org.bouncycastle.asn1.ASN1Boolean非法循环依赖的错误

最新推荐文章于 2024-08-13 09:04:09 发布
最新推荐文章于 2024-08-13 09:04:09 发布
阅读量6.9k 收藏 2
点赞数 4
分类专栏: Java 服务器应用部署 文章标签: Spring
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/u010429286/article/details/89504860
版权

记录遇到一次奇怪的错误,在发布war包到Tomcat的时候,出现了org.bouncycastle.asn1.ASN1Boolean非法循环依赖的错误。

INFO: Deploying web application directory /data/w/www/xxx-app/webapps/ROOT
Apr 02, 2019 9:59:52 PM org.apache.catalina.core.ContainerBase addChildInternal
SEVERE: ContainerBase.addChild: start:
org.apache.catalina.LifecycleException: Failed to start component [StandardEngine[Catalina].StandardHost[localhost].StandardContext[]]
    at org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:154)
    at org.apache.catalina.core.ContainerBase.addChildInternal(ContainerBase.java:901)
    at org.apache.catalina.core.ContainerBase.addChild(ContainerBase.java:877)
    at org.apache.catalina.core.StandardHost.addChild(StandardHost.java:633)
    at org.apache.catalina.startup.HostConfig.deployDirectory(HostConfig.java:1120)
    at org.apache.catalina.startup.HostConfig$DeployDirectory.run(HostConfig.java:1678)
    at java.util.concurrent.Executors$RunnableAdapter.call(Executors.java:511)
    at java.util.concurrent.FutureTask.run(FutureTask.java:266)
    at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142)
    at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617)
    at java.lang.Thread.run(Thread.java:745)
Caused by: java.lang.IllegalStateException: Unable to complete the scan for annotations for web application [] due to a StackOverflowError. Possible root causes include a too low setting for -Xss and illegal cyclic inheritance dependencies. The class hierarchy being processed was [org.bouncycastle.asn1.ASN1Boolean->org.bouncycastle.asn1.DERBoolean->org.bouncycastle.asn1.ASN1Boolean]
    at org.apache.catalina.startup.ContextConfig.checkHandlesTypes(ContextConfig.java:2188)
    at org.apache.catalina.startup.ContextConfig.processAnnotationsStream(ContextConfig.java:2135)
    at org.apache.catalina.startup.ContextConfig.processAnnotationsJar(ContextConfig.java:2010)
    at org.apache.catalina.startup.ContextConfig.processAnnotationsUrl(ContextConfig.java:1976)
    at org.apache.catalina.startup.ContextConfig.processAnnotations(ContextConfig.java:1961)
    at org.apache.catalina.startup.ContextConfig.webConfig(ContextConfig.java:1319)
    at org.apache.catalina.startup.ContextConfig.configureStart(ContextConfig.java:878)
    at org.apache.catalina.startup.ContextConfig.lifecycleEvent(ContextConfig.java:376)
    at org.apache.catalina.util.LifecycleSupport.fireLifecycleEvent(LifecycleSupport.java:119)
    at org.apache.catalina.util.LifecycleBase.fireLifecycleEvent(LifecycleBase.java:90)
    at org.apache.catalina.core.StandardContext.startInternal(StandardContext.java:5322)
    at org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:150)
    ... 10 more

现象:

第一次部署,第一台机器没有问题,第二台机器报错。

第二次部署,第一台和第二台没有问题,第三台报错了。

也就是说,出现错误是不确定的.....

错误原因:依赖冲突,bcprov-jdk15on-x.xx.jar and bcprov-jdk16-x.xx.jar 的冲突导致

解决方法:
将bcprov-jdk16-x.xx.jar 排除,注意这里一定要排除jdk16的这个jar包,因为我在排除了第一个jar包之后,还是出现了这个错误,后来exclude掉bcprov-jdk16-x.xx.jar之后正常。

对于为什么会出现循环依赖的这个问题,为什么会不确定性出现,按理说依赖冲突应该所有的机器都会出现这个错误,会什么会不定性出现?还在进一步调研中...有结论会在此博客更新。

参考链接:https://stackoverflow.com/questions/17584495/unable-to-complete-the-scan-for-annotations-for-web-application-app-due-to-a
 

小船长的炒菜猫
关注
专栏目录
bouncycastle集合包
10-18
在开发项目中踏破千山万水寻找到的多个bouncycastle.jar包,内含四个版本的bouncycastle.jar包互相补充,力求完整,希望对大家有用。
记录问题:class “org.bouncycastle.asn1.ASN1Object“‘s signer information does not match signer information
三横同学的博客
09-14 4350
jar包冲突
解决 Tomcat 解析 WAR 包异常导致的 StackOverflowError
最新发布
weixin_50576371的博客
08-13 307
Tomcat 在解析 .war 文件时可能出现了解析异常,导致类加载出现问题。
BouncyCastle依赖.zip
01-08
BouncyCastle的相关资源包,若生成x509证书则需要此资源包,里面包含两个,版本是1.62
tomcat中org.bouncycastle.asn1.ASN1Boolean非法循环依赖错误
Cookie_1030的专栏
07-30 5513
tomcat启动失败,日志报错如下: Caused by: java.lang.IllegalStateException: 由于StackOverflower错误,无法完成对web应用程序[/fop]的批注的扫描。可能的根本原因包括-Xss的设置过低和非法的循环继承依赖项。正在处理的类层次结构是[org.bouncycastle.asn1.ASN1Boolean->org.bouncycastle.asn1.DERBoolean->org.bouncycastle.asn1.ASN1Bool
tomcat报错org.bouncycastle.asn1.ASN1Boolean启动不起来,错误记录
h_2017的博客
05-05 2987
Caused by: java.lang.IllegalStateException: Unable to complete the scan for annotations for web application [/cmp-model] due to a StackOverflowError. Possible root causes include a too low setting for...
[org.bouncycastle.asn1.ASN1Boolean->org.bouncycastle.asn1.DERBoolean->org.bouncycastle.asn1.ASN1Bool
RoboCai的博客
02-19 2673
在tomcat下部署war包启动时报错,关键错误信息如下: Caused by: java.lang.IllegalStateException: Unable to complete the scan for annotations for web application [] due to a StackOverflowError. Possible root causes include ...
Tomcat启动报栈溢出的问题分析及处理
zy332719794的专栏
08-29 4633
问题缘由: 在tomcat下部署war包启动时报错,关键错误信息如下: Caused by: java.lang.IllegalStateException: Unable to complete the scan for annotations for web application [] due to a StackOverflowError. Possible root causes in...
java bouncycastle_Java国密相关算法(bouncycastle
weixin_42370434的博客
02-13 2662
packagecom.pcidata.common.tools.encrypt;importcom.pcidata.common.tools.CommonUtils;importcom.pcidata.common.tools.CustomStringUtils;importcom.pcidata.modules.key.modelvo.response.PCIKeyPair;importlomb...
利用bouncycastle组装X509证书
沙舟狼客
04-07 5446
CreateCert.java package com.secpki.jce.demo; import java.io.ByteArrayInputStream; import java.io.File; import java.io.FileOutputStream; import java.io.UnsupportedEncodingException; import java
java 数字信封_【Java密码学】使用Bouncy Castle生成数字签名、数字信封
weixin_39783633的博客
12-20 1817
importjava.io.FileInputStream;importjava.io.InputStream;importjava.security.KeyStore;importjava.security.PrivateKey;importjava.security.Provider;importjava.security.Security;importjava.security.cert.C...
org.bouncycastle jar包
08-13
The Bouncy Castle Crypto package is a Java implementation of cryptographic algorithms. This jar contains JCE provider and lightweight API for the Bouncy Castle Cryptography APIs for JDK 1.6.
bouncycastle的util工具类
10-28
bouncy castle(轻量级密码术包)是一种用于 Java 平台的开放源码的轻量级密码术包。它支持大量的密码术算法,并提供 JCE 1.2.1 的实现。
使用Bouncy Castle生成数字签名、数字信封
热门推荐
记录只为更好地前行
12-08 1万+
Bouncy Castle(轻量级密码术包)是一种用于 Java 平台的开放源码的轻量级密码术包,它支持大量的密码术算法,并提供 JCE 1.2.1 的实现。最近项目上正好用到了Bouncy Castle,用于生成数字签名、数字信封,去网上找了很久,都没有找到合适的案例,而Bouncy Castle本身的文档也不多,最有用的就是官网上的Java Doc文档,因为这个问题也困扰了我好几天,最后还是通
SM2的签名值byte数组与ASN.1互转
M先生的博客
07-01 282
ASN.1抽象语言标记(Abstract Syntax Notation One) ASN.1是一种 ISO/ITU-T 标准,描述了一种对数据进行表示、编码、传输和解码的,它提供了一整套正规的格式用于描述对象的结构。
tomcat启动报错org.bouncycastle.asn1.ASN1Boolean
weixin_44663044的博客
09-26 1419
tomcat启动报错: Caused by: java.lang.IllegalStateException: Unable to complete the scan for annotations for web application [/ygz] due to a StackOverflowError. Possible root causes include a too low setting for -Xss and illegal cyclic inheritance dependencies.
IText签名org.bouncycastle.asn1.ASN1OutputStream.create
不积跬步,无以至千里
09-05 537
bcprov-jdk15on和bcpkix-jdk15on升级为1.70。在itext5使用签名加密时,找不到该方法。原因是使用的依赖版本过低。
BouncyCastle的ASN.1编码功能探究
suibianok123的专栏
12-23 7669
bouncycastle.jar是一种用于 Java 平台的开放源码的轻量级密码术包。它支持大量的密码术算法,并提供 JCE 1.2.1 的实现。本文利用bouncycastle类库来实现一个简单的asn.1的der编码的小实例。
在C#中保存Bouncy Castle生成的密钥对
拂去尘埃,打落地上
08-10 9945
在用Bouncy Castle的C#版API产生公钥和私钥 中产生了一对密钥对,可以用bouncy caslte提供的API进行保存公钥方面的3个类,具体代码根据命名空间自行查看其源代码:Org.BouncyCastle.Asn1.X509.SubjectPublicKeyInfo Org.BouncyCastle.X509.SubjectPublicKeyInfoFactory   Org.BouncyCastle.Security.PublicKeyFactory用法:SubjectPublicK
SM2 ASN1 格式数字信封解析代码
06-03
以下是一个使用Java语言解析SM2 ASN1格式数字信封的示例代码: ```java import org.bouncycastle.asn1.ASN1InputStream; import org.bouncycastle.asn1.ASN1Integer; import org.bouncycastle.asn1.ASN1ObjectIdentifier; import org.bouncycastle.asn1.ASN1Primitive; import org.bouncycastle.asn1.DERBitString; import org.bouncycastle.asn1.DERSequence; import org.bouncycastle.asn1.DERTaggedObject; import org.bouncycastle.asn1.pkcs.PrivateKeyInfo; import org.bouncycastle.asn1.x509.AlgorithmIdentifier; import org.bouncycastle.crypto.engines.SM2Engine; import org.bouncycastle.crypto.params.AsymmetricKeyParameter; import org.bouncycastle.crypto.params.ECPrivateKeyParameters; import org.bouncycastle.crypto.params.ECPublicKeyParameters; import org.bouncycastle.crypto.signers.SM2Signer; import org.bouncycastle.jce.provider.BouncyCastleProvider; import org.bouncycastle.util.encoders.Hex; import java.io.ByteArrayInputStream; import java.security.KeyFactory; import java.security.PrivateKey; import java.security.PublicKey; import java.security.Security; import java.security.cert.CertificateFactory; import java.security.cert.X509Certificate; import java.security.spec.ECPrivateKeySpec; import java.security.spec.ECPublicKeySpec; import java.security.spec.PKCS8EncodedKeySpec; public class SM2ASN1Decoder { static { Security.addProvider(new BouncyCastleProvider()); } public static void main(String[] args) throws Exception { // SM2 ASN1格式数字信封 String sm2Envelope = "30819E300D06092A864886F70D010101050003818B003081870201013082" + "820206092A864886F70D010706A082820F3082820B020101310B30090607" + "2A8648CE3D020106082A811CCF5501822D0479304402206E7A107FBEE4D" + "7E6D5D49CB2A2562D60A3220E3B9C2B0D9BF5B2B7B8FAC9F9022042B00" + "C7F8E1B2898D4C6E68F2F04A1B8E7D86CD3ECB5A79A5D0034B3C9C5F10" + "A081806C30818006072A8648CE3D020106052B8104000A03420004B7E0" + "B2A6BB1C6E6D4D4A3C1F5B5B6172C80280C3E5A23E4A2B5F58CDB259B0" + "FBB8323F4D12A4E8686D4FAC53B5F267F3A5C64BCD0E8F1A3D00EA0EED" + "A1E2F9A1A281E43081E1020103302C301306072A8648CE3D020106082A" + "811CCF5501822D0479304402206E7A107FBEE4D7E6D5D49CB2A2562D60" + "A3220E3B9C2B0D9BF5B2B7B8FAC9F9022042B00C7F8E1B2898D4C6E68" + "F2F04A1B8E7D86CD3ECB5A79A5D0034B3C9C5F1"; // 解码ASN1结构体 ASN1InputStream input = new ASN1InputStream(new ByteArrayInputStream(Hex.decode(sm2Envelope))); ASN1Primitive asn1 = input.readObject(); // 获取加密算法标识 ASN1Sequence envelope = (ASN1Sequence) asn1; ASN1Sequence header = (ASN1Sequence) envelope.getObjectAt(0); ASN1ObjectIdentifier oid = (ASN1ObjectIdentifier) header.getObjectAt(0); String algorithm = oid.getId(); // 获取摘要算法标识 ASN1Sequence contentInfo = (ASN1Sequence) envelope.getObjectAt(1); ASN1Sequence digestAlg = (ASN1Sequence) contentInfo.getObjectAt(1); ASN1ObjectIdentifier digestOid = (ASN1ObjectIdentifier) digestAlg.getObjectAt(0); String digestAlgorithm = digestOid.getId(); // 获取加密数据 ASN1Sequence encapContentInfo = (ASN1Sequence) contentInfo.getObjectAt(2); ASN1ObjectIdentifier encapOid = (ASN1ObjectIdentifier) encapContentInfo.getObjectAt(0); String encapAlgorithm = encapOid.getId(); DERBitString encryptedData = (DERBitString) encapContentInfo.getObjectAt(1); byte[] encrypted = encryptedData.getOctets(); // 获取数字签名 DERTaggedObject signerInfos = (DERTaggedObject) envelope.getObjectAt(2); ASN1Sequence signedData = (ASN1Sequence) signerInfos.getObject().toASN1Primitive(); ASN1Sequence signerInfo = (ASN1Sequence) signedData.getObjectAt(0); ASN1Sequence digestAlgId = (ASN1Sequence) signerInfo.getObjectAt(1); ASN1ObjectIdentifier digestAlgOid = (ASN1ObjectIdentifier) digestAlgId.getObjectAt(0); String signerDigestAlgorithm = digestAlgOid.getId(); DERBitString signature = (DERBitString) signerInfo.getObjectAt(3); byte[] sign = signature.getOctets(); // 获取签名证书 ASN1Sequence certificateSet = (ASN1Sequence) signedData.getObjectAt(1); ASN1Sequence certificateSeq = (ASN1Sequence) certificateSet.getObjectAt(0); byte[] certificateBytes = certificateSeq.getEncoded(); CertificateFactory cf = CertificateFactory.getInstance("X.509"); X509Certificate certificate = (X509Certificate) cf.generateCertificate(new ByteArrayInputStream(certificateBytes)); PublicKey publicKey = certificate.getPublicKey(); // 对加密数据进行解密 KeyFactory keyFactory = KeyFactory.getInstance("EC", "BC"); byte[] priKeyBytes = // TODO: 获取私钥字节数组 PKCS8EncodedKeySpec priKeySpec = new PKCS8EncodedKeySpec(priKeyBytes); PrivateKey privateKey = keyFactory.generatePrivate(priKeySpec); AsymmetricKeyParameter privateKeyParameter = new ECPrivateKeyParameters(((ECPrivateKey) privateKey).getS(), ((ECPrivateKey) privateKey).getParams()); AsymmetricKeyParameter publicKeyParameter = new ECPublicKeyParameters(((ECPublicKey) publicKey).getQ(), ((ECPublicKey) publicKey).getParams()); SM2Engine engine = new SM2Engine(); engine.init(false, privateKeyParameter); byte[] decrypted = engine.processBlock(encrypted, 0, encrypted.length); // 对解密后的明文数据进行摘要 AlgorithmIdentifier algorithmIdentifier = new AlgorithmIdentifier(new ASN1ObjectIdentifier(digestAlgorithm)); byte[] digest = MessageDigest.getInstance(digestAlgorithm).digest(decrypted); // 使用公钥对数字签名进行验证 SM2Signer signer = new SM2Signer(); signer.init(false, publicKeyParameter); signer.update(digest, 0, digest.length); boolean verifyResult = signer.verifySignature(sign); if (verifyResult) { System.out.println("数字签名验证成功"); System.out.println("解密后的明文数据:" + Hex.toHexString(decrypted)); } else { System.out.println("数字签名验证失败"); } } } ``` 需要注意的是,上述代码中的私钥字节数组、摘要算法和加密算法等信息需要根据具体情况进行修改和替换。同时,在实际应用中,还需要考虑异常处理、安全性等方面的问题。
评论 3
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值