Author |
Message |
redmiru Brekeke Member
Joined: 12 Feb 2012 Posts: 19
|
Posted: Thu Jul 26, 2012 5:22 am Post subject: [solved] TLS keyfile doesn't loaded (exception error) |
|
|
1. Brekeke Product Name and version:
BSS 3.0.5.5 Advanced version
2. Java version:
1.6.0.24
3. OS type and the version:
Ubuntu 12.04
4. UA (phone), gateway or other hardware/software involved:
Bria3
5. Select your network pattern from http://www.brekeke-sip.com/bbs/network/networkpatterns.html :
6. Your problem:
TLS jks file input (and reboot), and it works well (It's legal Cert. file)
==================================
tls-listener: start
TLS: Certificates ===================================
JKS File: /var/lib/tomcat7/webapps/sip/WEB-INF/work/sv/key/keystore.jks
Local-Cert: Serial#: xxxx
Local-Cert: Issuer: xxxx
Local-Cert: Subject: xxxx
Local-Cert: Signature: xxxx
Local-Cert: Valid from: 03/12/12 00:00:00.000 until : 04/11/13 23:59:59.000
============================================
but reboot brekeke again, TLS does not work as below
============================
tls-listener: start^M
Exception: 07/26/12 12:15:04.482
javax.crypto.IllegalBlockSizeException: Input length must be multiple of 8 when decrypting with padded cipher
com.sun.crypto.provider.CipherCore.doFinal (CipherCore.java:750)
com.sun.crypto.provider.CipherCore.doFinal (CipherCore.java:676)
com.sun.crypto.provider.DESCipher.engineDoFinal (DESCipher.java:318)
javax.crypto.Cipher.doFinal (Cipher.java:1813)
com.brekeke.secure.Crypt.decrypt (null:-1)
com.brekeke.net.sip.sv.tls.SIPtlsListener.<init> (null:-1)
com.brekeke.net.sip.sv.SIPsvListener.<init> (null:-1)
com.brekeke.ondo.sv.main (null:-1)
svlistener: open session-log '/var/lib/tomcat7/webapps/sip/WEB-INF/work/sv/log/2012/07/session.20120726.log'.^M
svlistener: open dial-plan '/var/lib/tomcat7/webapps/sip/WEB-INF/work/sv/etc/dialplan.tbl'.^M
svlistener: hostname=localhost listen-port=5060^M
Please help this issue.
Last edited by redmiru on Thu Jul 26, 2012 5:33 am; edited 1 time in total |
|
Back to top |
|
redmiru Brekeke Member
Joined: 12 Feb 2012 Posts: 19
|
Posted: Thu Jul 26, 2012 5:32 am Post subject: |
|
|
I found why it works just like this.
If I change some value on SIP configuration pages, then MUST input again the jks file's password!!!!
It seems bug. |
|
Back to top |
|
Mike Support Team
Joined: 07 Mar 2005 Posts: 731
Location: Sunny San Mateo
|
Posted: Thu Jul 26, 2012 11:02 am Post subject: |
|
|
Hi redmiru,
We recognized the issue in our lab. Sorry for the inconvenience..
We will fix this bug soon.
Meanwhile, if possible, let you use the DER file instead of JKS file.
http://wiki.brekeke.com/wiki/Key-and-Certificate |
|
Back to top |
|
Mike Support Team
Joined: 07 Mar 2005 Posts: 731
Location: Sunny San Mateo
|
|
Back to top |
|
|