java.lang.IllegalArgumentException: System property jdk.tls.namedGroups(null) contains no supported elliptic curves
Affects | Status | Importance | Assigned to | Milestone | ||
---|---|---|---|---|---|---|
openjdk-7 (Ubuntu) | ||||||
Trusty |
Fix Released
|
High
|
Tiago Stürmer Daitx |
Bug Description
Tested with the puppetserver package (version 2.2.0-1puppetla
When running:
$ openssl s_client -showcerts -connect "$(hostname -f):8140"
The following java exception is thrown in the puppetserver:
2017-05-16 14:20:42,835 WARN [qtp1887840931-59] [o.e.j.
java.lang.
at sun.security.
at sun.security.
at sun.security.
at sun.security.
at sun.security.
at sun.security.
at java.security.
at sun.security.
at org.eclipse.
at org.eclipse.
at org.eclipse.
at org.eclipse.
at org.eclipse.
at java.lang.
Caused by: java.lang.
at sun.security.
... 14 common frames omitted
This bug seems to be the same as the one described in:
- https:/
- https:/
- http://
It looks like this was introduced by adding open-jdk 7u131-2.6.9-0 to http://
EDIT: WORKAROUND
The original workaround steps no longer work because the required package has been removed from http://
The new steps make you use the repository at https:/
$ gpg --ignore-
apt/trustdb.gpg --keyring /etc/apt/
$ echo "deb http://
deb-src http://
$ apt-get update
$ apt-get install openjdk-
$ service puppetserver restart
----
> We also need:
> 1) The release of Ubuntu you are using, via 'lsb_release -rd' or System -> About Ubuntu
$ lsb_release -rd
Description: Ubuntu 14.04.5 LTS
Release: 14.04
> 2) The version of the package you are using, via 'apt-cache policy pkgname' or by checking in Software Center
$ apt-cache policy openjdk-
openjdk-
Installed: 7u131-2.
Candidate: 7u131-2.
Version table:
*** 7u131-2.
500 http://
500 http://
100 /var/lib/
7u51-
500 http://
> 3) What you expected to happen
We expected this command to return certificate information for a web server:
$ openssl s_client -showcerts -connect "$(hostname -f):8140"
> 4) What happened instead
The command failed and the webserver had a Java stack trace (see above).
ProblemType: Bug
DistroRelease: Ubuntu 14.04
Package: openjdk-
ProcVersionSign
Uname: Linux 3.19.0-58-generic x86_64
ApportVersion: 2.14.1-0ubuntu3.23
Architecture: amd64
Date: Tue May 16 14:21:01 2017
Ec2AMI: ami-30b59b43
Ec2AMIManifest: (unknown)
Ec2Availability
Ec2InstanceType: t2.small
Ec2Kernel: unavailable
Ec2Ramdisk: unavailable
ProcEnviron:
TERM=screen-
PATH=(custom, no user)
XDG_RUNTIME_
LANG=en_US.UTF-8
SHELL=/bin/bash
SourcePackage: openjdk-7
UpgradeStatus: No upgrade log present (probably fresh install)
Changed in openjdk-7 (Ubuntu): | |
assignee: | nobody → Tiago Stürmer Daitx (tdaitx) |
status: | Confirmed → In Progress |
tags: | added: regression-update |
Changed in openjdk-7 (Ubuntu Trusty): | |
importance: | Undecided → High |
Changed in openjdk-7 (Ubuntu Trusty): | |
assignee: | nobody → Tiago Stürmer Daitx (tdaitx) |
status: | New → In Progress |
Changed in openjdk-7 (Ubuntu): | |
status: | In Progress → Invalid |
description: | updated |
no longer affects: | openjdk-7 (Ubuntu) |
Status changed to 'Confirmed' because the bug affects multiple users.