You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@taverna.apache.org by "Stian Soiland-Reyes (JIRA)" <ji...@apache.org> on 2017/11/07 11:19:00 UTC

[jira] [Commented] (TAVERNA-1025) SSL error: Could not generate DH keypair

    [ https://issues.apache.org/jira/browse/TAVERNA-1025?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16241842#comment-16241842 ] 

Stian Soiland-Reyes commented on TAVERNA-1025:
----------------------------------------------

Confirmed that those properties are no longer set in the 3.x launchers:

https://github.com/apache/incubator-taverna-commandline/tree/master/taverna-commandline-product/src/main/etc
https://github.com/apache/incubator-taverna-workbench-product/tree/master/src/main/etc

> SSL error: Could not generate DH keypair
> ----------------------------------------
>
>                 Key: TAVERNA-1025
>                 URL: https://issues.apache.org/jira/browse/TAVERNA-1025
>             Project: Apache Taverna
>          Issue Type: Bug
>          Components: Taverna Common Activities
>            Reporter: Stian Soiland-Reyes
>            Assignee: Stian Soiland-Reyes
>             Fix For: workbench 3.1.0
>
>
> [Reported by Moein Jafari|
> https://lists.apache.org/thread.html/f716341ad89e91c7195315370b7cdcbd859616ea72f1bbc0d6549913@%3Cusers.taverna.apache.org%3E]:
> {quote}
> I get the following error
> when I try to import a WSDL service (have tried PubChem and ChEBI):
> "Could not read the WSDL definition from
> https://pubchem.ncbi.nlm.nih.gov/pug_soap/pug_soap.cgi?wsdl:
> javax.net.ssl.SSLException:java.lang.RuntimeException: Could not generate
> DH keypair".
> What I have tried:
> - changed all Java local_policy and US_export_policy files with unlimited
> versions. This did not work.
> I am running Windows 10.
> {quote}
> Possibly related to StackOverflow question: https://stackoverflow.com/questions/14253039/is-there-a-workaround-for-java-lang-runtimeexception-could-not-generate-dh-key/21617747
> In [our investigation|https://gitter.im/apache/taverna?at=59f7250ff7299e8f534d9b20] we think that you need to *remove* from taverna.bat/taverna.sh/taverna.vmoptions the equivalent of lines:
> {code}
> set ARGS=%ARGS% "-Dcom.sun.net.ssl.enableECC=false"
> set ARGS=%ARGS% "-Djsse.enableSNIExtension=false"
> {code}
> I can't find a log of why we added these properties in the first place; probably as a workaround for an SSL bug in early JDK releases -- and should probably not be needed anymore with JDK8.



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)