Re: Invalid RSA modulus size

2004-07-14 Thread Oleg Kalnichevski
gt;>certificates. When I use client and server certificates from my own CA > >>with 1024 bit keys it works perfectly. When I get a commercial > >>certificate with a longer key (4096 bits), I get the following error > >>(full message below) when I connect to apache: >

Re: Invalid RSA modulus size

2004-07-13 Thread Tim Wild
cates from my own CA with 1024 bit keys it works perfectly. When I get a commercial certificate with a longer key (4096 bits), I get the following error (full message below) when I connect to apache: javax.net.ssl.SSLProtocolException: java.io.IOException: subject key, Unknown key spec: Invalid

Re: Invalid RSA modulus size

2004-06-22 Thread Tim Wild
TECTED]> Date: Saturday, June 12, 2004 10:30 pm Subject: Re: Invalid RSA modulus size > Tim, > > This is believed to be a limitation of all Sun's JCE/JSSE > implementations up to Java version 1.5. You can try testing your > application with Java 1.5-b2 to see if the problem ha

Re: Invalid RSA modulus size

2004-06-20 Thread Roland Weber
s means "full strength" of the implementation. If the implementation is crippled, that won't help you. cheers, Roland Tim Wild <[EMAIL PROTECTED]> 21.06.2004 07:23 Please respond to "Commons HttpClient Project" To Commons HttpClient Project <[EMAIL P

Re: Invalid RSA modulus size

2004-06-20 Thread Tim Wild
this? It works fine in JDK 1.5 but not 1.4, which would indicate to me that it's a bug rather than it being disabled. The exception i'm getting in JDK 1.4.2 is javax.net.ssl.SSLProtocolException: java.io.IOException: subject key, Unknown key spec: Invalid RSA modulus size Thanks T

Re: Invalid RSA modulus size

2004-06-20 Thread Roland Weber
library which is not subject to US or other export restrictions on cryptography. cheers, Roland Tim Wild <[EMAIL PROTECTED]> 21.06.2004 05:19 Please respond to "Commons HttpClient Project" To Commons HttpClient Project <[EMAIL PROTECTED]> cc Subject Re: Invalid RSA m

Re: Invalid RSA modulus size

2004-06-20 Thread Tim Wild
following error (full message below) when I connect to apache: javax.net.ssl.SSLProtocolException: java.io.IOException: subject key, Unknown key spec: Invalid RSA modulus size. Google produced one result, which talked about a maximum key size using the JCE of 2048 bits using the JDK 1.4.2 defau

RE: Invalid RSA modulus size

2004-06-17 Thread Kalnichevski, Oleg
ng larger keys Hope this helps Oleg -Original Message- From: Tim Wild [mailto:[EMAIL PROTECTED] Sent: Thursday, June 17, 2004 1:43 To: Commons HttpClient Project Subject: Re: Invalid RSA modulus size Thanks for that Oleg, you were indeed correct. Using JDK1.4 I couldn't get t

Re: Invalid RSA modulus size

2004-06-16 Thread Tim Wild
7;t helping me much here. Does anyone know of a suitable provider that might have a working version of JSSE/JCE? FYI the error i'm talking getting is: javax.net.ssl.SSLProtocolException: java.io.IOException: subject key, Unknown key spec: Invalid RSA modulus size. One tip I found: if

Re: Invalid RSA modulus size

2004-06-15 Thread Eric Johnson
Becke <[EMAIL PROTECTED]> Date: Tuesday, June 15, 2004 2:58 pm Subject: Re: Invalid RSA modulus size Hi Tim, This generally means the the server's cert is signed by an untrusted CA. You can get around this in a couple of ways. - import the servers cert into the keystore you are using

RE: Invalid RSA modulus size

2004-06-15 Thread Kalnichevski, Oleg
HttpClient Project Subject: Re: Invalid RSA modulus size Thanks Michael. I have the CA cert and the chained CA certs in my /jre/lib/security/cacerts file. That CA issued the server cert too. It all works fine when I use Mozilla. I'm pretty sure it's a problem with certificate chaining, as whe

Re: Invalid RSA modulus size

2004-06-15 Thread Roland Weber
oject" To Commons HttpClient Project <[EMAIL PROTECTED]> cc Subject Re: Invalid RSA modulus size Thanks Michael. I have the CA cert and the chained CA certs in my /jre/lib/security/cacerts file. That CA issued the server cert too. It all works fine when I use Mozilla. I'm pret

Re: Invalid RSA modulus size

2004-06-14 Thread Tim Wild
ate: Tuesday, June 15, 2004 2:58 pm Subject: Re: Invalid RSA modulus size > Hi Tim, > > This generally means the the server's cert is signed by an > untrusted > CA. You can get around this in a couple of ways. > > - import the servers cert into the keystore you are us

Re: Invalid RSA modulus size

2004-06-14 Thread Michael Becke
Exception: java.io.IOException: subject key, Unknown key spec: Invalid RSA modulus size. Google produced one result, which talked about a maximum key size using the JCE of 2048 bits using the JDK 1.4.2 default policy files. Another site suggested getting the unrestricted policy files, so I got

Re: Invalid RSA modulus size

2004-06-14 Thread Tim Wild
own CA with 1024 bit keys it works perfectly. When I get a commercial certificate with a longer key (4096 bits), I get the following error (full message below) when I connect to apache: javax.net.ssl.SSLProtocolException: java.io.IOException: subject key, Unknown key spec: Invalid RSA modulus siz

Re: Invalid RSA modulus size

2004-06-12 Thread Oleg Kalnichevski
s perfectly. When I get a commercial > certificate with a longer key (4096 bits), I get the following error > (full message below) when I connect to apache: > > javax.net.ssl.SSLProtocolException: java.io.IOException: subject key, > Unknown key spec: Invalid RSA modulus size. > > Go

Invalid RSA modulus size

2004-06-11 Thread Tim Wild
below) when I connect to apache: javax.net.ssl.SSLProtocolException: java.io.IOException: subject key, Unknown key spec: Invalid RSA modulus size. Google produced one result, which talked about a maximum key size using the JCE of 2048 bits using the JDK 1.4.2 default policy files. Another