Bug 1448802
Summary: | java-1.8.0-openjdk-1.8.0.131 breaks gradle | ||
---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | Volker Braun <vbraun.name> |
Component: | java-1.8.0-openjdk | Assignee: | jiri vanek <jvanek> |
Status: | CLOSED CURRENTRELEASE | QA Contact: | Fedora Extras Quality Assurance <extras-qa> |
Severity: | unspecified | Docs Contact: | |
Priority: | unspecified | ||
Version: | 25 | CC: | ahughes, dbhole, jerboaa, jvanek, msrb, mvala, omajid |
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | Unspecified | ||
OS: | Unspecified | ||
Whiteboard: | |||
Fixed In Version: | java-1.8.0-openjdk-1.8.0.141-1.b16.fc25 | Doc Type: | If docs needed, set a value |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2017-10-13 18:28:16 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Volker Braun
2017-05-08 08:23:48 UTC
I think this is caused by change in java.security. Old https algorithms are no longer supported Thsi time md5sum was removed, so also all MD5withRSA were canceled. If you change yours /usr/lib/jvm/java-1.8.0-openjdk-1.8.0.131-1.b12.fc24.x86_64/jre/lib/security/java.security jdk.certpath.disabledAlgorithms=MD2, MD5, RSA keySize < 1024, \ and jdk.tls.disabledAlgorithms=SSLv3, RC4, MD5withRSA, DH keySize < 768, \ to jdk.certpath.disabledAlgorithms=MD2, RSA keySize < 1024, \ and jdk.tls.disabledAlgorithms=SSLv3, RC4, DH keySize < 768, \ It should work. If so,please clsoe this. But COnsider this as only tmp solution and get rid of it as soon as possible We can add back the symlink, but this shouldn't be necessary. The Apache code shouldn't be hardcoding internal JDK paths. That's likely to break with OpenJDK 9 as well. (In reply to jiri vanek from comment #2) > Thsi time md5sum was removed, so also all MD5withRSA were canceled. > > If you change yours > /usr/lib/jvm/java-1.8.0-openjdk-1.8.0.131-1.b12.fc24.x86_64/jre/lib/security/ > java.security > > > jdk.certpath.disabledAlgorithms=MD2, MD5, RSA keySize < 1024, \ > and > jdk.tls.disabledAlgorithms=SSLv3, RC4, MD5withRSA, DH keySize < 768, \ > > to > jdk.certpath.disabledAlgorithms=MD2, RSA keySize < 1024, \ > and > jdk.tls.disabledAlgorithms=SSLv3, RC4, DH keySize < 768, \ > > > It should work. If so,please clsoe this. But COnsider this as only tmp > solution and get rid of it as soon as possible It has nothing to do with this. Please don't suggest rolling back a security update without good cause. This has been fixed since this sync with the RHEL version: http://pkgs.fedoraproject.org/rpms/java-1.8.0-openjdk/c/928912572e0b93fe1eb252bfe86d3fa4d78846a0?branch=f25 |