[TAVERNA-1025] SSL error: Could not generate DH keypair - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: To Do
Priority: Major
Resolution: Unresolved
Affects Version/s: None
Fix Version/s: workbench 3.1.0
Component/s: Taverna Common Activities
Labels:
None

Description

[Reported by Moein Jafari|
https://lists.apache.org/thread.html/f716341ad89e91c7195315370b7cdcbd859616ea72f1bbc0d6549913@%3Cusers.taverna.apache.org%3E]:

I get the following error
when I try to import a WSDL service (have tried PubChem and ChEBI):

"Could not read the WSDL definition from
https://pubchem.ncbi.nlm.nih.gov/pug_soap/pug_soap.cgi?wsdl:
javax.net.ssl.SSLException:java.lang.RuntimeException: Could not generate
DH keypair".

What I have tried:

changed all Java local_policy and US_export_policy files with unlimited
versions. This did not work.

I am running Windows 10.

Possibly related to StackOverflow question: https://stackoverflow.com/questions/14253039/is-there-a-workaround-for-java-lang-runtimeexception-could-not-generate-dh-key/21617747

In our investigation we think that you need to remove from taverna.bat/taverna.sh/taverna.vmoptions the equivalent of lines:

set ARGS=%ARGS% "-Dcom.sun.net.ssl.enableECC=false"
set ARGS=%ARGS% "-Djsse.enableSNIExtension=false"

I can't find a log of why we added these properties in the first place; probably as a workaround for an SSL bug in early JDK releases – and should probably not be needed anymore with JDK8.

Attachments

Activity

People

Assignee:: Stian Soiland-Reyes

Reporter:: Stian Soiland-Reyes

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 07/Nov/17 11:14

Updated:: 30/Jan/18 10:31