http://bugzilla.novell.com/show_bug.cgi?id=546843 User mvyskocil@novell.com added comment http://bugzilla.novell.com/show_bug.cgi?id=546843#c546468 Summary: gkeytool lack a support for ECC certificates Classification: openSUSE Product: openSUSE 11.2 Version: Factory Platform: Other OS/Version: Other Status: NEW Severity: Major Priority: P5 - None Component: Basesystem AssignedTo: matz@novell.com ReportedBy: mvyskocil@novell.com QAContact: qa@suse.de Found By: Development gkeytool fails on read ECC certificate - this is also in openjdk, but the fix adds a support for Elliptic Curve Cryptography already exists in upstream, but I did not find similar for gcc java. I read a commit log, asked on #openjdk@irc.oftc.net, where many openjdk and gcj developers are, but noone answered me yet. see bnc#546468 for details about openjdk The java-1_5_0-gcj-compat fails on keystore creation: + for key in '/etc/ssl/certs/*.pem' + yes ++ basename /etc/ssl/certs/COMODO_ECC_Certification_Authority.pem + gkeytool-4.4 -import -keystore cacerts -file /etc/ssl/certs/COMODO_ECC_Certification_Authority.pem -storepass '' -alias COMODO_ECC_Certification_Authority.pem keytool error: java.security.cert.CertificateException error: Bad exit status from /var/tmp/rpm-tmp.cYvDZ9 (%prep) I'm going to workaround it in java-1_5_0-gcj-compat by skipping those certificates during keystore creation, to provide a fix immediately to make OpenOffice.org build immediately. But it'd be nice to have gcj with ECC support enabled. -- Configure bugmail: http://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.