Project

General

Profile

Bug #9905

java.lang.InternalError when calling the internal API on Redhat because of invalid version of nss

Added by Nicolas CHARLES 11 months ago. Updated 6 months ago.

Status:
Released
Priority:
N/A
Category:
System integration
Target version:
Target version (plugin):
Severity:
Critical - prevents main use of Rudder | no workaround | data loss | security
User visibility:
Getting started - demo | first install | level 1 Techniques
Effort required:
Priority:
74

Description

In the logs

[2017-01-05 17:31:34] INFO  application - registered property: java.specification.vendor="Oracle Corporation" 
[2017-01-05 17:31:34] INFO  application - registered property: java.specification.version="1.7" 
[2017-01-05 17:31:34] INFO  application - registered property: java.vendor.url.bug="http://bugreport.sun.com/bugreport/" 
[2017-01-05 17:31:34] INFO  application - registered property: java.version="1.7.0_111" 
[2017-01-05 17:31:34] INFO  application - registered property: java.vm.info="mixed mode" 
[2017-01-05 17:31:34] INFO  application - registered property: java.vm.name="OpenJDK 64-Bit Server VM" 
[2017-01-05 17:31:34] INFO  application - registered property: java.vm.specification.name="Java Virtual Machine Specification" 
[2017-01-05 17:31:34] INFO  application - registered property: java.vm.specification.vendor="Oracle Corporation" 
[2017-01-05 17:31:34] INFO  application - registered property: java.vm.specification.version="1.7" 
[2017-01-05 17:31:34] INFO  application - registered property: java.vm.vendor="Oracle Corporation" 
[2017-01-05 17:31:34] INFO  application - registered property: java.vm.version="24.111-b01" 
[2017-01-05 17:31:34] INFO  application - registered property: jetty.home="/opt/rudder/jetty7" 
...
Caused by: 
java.lang.InternalError
        at sun.security.ec.SunEC.initialize(Native Method)
        at sun.security.ec.SunEC.access$000(SunEC.java:49)
        at sun.security.ec.SunEC$1.run(SunEC.java:61)
        at sun.security.ec.SunEC$1.run(SunEC.java:58)
        at java.security.AccessController.doPrivileged(Native Method)
        at sun.security.ec.SunEC.<clinit>(SunEC.java:58)
        at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method)
        at sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:57)
        at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:45)
        at java.lang.reflect.Constructor.newInstance(Constructor.java:526)
        at java.lang.Class.newInstance(Class.java:383)
        at sun.security.jca.ProviderConfig$2.run(ProviderConfig.java:221)
        at sun.security.jca.ProviderConfig$2.run(ProviderConfig.java:206)

see also : https://bugs.centos.org/view.php?id=11245


Related issues

Related to Rudder - Bug #10734: Installation fails due to broken nss/nss-softokn detection on CentOS6 Released

Associated revisions

Revision 3f915ee3
Added by Benoît PECCATTE 7 months ago

Fixes #9905: java.lang.InternalError when calling the internal API on Redhat because of invalid version of nss

History

#1 Updated by Nicolas CHARLES 11 months ago

  • Subject changed from java.lang.InternalError when calling the internal API on RedHat with Java 1.7.0_111 to java.lang.InternalError when calling the internal API on Redhat because of invalid version of nss

See https://bugzilla.redhat.com/show_bug.cgi?id=1332456

rpm -qa | grep nss-softokn
nss-softokn-freebl-3.14.3-17.el6.x86_64
nss-softokn-3.14.3-17.el6.x86_64

[root@orchestrateur-5 ~]# rpm -q --requires  java-1.7.0-openjdk-1.7.0.111  | grep nss
libnss3.so()(64bit)  
libnss3.so(NSS_3.2)(64bit)  
libnssutil3.so()(64bit)  
libnssutil3.so(NSSUTIL_3.12)(64bit)  
nss(x86-64)  
[root@orchestrateur-5 ~]# rpm -q --whatprovides 'libnss3.so()(64bit)'
nss-3.16.1-14.el6.x86_64

Mismatch in nss and nss-softokn version

#2 Updated by Vincent MEMBRÉ 9 months ago

  • Target version changed from 3.1.18 to 3.1.19

#3 Updated by Benoît PECCATTE 8 months ago

  • Severity set to Critical - prevents main use of Rudder | no workaround | data loss | security
  • User visibility set to Getting started - demo | first install | level 1 Techniques
  • Priority set to 0

#4 Updated by Benoît PECCATTE 8 months ago

  • Priority changed from 0 to 76

#5 Updated by Vincent MEMBRÉ 7 months ago

  • Target version changed from 3.1.19 to 3.1.20
  • Priority changed from 76 to 75

#6 Updated by Alexis MOUSSET 7 months ago

We can add a WARNING message in the post install script if the versi of nss and nss-softtkn do not match.

#7 Updated by Benoît PECCATTE 7 months ago

  • Status changed from New to In progress
  • Assignee set to Benoît PECCATTE

#8 Updated by Benoît PECCATTE 7 months ago

  • Status changed from In progress to Pending technical review
  • Assignee changed from Benoît PECCATTE to Alexis MOUSSET
  • Pull Request set to https://github.com/Normation/rudder-packages/pull/1339

#9 Updated by Benoît PECCATTE 7 months ago

  • Status changed from Pending technical review to Pending release

#10 Updated by Alexis MOUSSET 7 months ago

  • Related to Bug #10734: Installation fails due to broken nss/nss-softokn detection on CentOS6 added

#11 Updated by Vincent MEMBRÉ 6 months ago

  • Status changed from Pending release to Released
  • Priority changed from 75 to 74

This bug has been fixed in Rudder 3.1.20, 4.0.5 and 4.1.2 which were released today.

Also available in: Atom PDF