can't run mvnw clean package - TrustAnchors parameter must be non-empty
324 views
Skip to first unread message
Jennifer LaVoie
May 4, 2018, 10:20:39 AM5/4/18
to CAS Community
I am still struggling with this error.
[jennifer.lavoie_da@xxx cas-overlay-template-master]$ ./mvnw clean package
Exception in thread "main" javax.net.ssl.SSLException: java.lang.RuntimeException: Unexpected error: java.security.InvalidAlgorithmParameterException: the trustAnchors parameter must be non-empty
I have the latest version of java and the cacerts is in /usr/java/jdk1.8.0_152/jre/lib/security
I have only 1 version of java installed
I also copied cacerts to etc/pki/java
I am really at a loss, here.
Jen
David Curry
May 4, 2018, 10:44:01 AM5/4/18
to cas-...@apereo.org
Are you running Oracle Java, or OpenJDK? I assume Oracle, because "/usr/java" is not a path used by OpenJDK.
If you're running Oracle, did you run the "alternatives" command to set up all the links to point at the right things? (I've never installed the Oracle Java, so I'm not sure this is a requirement.)
If you're running Oracle, did you install the JCE Unlimited Strength Jurisdiction property files? See http://www.oracle.com/technetwork/java/javase/downloads/jce8-download-2133166.html. (This is not necessary if you're using OpenJDK.)
You mentioned something in an earlier note (I think) about adding a self-signed certificate to the cacerts file. What happens if you put the original, default cacerts file back? Maybe you accidentally corrupted it or something?
On my system (RHEL7/OpenJDK),
/etc/pki/java/cacerts -> /etc/pki/ca-trust/extracted/java/cacerts
and the file on the right is created with the update-ca-certs command (which gets run as part of the OpenJDK install I guess; I've never run it manually).
--Dave
--
DAVID A. CURRY, CISSP
DIRECTOR OF INFORMATION SECURITY
INFORMATION TECHNOLOGY
71 FIFTH AVE., 9TH FL., NEW YORK, NY 10003
+1 212 229-5300 x4728 • david...@newschool.edu
--
- Website: https://apereo.github.io/cas
- Gitter Chatroom: https://gitter.im/apereo/cas
- List Guidelines: https://goo.gl/1VRrw7
- Contributions: https://goo.gl/mh7qDG
---
You received this message because you are subscribed to the Google Groups "CAS Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+unsubscribe@apereo.org.
To view this discussion on the web visit https://groups.google.com/a/apereo.org/d/msgid/cas-user/f6a130c8-afb3-47d2-9c8d-73fea6371155%40apereo.org.
David Curry
May 4, 2018, 10:46:03 AM5/4/18
to cas-...@apereo.org
And if all else fails, you could remove Oracle Java and run:
yum -y install java-1.8.0-openjdk-develwhich works quite well. :-)
--
DAVID A. CURRY, CISSP
DIRECTOR OF INFORMATION SECURITY
INFORMATION TECHNOLOGY
71 FIFTH AVE., 9TH FL., NEW YORK, NY 10003
+1 212 229-5300 x4728 • david...@newschool.edu
To unsubscribe from this group and stop receiving emails from it, send an email to cas-user+u...@apereo.org.
Jennifer LaVoie
May 4, 2018, 11:23:32 AM5/4/18
to CAS Community
OH MY GOD, DAVID...thank you...I just really can't thank you enough
Reply all
Reply to author
Forward
0 new messages