On 9/14/07, Simon Laws <[EMAIL PROTECTED]> wrote:
>
>
>
> On 9/14/07, Venkata Krishnan <[EMAIL PROTECTED]> wrote:
> >
> > HI Sebasitien,
> >
> > I just figured out that there is no need to generate the keys i.e.
> > the
> > tuscanyKeys.jks again. Please go over to the
> > jre\lib\security\java.security
> > of the IBM JDK installation and set up the security providers as
> > follows.
> >
> > #
> > # List of providers and their preference orders (see above):
> > #
> > security.provider.1=org.bouncycastle.jce.provider.BouncyCastleProvider
> > security.provider.3=com.ibm.jsse2.IBMJSSEProvider2
> > security.provider.2=com.ibm.crypto.provider.IBMJCE
> > security.provider.4=com.ibm.security.jgss.IBMJGSSProvider
> > security.provider.5=com.ibm.security.cert.IBMCertPath
> > security.provider.6=com.ibm.security.sasl.IBMSASL
> >
> > I found this fixing the problem. Let me know if this works for you
> > as
> > well.
> >
> > thanks
> >
> > - Venkat
> > On 9/12/07, Jean-Sebastien Delfino <[EMAIL PROTECTED]> wrote:
> > >
> > > Venkata Krishnan wrote:
> > > > Hi Sebastien,
> > > >
> > > > There is nothing that needs to be done in the environment. The
only
> > > > dependency that I had trouble linking to the classpath from the
> > maven
> > > repo
> > > > during a maven build is the rampart.mar which I have now
> > temporarilty
> > > > packaged with the module.
> > > >
> > > > I suspect it could be to do with the key store and the JDK
version
> > you
> > > are
> > > > using. Could you please try creating it with the following
command:
> >
> > > >
> > > > *keytool -genkey -alias TuscanyWsUser -keyalg RSA -keystore
> > > tuscanyKeys.jks
> > > >
> > > > *
> > > >
> > > > All thro, for everthing there is just one password I have used
> > > > and
> > it is
> > > > 'TuscanyWsUserPasswd' and there is just one user id which is
> > > TuscanyWsUser.
> > > >
> > > >
> > >
> > > I created the key with keytool. The build is successful with the
> > > SUN
> > JDK
> > > 1.5, getting the exception below with the IBM JDK 1.5.
> > >
> > >
> > > > - Venkat
> > > >
> > > > On 9/12/07, Jean-Sebastien Delfino <[EMAIL PROTECTED] > wrote:
> > > >
> > > >> Is anybody else seeing that build error?
> > > >>
> > > >> Do I need to set up anything new in my build environment now
> > > >> that
> > we
> > > >> have WS-security enabled (which is pretty cool BTW)?
> > > >>
> > > >> Running
> > > >>
> > > >>
> > >
> >
org.apache.tuscany.sca.binding.ws.axis2.itests.policy.WSSecurityConfidentialityTestCase
> > > >> log4j:WARN No appenders could be found for logger
> > > >> (org.apache.axiom.om.util.StAXUtils).
> > > >> log4j:WARN Please initialize the log4j system properly.
> > > >> Sep 11, 2007 7:04:02 PM
> > org.apache.tuscany.sca.http.jetty.JettyServer
> > > >> addServletMapping
> > > >> INFO: Added Servlet mapping: http://localhost:8085/myExplicitURI
> > > >> *** Calling Integrity Password Handler ....
> > > >> Tests run: 1, Failures: 0, Errors: 1, Skipped: 0, Time elapsed:
> > 3.096
> > > >> sec <<< FAILURE!
> > > >> testHelloWorld(
> > > >>
> > >
> >
org.apache.tuscany.sca.binding.ws.axis2.itests.policy.WSSecurityConfidentialityTestCase
> > > >> )
> > > >> Time elapsed: 3.04 sec <<< ERROR!
> > > >> java.lang.ExceptionInInitializerError
> > > >> at java.lang.J9VMInternals.initialize(J9VMInternals.java
> > :214)
> > > >> at javax.crypto.KeyGenerator.a (Unknown Source)
> > > >> at javax.crypto.KeyGenerator.<init>(Unknown Source)
> > > >> at javax.crypto.KeyGenerator.getInstance(Unknown Source)
> > > >> at
> > > >> org.apache.ws.security.message.WSSecEncrypt.getKeyGenerator(
> > > >> WSSecEncrypt.java:578)
> > > >> at
> > > >> org.apache.ws.security.message.WSSecEncrypt.prepare(
> > WSSecEncrypt.java
> > > :202)
> > > >> at
> > > >> org.apache.ws.security.message.WSSecEncrypt.build(
WSSecEncrypt.java
> > > :268)
> > > >> at
> > > >> org.apache.ws.security.action.EncryptionAction.execute (
> > > >> EncryptionAction.java:62)
> > > >> at
> > > >> org.apache.ws.security.handler.WSHandler.doSenderAction(
> > WSHandler.java
> > > >> :192)
> > > >> at
> > > >> org.apache.rampart.handler.WSDoAllSender.processBasic(
> > > WSDoAllSender.java
> > > >> :256)
> > > >> at
> > > >> org.apache.rampart.handler.WSDoAllSender.processMessage(
> > > WSDoAllSender.java
> > > >> :88)
> > > >> at
> > > >> org.apache.rampart.handler.WSDoAllHandler.invoke(
> > WSDoAllHandler.java
> > > :72)
> > > >> at org.apache.axis2.engine.Phase.invoke(Phase.java :383)
> > > >> at org.apache.axis2.engine.AxisEngine.invoke(
> > AxisEngine.java
> > > :203)
> > > >> at org.apache.axis2.engine.AxisEngine.send(
AxisEngine.java
> > :433)
> > > >> at
> > > >> org.apache.axis2.description.OutInAxisOperationClient.send(
> > > >> OutInAxisOperation.java:330)
> > > >> at
> > > >> org.apache.axis2.description.OutInAxisOperationClient.execute (
> > > >> OutInAxisOperation.java:294)
> > > >> at
> > > >>
> > >
> >
org.apache.tuscany.sca.binding.ws.axis2.Axis2BindingInvoker.invokeTarget
> > (
> > > >> Axis2BindingInvoker.java:95)
> > > >> at
> > > >>
org.apache.tuscany.sca.binding.ws.axis2.Axis2BindingInvoker.invoke(
> > > >> Axis2BindingInvoker.java:75)
> > > >> at
> > > >>
> > > >>
> > >
> >
org.apache.tuscany.sca.core.databinding.wire.DataTransformationInteceptor.invoke
> > > >> (DataTransformationInteceptor.java:70)
> > > >> at
> > > >>
org.apache.tuscany.sca.core.invocation.JDKInvocationHandler.invoke(
> > > >> JDKInvocationHandler.java:231)
> > > >> at
> > > >>
org.apache.tuscany.sca.core.invocation.JDKInvocationHandler.invoke(
> > > >> JDKInvocationHandler.java:128)
> > > >> at $Proxy2.getGreetings(Unknown Source)
> > > >> at
> > > >>
> > > >>
> > >
> >
org.apache.tuscany.sca.binding.ws.axis2.itests.HelloWorldOMComponent.getGreetings
> > > >> (HelloWorldOMComponent.java:31)
> > > >> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native
> > Method)
> > > >> at
> > > >> sun.reflect.NativeMethodAccessorImpl.invoke(
> > > NativeMethodAccessorImpl.java
> > > >> :64)
> > > >> at
> > > >> sun.reflect.DelegatingMethodAccessorImpl.invoke(
> > > >> DelegatingMethodAccessorImpl.java:43)
> > > >> at java.lang.reflect.Method.invoke(Method.java:615)
> > > >> at
> > > >>
> > > >>
> > >
> >
org.apache.tuscany.sca.implementation.java.invocation.JavaImplementationInvoker.invoke
> > > >> (JavaImplementationInvoker.java:105)
> > > >> at
> > > >>
> > >
> >
org.apache.tuscany.sca.core.databinding.wire.PassByValueInteceptor.invoke
> > (
> > > >> PassByValueInteceptor.java:49)
> > > >> at
> > > >>
org.apache.tuscany.sca.core.invocation.JDKInvocationHandler.invoke(
> > > >> JDKInvocationHandler.java:231)
> > > >> at
> > > >>
org.apache.tuscany.sca.core.invocation.JDKInvocationHandler.invoke(
> > > >> JDKInvocationHandler.java:128)
> > > >> at $Proxy2.getGreetings(Unknown Source)
> > > >> at
> > > >>
> > > >>
> > >
> >
org.apache.tuscany.sca.binding.ws.axis2.itests.policy.AbstractHelloWorldOMTestCase.testHelloWorld
> > > >> (AbstractHelloWorldOMTestCase.java:43)
> > > >> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native
> > Method)
> > > >> at
> > > >> sun.reflect.NativeMethodAccessorImpl.invoke(
> > > NativeMethodAccessorImpl.java
> > > >> :64)
> > > >> at
> > > >> sun.reflect.DelegatingMethodAccessorImpl.invoke(
> > > >> DelegatingMethodAccessorImpl.java:43)
> > > >> at java.lang.reflect.Method.invoke(Method.java :615)
> > > >> at junit.framework.TestCase.runTest(TestCase.java:168)
> > > >> at junit.framework.TestCase.runBare(TestCase.java:134)
> > > >> at junit.framework.TestResult$1.protect (TestResult.java
> > :110)
> > > >> at junit.framework.TestResult.runProtected(
TestResult.java
> > :128)
> > > >> at junit.framework.TestResult.run(TestResult.java:113)
> > > >> at junit.framework.TestCase.run (TestCase.java:124)
> > > >> at junit.framework.TestSuite.runTest(TestSuite.java:232)
> > > >> at junit.framework.TestSuite.run(TestSuite.java:227)
> > > >> at
> > > >> org.junit.internal.runners.OldTestClassRunner.run(
> > > OldTestClassRunner.java
> > > >> :35)
> > > >> at
> > > >> org.apache.maven.surefire.junit4.JUnit4TestSet.execute(
> > > JUnit4TestSet.java
> > > >> :62)
> > > >> at
> > > >>
> > >
> >
org.apache.maven.surefire.suite.AbstractDirectoryTestSuite.executeTestSet
> > (
> > > >> AbstractDirectoryTestSuite.java:138)
> > > >> at
> > > >>
org.apache.maven.surefire.suite.AbstractDirectoryTestSuite.execute(
> > > >> AbstractDirectoryTestSuite.java:125)
> > > >> at org.apache.maven.surefire.Surefire.run(Surefire.java
:132)
> >
> > > >> at sun.reflect.NativeMethodAccessorImpl.invoke0(Native
> > Method)
> > > >> at
> > > >> sun.reflect.NativeMethodAccessorImpl.invoke(
> > > NativeMethodAccessorImpl.java
> > > >> :64)
> > > >> at
> > > >> sun.reflect.DelegatingMethodAccessorImpl.invoke(
> > > >> DelegatingMethodAccessorImpl.java:43)
> > > >> at java.lang.reflect.Method.invoke(Method.java :615)
> > > >> at
> > > >>
org.apache.maven.surefire.booter.SurefireBooter.runSuitesInProcess(
> > > >> SurefireBooter.java:290)
> > > >> at
> > > >> org.apache.maven.surefire.booter.SurefireBooter.main (
> > > SurefireBooter.java
> > > >> :818)
> > > >> Caused by: java.lang.SecurityException: Cannot set up certs for
> > trusted
> > > >> CAs
> > > >> at javax.crypto.b.<clinit>(Unknown Source)
> > > >> at java.lang.J9VMInternals.initializeImpl(Native Method)
> > > >> at java.lang.J9VMInternals.initialize(J9VMInternals.java
> > :192)
> > > >> ... 56 more
> > > >> Caused by: java.security.PrivilegedActionException:
> > > >> java.security.InvalidKeyException: Public key presented not for
> > > >> certificate signature
> > > >> at
> > > >> java.security.AccessController.doPrivileged (
AccessController.java
> > :246)
> > > >> ... 59 more
> > > >> Caused by: java.security.InvalidKeyException: Public key
presented
> > not
> > > >> for certificate signature
> > > >> at
> > > >>
org.bouncycastle.jce.provider.X509CertificateObject.checkSignature
> > > (Unknown
> > > >> Source)
> > > >> at
> > > >> org.bouncycastle.jce.provider.X509CertificateObject.verify(Unknown
> > > Source)
> > > >> at javax.crypto.b.a(Unknown Source)
> > > >> at javax.crypto.b.access$500(Unknown Source)
> > > >> at javax.crypto.b$0.run(Unknown Source)
> > > >> at
> > > >> java.security.AccessController.doPrivileged(AccessController.java
> > :242)
> > > >> ... 59 more
> > > >>
> > > >> --
> > > >> Jean-Sebastien
> > > >>
> > > >>
> > > >>
> > ---------------------------------------------------------------------
> > > >> To unsubscribe, e-mail: [EMAIL PROTECTED]
> > > >> For additional commands, e-mail: [EMAIL PROTECTED]
> > > >>
> > > >>
> > > >>
> > > >
> > > >
> > >
> > >
> > > --
> > > Jean-Sebastien
> > >
> > >
> > >
---------------------------------------------------------------------
> > > To unsubscribe, e-mail: [EMAIL PROTECTED]
> > > For additional commands, e-mail: [EMAIL PROTECTED]
> > >
> > >
> >
> Venkat
>
> That fixes the problem for me.
>
> I note that we now have a dependency on a bouncycastle jar in the axis2
> binding. Is the export controls process [1] in hand with respect to
this?
>
> Simon
>
> [1] http://www.apache.org/licenses/exports/
>
The other thing I meant to say is can you turn this into a FAQ entry up
on
the web site?
Simon