000023684 - How to fix Java Exceptions involving com.rsa.jsafe.JCMPInt.modInvertSchroeppel(Unknown Source) in BSAFE Crypto-J or SSL-J

Document created by RSA Customer Support Employee on Jun 16, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000023684
Applies ToRSA BSAFE Crypto-J
RSA BSAFE SSL-J
Issue

How to fix Java Exceptions involving com.rsa.jsafe.JCMPInt.modInvertSchroeppel(Unknown Source) in BSAFE Crypto-J or SSL-J


Exception with com.rsa.jsafe.JCMPInt.modInvertSchroeppel(Unknown Source) in the stack trace.
Cause

In Crypto-J versions prior to 3.5, multiprecision integer handling in com.rsa.jsafe.JCMPInt.modInvert() can trigger an infinite loop for unusual values.  The bug is caused by a performance optimization (in modInvertSchroeppel) that only effects a small fraction of inputs and is therefore not very effective.  This optimization was removed in version 3.5.

SSL-J uses Crypto-J and is thus effected by the same problem.  SSL-J 4.1.6.4 uses Crypto-J 3.5. 

ResolutionUpgrading to Crypto-J 3.5 or later and SSL-J 4.1.6.4 or later will solve the problem.
Legacy Article IDa34974

Attachments

    Outcomes