SFTP Error: Session.connect: java.security.InvalidAlgorithmParameterException: Prime size must be multiple of 64, and can only range from 512 to 1024 (inclusive)

Document created by mike_aronson Employee on Feb 11, 2014
Version 1Show Document
  • View in full screen mode

     SFTP Connection fails with this error:
      

     "Session.connect: java.security.InvalidAlgorithmParameterException: Prime size must be multiple of 64, and can only range from 512 to 1024 (inclusive)"

For Java 6, there is a prime limitation of 1024 which is why this error is being received when a host certificate of larger size is being passed.
 
This is a Java bug which is only known to be fixed in Java 8:
 
http://bugs.java.com/bugdatabase/view_bug.do?bug_id=7044060
 
To clarify, this is a Java limitation with prime size, not key length.  Boomi supports the industry standard of 2048 key length, but prime is different.
 
Boomi will not be able to support this until we upgrade the atom to Java 8.  Boomi is planning to upgrade the atom to Java 7 in 2014 and then Java 8 will follow at a later time.
 
Here are some alternative options to pursue in the meantime:
1. You could try creating a certificate component in AtomSphere and reference it
2. Discuss the requirements with the SFTP server side and determine if they can change the algorithm used on their end to generate a different host key.
3. Find another means of transmitting this data such as over http, web services, shared network path location, etc...
2 people found this helpful

Attachments

    Outcomes