Loading...

XML

Word

Printable

Details

Type: Bug
Resolution: Fixed
Priority: Critical
Fix Version/s: 1.3.4
Affects Version/s: 1.2.5
Component/s: None
Labels:
None
Environment:
Java 6 (openJDK, Apple JVM)

Description

This problem affects all versions since 1.2.5, when using Java 6 and an unprotected bucket is used.

The JDK 6 (at least OpenJDK, as seen from sources, and Apple JVM, as seen from execution) implementation of HmacCore fails with an InvalidKeyException ("Missing key data").

Caused by: java.security.InvalidKeyException: Missing key data

	at com.sun.crypto.provider.HmacCore.a(DashoA13*..)

	at com.sun.crypto.provider.HmacCore$HmacSHA512.engineInit(DashoA13*..)

	at javax.crypto.Mac.a(DashoA13*..)

	at javax.crypto.Mac.init(DashoA13*..)

	at com.couchbase.client.core.security.sasl.ShaSaslClient.pbkdf2(ShaSaslClient.java:256)

It seems that accepting emtpy keys was only added in OpenJDK 7

http://grepcode.com/file_/repository.grepcode.com/java/root/jdk/openjdk/7u40-b43/com/sun/crypto/provider/HmacCore.java/?v=diff&id2=6-b14#119

Attachments

Gerrit Reviews

- Issue Only
- Show All Reviews
- Show Open Reviews
- Show All Issues
- Show Open Issues

For Gerrit Dashboard: JVMCBC-365
#	Subject	Branch	Project	Status	CR	V
68088,2	JVMCBC-365: Fail with better exception on InvalidKeyException.	master	couchbase-jvm-core	Status: MERGED	+2	+1

Activity

People

Assignee:: Michael Nitschinger

Reporter:: Simon Baslé (Inactive)

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 02/Sep/16 8:20 AM

Updated:: 28/Sep/16 4:19 AM

Resolved:: 28/Sep/16 4:19 AM

Gerrit Reviews

There are no open Gerrit changes

Show There is 1 closed Gerrit change

Hide There is 1 closed Gerrit change

JVMCBC-365: Fail with better exception on InvalidKeyException.: Gerrit Review:

ShaSaslClient fails with empty key on some JDKs (bucket w/o passwd)

Details

Description

Attachments

Gerrit Reviews

Activity

People

Dates

Gerrit Reviews

PagerDuty