"After upgrading the various openjdk-6-* packages to version 6b27-1.12.6-1ubuntu0.10.04.4 on our server, all incoming client connections started failing with the following error message at the top of the stack dump (on the client side).
javax.xml.ws.soap.SOAPFaultException: java.security.NoSuchAlgorithmException: Cannot find any provider supporting RSA/ECB/OAEPPadding
(Previously we were running version 6b27-1.12.5-0ubuntu0.10.04.1 of the packages without seeing this problem.)
Indeed, applying the patch in http://hg.openjdk.java.net/jdk7u/jdk7u-dev/jdk/rev/c5d869453212 resolves the issue. This is known to affect at least 1.13.1 and 2.4.5. Note, the patch includes a test case but in our openjdk-6 builds it didn't get run as part of the testsuite. I did not investigate why, but it can be run manually with:
$ javac -XDignore.symbol.file GetInstance.java # GetInstance.java from patch
$ java GetInstance
A patched openjdk will exit with '0' while unpatched will throw the exception.
The following bug was filed in Ubuntu against openjdk-6: /bugs.launchpad .net/ubuntu/ +source/ openjdk- 6/+bug/ 1283828
https:/
"After upgrading the various openjdk-6-* packages to version 6b27-1. 12.6-1ubuntu0. 10.04.4 on our server, all incoming client connections started failing with the following error message at the top of the stack dump (on the client side). ws.soap. SOAPFaultExcept ion: java.security. NoSuchAlgorithm Exception: Cannot find any provider supporting RSA/ECB/OAEPPadding
javax.xml.
(Previously we were running version 6b27-1. 12.5-0ubuntu0. 10.04.1 of the packages without seeing this problem.)
comment #1: bugs.java. com/bugdatabase /view_bug. do?bug_ id=8017173
It looks like this is the JDK 6 version of the JDK 7 problem described in:
http://
That bug was apparently fixed in JDK 7 by this one-line commit: hg.openjdk. java.net/ jdk7u/jdk7u- dev/jdk/ rev/c5d86945321 2
http://
In the JDK6 upstream, it seems this patch is the one that introduced the "OAEPPadding" string : hg.openjdk. java.net/ jdk6/jdk6/ jdk/diff/ f3d02dd3dee5/ src/share/ classes/ com/sun/ org/apache/ xml/internal/ security/ algorithms/ JCEMapper. java
http://
(part of S6741606 "Integrate Apache Santuario"), but I haven't found any sign that the fix from S88017173 is being backported to the JDK6 codeline upstream....
"
Indeed, applying the patch in http:// hg.openjdk. java.net/ jdk7u/jdk7u- dev/jdk/ rev/c5d86945321 2 resolves the issue. This is known to affect at least 1.13.1 and 2.4.5. Note, the patch includes a test case but in our openjdk-6 builds it didn't get run as part of the testsuite. I did not investigate why, but it can be run manually with: symbol. file GetInstance.java # GetInstance.java from patch
$ javac -XDignore.
$ java GetInstance
A patched openjdk will exit with '0' while unpatched will throw the exception.