OPSS - Loading Of OPSS Java Security Policy Provider Failed getting JPS-01050 Opening of wallet based credential store failed Reason java.io.IOException
(Doc ID 1922530.1)
Last updated on DECEMBER 22, 2023
Applies to:
Oracle Platform Security for Java - Version 11.1.1.7.0 and laterInformation in this document applies to any platform.
Symptoms
Starting up the servers seeing the following error messages:
<BEA-170019> <The server log file DOMAIN_HOME\servers\AdminServer\logs\AdminServer.log is opened. All server side log events will be written to this file.>
OracleFileSSOWalletImpl.getWalletData: enter...
OracleFileSSOWalletImpl.getWalletData: System.getProperty(user.name)=debi200
OracleFileSSOWalletImpl.getWalletData: locking (shared) dummy sso file..
OracleFileSSOWalletImpl.getWalletData: locking (shared) sso file..
Oracle Wallet: wallet size 9949
OracleWallet: getSecretStore
OracleSecretStore: loading wallet from stream
OracleSSOKeyStoreImpl: engineLoad
OracleKeyStoreSpi: Loading wallet from stream
OracleWallet.open: java.lang.ExceptionInInitializerError
at javax.crypto.Mac.getInstance(DashoA13*..)
at oracle.security.crypto.cert.PKCS12.verify(PKCS12.java:406)
at oracle.security.pki.OracleKeyStoreSpi.engineLoad(Unknown Source)
at oracle.security.pki.OracleSSOKeyStoreSpi.engineLoad(Unknown Source)
at oracle.security.pki.OracleSecretStore.load(Unknown Source)
at oracle.security.pki.OracleWallet.getSecretStore(Unknown Source)
at oracle.security.pki.OracleWallet.open(Unknown Source)
at oracle.security.jps.internal.credstore.ssp.CsfWalletManager.openWallet(CsfWalletManager.java:173)
..
Caused by: java.lang.SecurityException: Cannot set up certs for trusted CAs
at javax.crypto.SunJCE_b.<clinit>(DashoA13*..)
... 38 more
Caused by: java.lang.SecurityException: Jurisdiction policy files are not signed by trusted signers!
at javax.crypto.SunJCE_b.a(DashoA13*..)
OracleWallet.open: java.lang.ExceptionInInitializerError
...<BEA-090892> <The loading of OPSS java security policy provider failed due to exception, see the exception stack trace or the server log file for root cause. If still see no obvious cause, enable the debug flag -Djava.security.debug=jpspolicy to get more information. Error message: JPS-01050: Opening of wallet based credential store failed. Reason java.io.IOException>
....
at weblogic.security.service.CommonSecurityServiceManagerDelegateImpl.loadOPSSPolicy(CommonSecurityServiceManagerDelegateImpl.java:1398)
at weblogic.security.service.CommonSecurityServiceManagerDelegateImpl.initialize(CommonSecurityServiceManagerDelegateImpl.java:1018)
at weblogic.security.service.SecurityServiceManager.initialize(SecurityServiceManager.java:873)
at weblogic.security.SecurityService.start(SecurityService.java:141)
at weblogic.t3.srvr.SubsystemRequest.run(SubsystemRequest.java:64)
Truncated. see log file for complete stacktrace
Caused By: oracle.security.jps.JpsRuntimeException: JPS-01050: Opening of wallet based credential store failed. Reason java.io.IOException
OracleFileSSOWalletImpl.getWalletData: enter...
OracleFileSSOWalletImpl.getWalletData: System.getProperty(user.name)=debi200
OracleFileSSOWalletImpl.getWalletData: locking (shared) dummy sso file..
OracleFileSSOWalletImpl.getWalletData: locking (shared) sso file..
Oracle Wallet: wallet size 9949
OracleWallet: getSecretStore
OracleSecretStore: loading wallet from stream
OracleSSOKeyStoreImpl: engineLoad
OracleKeyStoreSpi: Loading wallet from stream
OracleWallet.open: java.lang.ExceptionInInitializerError
at javax.crypto.Mac.getInstance(DashoA13*..)
at oracle.security.crypto.cert.PKCS12.verify(PKCS12.java:406)
at oracle.security.pki.OracleKeyStoreSpi.engineLoad(Unknown Source)
at oracle.security.pki.OracleSSOKeyStoreSpi.engineLoad(Unknown Source)
at oracle.security.pki.OracleSecretStore.load(Unknown Source)
at oracle.security.pki.OracleWallet.getSecretStore(Unknown Source)
at oracle.security.pki.OracleWallet.open(Unknown Source)
at oracle.security.jps.internal.credstore.ssp.CsfWalletManager.openWallet(CsfWalletManager.java:173)
..
Caused by: java.lang.SecurityException: Cannot set up certs for trusted CAs
at javax.crypto.SunJCE_b.<clinit>(DashoA13*..)
... 38 more
Caused by: java.lang.SecurityException: Jurisdiction policy files are not signed by trusted signers!
at javax.crypto.SunJCE_b.a(DashoA13*..)
OracleWallet.open: java.lang.ExceptionInInitializerError
...<BEA-090892> <The loading of OPSS java security policy provider failed due to exception, see the exception stack trace or the server log file for root cause. If still see no obvious cause, enable the debug flag -Djava.security.debug=jpspolicy to get more information. Error message: JPS-01050: Opening of wallet based credential store failed. Reason java.io.IOException>
....
at weblogic.security.service.CommonSecurityServiceManagerDelegateImpl.loadOPSSPolicy(CommonSecurityServiceManagerDelegateImpl.java:1398)
at weblogic.security.service.CommonSecurityServiceManagerDelegateImpl.initialize(CommonSecurityServiceManagerDelegateImpl.java:1018)
at weblogic.security.service.SecurityServiceManager.initialize(SecurityServiceManager.java:873)
at weblogic.security.SecurityService.start(SecurityService.java:141)
at weblogic.t3.srvr.SubsystemRequest.run(SubsystemRequest.java:64)
Truncated. see log file for complete stacktrace
Caused By: oracle.security.jps.JpsRuntimeException: JPS-01050: Opening of wallet based credential store failed. Reason java.io.IOException
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
Symptoms |
Cause |
Solution |