Java is 1.8.0_391 On Thu, Apr 4, 2024 at 1:35 PM Timothy Resh <mresh1...@gmail.com> wrote:
> I got the Object ID and version straight out of the Certificate using > Keystore Explorer. I'm not sure why there is a difference. > > The "\" is because I manually deleted the beginning part of the path. > It's correct in the actual file. > > Java is 1.8. > > On Wed, Apr 3, 2024 at 6:11 PM Konstantin Kolinko <knst.koli...@gmail.com> > wrote: > >> > Caused by: java.security.NoSuchAlgorithmException: The PKCS#8 encryption >> > algorithm with DER encoded OID of [2a864886f70d010c0103] was not >> recognised >> >> If I google for the above hex number, it finds the following: >> >> '2A864886F70D010C0103' -- 1.2.840.113549.1.12.1.3 >> pbeWithSHAAnd3-KeyTripleDES-CBC (PKCS #12 PbeIds) >> >> (actually a comment in some random source file, but it explains what >> the value is). >> >> If I manually decode that value, thanks to >> https://stackoverflow.com/a/24720842 >> I get the same value: >> >> 2a = 42 = 1 * 40 + 2 -> "1.2" >> 8648 = (0x06 * 128) + 0x48 = 6 * 128 + 72 = 840 >> 86f70d = ((0x06 * 128) + (0x77 * 128) + 0x0d = ((6 * 128) + 119) * 128 >> + 13 = 113549 >> 01 = 1 >> 0c = 12 >> 01 = 1 >> 03 = 3 >> >> I saw that you mentioned >> > The ASN.1 is OBJECT IDENTIFIER=Sha256WithRSAEncryption >> (1.2.840.113549.1.1.11) >> >> but the value is different. >> *.1.1.11 vs *.1.12.1.3 >> >> Maybe it helps. >> >> What is your version of Java? >> >> Isn't the algorithm (mentioned in the error message) deprecated, >> because it uses SHA-1 ? >> >> > SSLCertificateChainFile="C:Certificate\Public Key\WSD-2DNX4M3.......cer" >> >> A '\' is missing after ':'. >> >> Best regards, >> Konstantin Kolinko >> >> --------------------------------------------------------------------- >> To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org >> For additional commands, e-mail: users-h...@tomcat.apache.org >> >>
