gt;>certificates. When I use client and server certificates from my own CA
> >>with 1024 bit keys it works perfectly. When I get a commercial
> >>certificate with a longer key (4096 bits), I get the following error
> >>(full message below) when I connect to apache:
>
cates from my own CA
with 1024 bit keys it works perfectly. When I get a commercial
certificate with a longer key (4096 bits), I get the following error
(full message below) when I connect to apache:
javax.net.ssl.SSLProtocolException: java.io.IOException: subject key,
Unknown key spec: Invalid
TECTED]>
Date: Saturday, June 12, 2004 10:30 pm
Subject: Re: Invalid RSA modulus size
> Tim,
>
> This is believed to be a limitation of all Sun's JCE/JSSE
> implementations up to Java version 1.5. You can try testing your
> application with Java 1.5-b2 to see if the problem ha
s means "full strength" of the implementation.
If the implementation is crippled, that won't help you.
cheers,
Roland
Tim Wild <[EMAIL PROTECTED]>
21.06.2004 07:23
Please respond to
"Commons HttpClient Project"
To
Commons HttpClient Project <[EMAIL P
this? It works fine in JDK 1.5 but not
1.4, which would indicate to me that it's a bug rather than it being
disabled. The exception i'm getting in JDK 1.4.2 is
javax.net.ssl.SSLProtocolException: java.io.IOException: subject key,
Unknown key spec: Invalid RSA modulus size
Thanks
T
library which is not subject to US or other export
restrictions on cryptography.
cheers,
Roland
Tim Wild <[EMAIL PROTECTED]>
21.06.2004 05:19
Please respond to
"Commons HttpClient Project"
To
Commons HttpClient Project <[EMAIL PROTECTED]>
cc
Subject
Re: Invalid RSA m
following error
(full message below) when I connect to apache:
javax.net.ssl.SSLProtocolException: java.io.IOException: subject key,
Unknown key spec: Invalid RSA modulus size.
Google produced one result, which talked about a maximum key size using
the JCE of 2048 bits using the JDK 1.4.2 defau
ng larger keys
Hope this helps
Oleg
-Original Message-
From: Tim Wild [mailto:[EMAIL PROTECTED]
Sent: Thursday, June 17, 2004 1:43
To: Commons HttpClient Project
Subject: Re: Invalid RSA modulus size
Thanks for that Oleg, you were indeed correct. Using JDK1.4 I couldn't
get t
7;t helping me much here. Does
anyone know of a suitable provider that might have a working version of
JSSE/JCE?
FYI the error i'm talking getting is:
javax.net.ssl.SSLProtocolException: java.io.IOException: subject key,
Unknown key spec: Invalid RSA modulus size.
One tip I found: if
Becke <[EMAIL PROTECTED]>
Date: Tuesday, June 15, 2004 2:58 pm
Subject: Re: Invalid RSA modulus size
Hi Tim,
This generally means the the server's cert is signed by an
untrusted
CA. You can get around this in a couple of ways.
- import the servers cert into the keystore you are using
HttpClient Project
Subject: Re: Invalid RSA modulus size
Thanks Michael. I have the CA cert and the chained CA certs in my
/jre/lib/security/cacerts file. That CA issued the server
cert too. It all works fine when I use Mozilla.
I'm pretty sure it's a problem with certificate chaining, as whe
oject"
To
Commons HttpClient Project <[EMAIL PROTECTED]>
cc
Subject
Re: Invalid RSA modulus size
Thanks Michael. I have the CA cert and the chained CA certs in my
/jre/lib/security/cacerts file. That CA issued the server
cert too. It all works fine when I use Mozilla.
I'm pret
ate: Tuesday, June 15, 2004 2:58 pm
Subject: Re: Invalid RSA modulus size
> Hi Tim,
>
> This generally means the the server's cert is signed by an
> untrusted
> CA. You can get around this in a couple of ways.
>
> - import the servers cert into the keystore you are us
Exception: java.io.IOException: subject
key, Unknown key spec: Invalid RSA modulus size.
Google produced one result, which talked about a maximum key size
using the JCE of 2048 bits using the JDK 1.4.2 default policy files.
Another site suggested getting the unrestricted policy files, so I
got
own CA
with 1024 bit keys it works perfectly. When I get a commercial
certificate with a longer key (4096 bits), I get the following error
(full message below) when I connect to apache:
javax.net.ssl.SSLProtocolException: java.io.IOException: subject key,
Unknown key spec: Invalid RSA modulus siz
s perfectly. When I get a commercial
> certificate with a longer key (4096 bits), I get the following error
> (full message below) when I connect to apache:
>
> javax.net.ssl.SSLProtocolException: java.io.IOException: subject key,
> Unknown key spec: Invalid RSA modulus size.
>
> Go
below) when I connect to apache:
javax.net.ssl.SSLProtocolException: java.io.IOException: subject key,
Unknown key spec: Invalid RSA modulus size.
Google produced one result, which talked about a maximum key size using
the JCE of 2048 bits using the JDK 1.4.2 default policy files. Another
17 matches
Mail list logo