.doPrivileged(AccessController.java:312) at java.base/sun.security.jca.ProviderConfig.doLoadProvider(ProviderConfig.java:237) at java.base/sun.security.jca.ProviderConfig.getProvider(ProviderConfig.java:217) at java.base/sun.security.jca.ProviderList.getProvider(ProviderList.java:267) at java.base/sun.security.jca.ProviderList.getService(ProviderList.java:380) at java.base/sun.security.jca.GetInstance.getInstance(GetInstance.java:157) at java.base/java.security.Security.getImpl(Security.java:700) at java.base/java.security.AlgorithmParameters.getInstance(AlgorithmParameters.java:157) at java.base/sun.security.pkcs12.PKCS12KeyStore.parseAlgParameters(PKCS12KeyStore.java:818) at java.base/sun.security.pkcs12.PKCS12KeyStore.engineLoad(PKCS12KeyStore.java:2059) at java.base/sun.security.util.KeyStoreDelegator.engineLoad(KeyStoreDelegator.java:220) at java.base/java.security.KeyStore.load(KeyStore.java:1472) at java.base/sun.security.util.PolicyUtil.getKeyStore(PolicyUtil.java:166) at java.base/sun.security.provider.PolicyFile.init(PolicyFile.java:523) at java.base/sun.security.provider.PolicyFile$4.run(PolicyFile.java:413) at java.base/sun.security.provider.PolicyFile$4.run(PolicyFile.java:385) at java.base/java.security.AccessController.doPrivileged(AccessController.java:312) at java.base/sun.security.provider.PolicyFile.initPolicyFile(PolicyFile.java:385) at java.base/sun.security.provider.PolicyFile.initPolicyFile(PolicyFile.java:372) at java.base/sun.security.provider.PolicyFile.init(PolicyFile.java:329) at java.base/sun.security.provider.PolicyFile.<init>(PolicyFile.java:283) at java.base/java.security.Policy.loadPolicyProvider(Policy.java:207) at java.base/java.security.Policy.getPolicyNoCheck(Policy.java:178) at java.base/java.security.ProtectionDomain.implies(ProtectionDomain.java:321) at java.base/java.security.ProtectionDomain.impliesWithAltFilePerm(ProtectionDomain.java:353) at java.base/java.security.AccessControlContext.checkPermission(AccessControlContext.java:450) at java.base/java.security.AccessController.checkPermission(AccessController.java:1036) at java.base/java.lang.SecurityManager.checkPermission(SecurityManager.java:408) at java.base/java.lang.SecurityManager.checkPackageAccess(SecurityManager.java:1324) at java.base/java.lang.ClassLoader$1.run(ClassLoader.java:689) at java.base/java.lang.ClassLoader$1.run(ClassLoader.java:687) at java.base/java.security.AccessController.doPrivileged(AccessController.java:391) at java.base/java.lang.ClassLoader.checkPackageAccess(ClassLoader.java:687) at java.base/java.lang.ClassLoader.defineClass2(Native Method) at java.base/java.lang.ClassLoader.defineClass(ClassLoader.java:1106) at java.base/java.security.SecureClassLoader.defineClass(SecureClassLoader.java:183) at java.base/jdk.internal.loader.BuiltinClassLoader.defineClass(BuiltinClassLoader.java:784) at java.base/jdk.internal.loader.BuiltinClassLoader.lambda$findClassInModuleOrNull$2(BuiltinClassLoader.java:707) at java.base/java.security.AccessController.doPrivileged(AccessController.java:312) at java.base/jdk.internal.loader.BuiltinClassLoader.findClassInModuleOrNull(BuiltinClassLoader.java:708) at java.base/jdk.internal.loader.BuiltinClassLoader.findClass(BuiltinClassLoader.java:586) at java.base/java.lang.ClassLoader.loadClass(ClassLoader.java:632) at java.base/java.lang.Class.forName(Class.java:509) at java.base/java.util.ServiceLoader.lambda$loadProvider$1(ServiceLoader.java:859) at java.base/java.security.AccessController.doPrivileged(AccessController.java:554) at java.base/java.util.ServiceLoader.loadProvider(ServiceLoader.java:861) at java.base/java.util.ServiceLoader$ModuleServicesLookupIterator.hasNext(ServiceLoader.java:1078) at java.base/java.util.ServiceLoader$2.hasNext(ServiceLoader.java:1301) at java.base/java.util.ServiceLoader$3.hasNext(ServiceLoader.java:1386) at java.base/sun.util.cldr.CLDRLocaleProviderAdapter$1.run(CLDRLocaleProviderAdapter.java:89) at java.base/sun.util.cldr.CLDRLocaleProviderAdapter$1.run(CLDRLocaleProviderAdapter.java:86) at java.base/java.security.AccessController.doPrivileged(AccessController.java:554) at java.base/sun.util.cldr.CLDRLocaleProviderAdapter.<init>(CLDRLocaleProviderAdapter.java:86) at java.base/jdk.internal.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method) at java.base/jdk.internal.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:62) at java.base/jdk.internal.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:45) at java.base/java.lang.reflect.Constructor.newInstanceWithCaller(Constructor.java:500) at java.base/java.lang.reflect.ReflectAccess.newInstance(ReflectAccess.java:124) at java.base/jdk.internal.reflect.ReflectionFactory.newInstance(ReflectionFactory.java:346) at java.base/java.lang.Class.newInstance(Class.java:608) at java.base/sun.util.locale.provider.LocaleProviderAdapter.forType(LocaleProviderAdapter.java:176) at java.base/sun.util.locale.provider.LocaleProviderAdapter.findAdapter(LocaleProviderAdapter.java:279) at java.base/sun.util.locale.provider.LocaleProviderAdapter.getAdapter(LocaleProviderAdapter.java:250) at java.base/java.util.Calendar.createCalendar(Calendar.java:1693) at java.base/java.util.Calendar.getInstance(Calendar.java:1661) at java.base/java.text.SimpleDateFormat.initializeCalendar(SimpleDateFormat.java:677) at java.base/java.text.SimpleDateFormat.<init>(SimpleDateFormat.java:621) at java.base/java.text.SimpleDateFormat.<init>(SimpleDateFormat.java:600) at java.base/sun.security.util.DisabledAlgorithmConstraints$DenyAfterConstraint.<clinit>(DisabledAlgorithmConstraints.java:652) at java.base/sun.security.util.DisabledAlgorithmConstraints$Constraints.<init>(DisabledAlgorithmConstraints.java:371) at java.base/sun.security.util.DisabledAlgorithmConstraints.<init>(DisabledAlgorithmConstraints.java:121) at java.base/sun.security.util.DisabledAlgorithmConstraints.<init>(DisabledAlgorithmConstraints.java:88) at java.base/sun.security.pkcs.SignerInfo.<clinit>(SignerInfo.java:73) at java.base/sun.security.pkcs.PKCS7.parseSignedData(PKCS7.java:391) at java.base/sun.security.pkcs.PKCS7.parse(PKCS7.java:186) at java.base/sun.security.pkcs.PKCS7.parse(PKCS7.java:154) at java.base/sun.security.pkcs.PKCS7.<init>(PKCS7.java:136) at java.base/sun.security.util.SignatureFileVerifier.<init>(SignatureFileVerifier.java:126) at java.base/java.util.jar.JarVerifier.processEntry(JarVerifier.java:297) at java.base/java.util.jar.JarVerifier.update(JarVerifier.java:230) at java.base/java.util.jar.JarFile.initializeVerifier(JarFile.java:759) at java.base/java.util.jar.JarFile.getInputStream(JarFile.java:840) at java.base/jdk.internal.loader.URLClassPath$JarLoader$2.getInputStream(URLClassPath.java:869) at java.base/jdk.internal.loader.Resource.cachedInputStream(Resource.java:77) at java.base/jdk.internal.loader.Resource.getByteBuffer(Resource.java:163) at java.base/jdk.internal.loader.BuiltinClassLoader.defineClass(BuiltinClassLoader.java:816) at java.base/jdk.internal.loader.BuiltinClassLoader$4.run(BuiltinClassLoader.java:736) at java.base/jdk.internal.loader.BuiltinClassLoader$4.run(BuiltinClassLoader.java:731) at java.base/java.security.AccessController.doPrivileged(AccessController.java:312) at java.base/jdk.internal.loader.BuiltinClassLoader.findClassOnClassPathOrNull(BuiltinClassLoader.java:744) at java.base/jdk.internal.loader.BuiltinClassLoader.loadClassOrNull(BuiltinClassLoader.java:646) at java.base/jdk.internal.loader.BuiltinClassLoader.loadClass(BuiltinClassLoader.java:604) at java.base/jdk.internal.loader.ClassLoaders$AppClassLoader.loadClass(ClassLoaders.java:178) at java.base/java.lang.ClassLoader.loadClass(ClassLoader.java:520) at java.base/java.lang.Class.forName0(Native Method) at java.base/java.lang.Class.forName(Class.java:431) at java.base/sun.launcher.LauncherHelper.loadMainClass(LauncherHelper.java:780) at java.base/sun.launcher.LauncherHelper.checkAndLoadMain(LauncherHelper.java:675)
13-04-2020