Loading...
Loading...
The NetWorker server is a NetWorker Virtual Edition (NVE) 19.13. While applying an NvePlatformOsRollup package, the NVE reboots and the NVE web interface does not return: Figure 1: NVE Web Interface is Unavailable with Error 503. The avinstaller service failed to start: /space/avamar/var/avi/webserv_log/jetty.log show error: 2025-08-07 10:21:57.225 +0800 8610 [main] ERROR com.avamar.avinstaller.AVIMain - AVIMain failed to start. System exits java.lang.ExceptionInInitializerError: null Caused by: java.lang.SecurityException: JCE cannot authenticate the provider JsafeJCE at javax.crypto.Cipher.getInstance(Cipher.java:662) at sun.security.ssl.JsseJce.getCipher(JsseJce.java:191) at sun.security.ssl.SSLCipher.isTransformationAvailable(SSLCipher.java:483) at sun.security.ssl.SSLCipher.<init>(SSLCipher.java:472) at sun.security.ssl.SSLCipher.<clinit>(SSLCipher.java:81) ... 29 common frames omitted Caused by: java.util.jar.JarException: file:/usr/lib/jvm/jre-1.8.0_451-oracle-x64/lib/ext/cryptojce-6.2.5.jar has unsigned entries - com/rsa/jsafe/provider/Assurance.class at javax.crypto.JarVerifier.verifySingleJar(JarVerifier.java:510) at javax.crypto.JarVerifier.verifyJars(JarVerifier.java:371) at javax.crypto.JarVerifier.verify(JarVerifier.java:297) at javax.crypto.JceSecurity.verifyProviderJar(JceSecurity.java:164) at javax.crypto.JceSecurity.getVerificationResult(JceSecurity.java:190) at javax.crypto.Cipher.getInstance(Cipher.java:658) ... 33 common frames omitted
/usr/lib/jvm/jre-1.8.0_451-oracle-x64/lib/ext/cryptojce-6.2.5.jar is treated as unsigned, because it is signed with a weak algorithm that is disabled by the security property: jdk.jar.disabledAlgorithms=MD2, MD5, RSA keySize < 1024, DSA keySize < 1024, SHA1 denyAfter 2019-01-01 Install NvePlatformOsRollup_2025-R2-v3 requires higher version of cryptojce and cryptojcommon . # cd /opt/nre/java/jdk-17.0.12/bin/#./jarsigner -verify -verbose -certs /usr/lib/jvm/jre-1.8.0_451-oracle-x64/lib/ext/cryptojce-6.2.5.jar
A code fix is expected in 19.13.0.3 (Tentative January 2026). Applying the rollup on 19.13.0.3 and later is not expected to encounter this issue. Workaround: Follow the article NetWorker Virtual Edition: How to Remove and Reinstall avinstaller to reinstall avinstaller , you get both 6.2.5 and 6.2.5.0.2 for cryptojce and cryptojcommon : Then delete cryptojce-6.2.5.jar and cryptojcommon-6.2.5.jar . Steps: Log in to NVE as admin and switch to root Get the installed version of avinstaller package name dpnavinstaller # rpm -qa | grep dpnavi dpnavinstaller-19.9.0-78.x86_64 Download AvamarBundle_SLES12SP5_64-19.9.0-78.zip from https://www.dell.com/support/product-details/en-us/product/avamar/drivers Stop the service # avinstaller.pl –stop Make a copy of the AVIDB file which contains all software deployment history # cp /usr/local/avamar/var/avi/server_data/avidb /space/avidb.bak CAUTION: Do not create the AVIDB copy in the same folder as the original AVIDB . The copy will also be deleted from the folder following this procedure. Create the AVIDB copy in another location (like /space), as the KB shows. If the AVIDB is lost it can be recovered from backup. See the Additional Info section. Uninstall the avinstaller package # rpm -e dpnavinstaller-19.9.0-78.x86_64 Assume that the downloaded bundle is put in /tmp folder # unzip AvamarBundle_SLES12SP5_64-19.9.0-78.zip The files are extracted in the folder /tmp/ AvamarBundle_SLES12SP5_64 . # ll total 399116 -rwxr-xr-x 1 root root 45830900 Apr 14 2023 ADS_network_test_SLES-10.1.1-5.run -rw-r--r-- 1 root root 8118272 Apr 14 2023 AvamarDownloaderService-windows-x86-19.9.0-78.exe -rw-r--r-- 1 root root 9157120 Apr 14 2023 AvamarDownloaderService-windows-x86_64-19.9.0-78.exe -rwxr-xr-x 1 root root 341535319 Apr 14 2023 avinstaller-bootstrap-19.9.0-78.sles12sp5_64.x86_64.run -rwxr-xr-x 1 root root 3621210 Apr 14 2023 dpnnetutil-19.9.0-78.run Install avinstaller # ./avinstaller-bootstrap-19.9.0-78.sles12sp5_64.x86_64.run Verify that the package is installed # rpm -qa | grep dpnavi dpnavinstaller-19.9.0-78.x86_64# avinstaller.pl --version version: 19.9.0.78 Both 6.2.5 and 6.2.5.0.2 for cryptojce and cryptojcommon are listed: # ls -lhat /usr/lib/jvm/jre-1.8.0_451-oracle-x64/lib/ext total 12M drwxr-xr-x 2 root root 4.0K Aug 14 12:02 . drwxr-xr-x 14 root root 4.0K Aug 8 13:14 .. -r--r--r-- 1 root root 76K Aug 4 09:13 cryptojce-6.2.5.jar -r--r--r-- 1 root root 1.6M Aug 4 09:13 cryptojcommon-6.2.5.jar -rw-r--r-- 1 root root 3.7M Apr 5 11:24 cldrdata.jar -rw-r--r-- 1 root root 8.3K Apr 5 11:24 dnsns.jar -rw-r--r-- 1 root root 44K Apr 5 11:24 jaccess.jar -rw-r--r-- 1 root root 1.2M Apr 5 11:24 localedata.jar -rw-r--r-- 1 root root 746 Apr 5 11:24 meta-index -rw-r--r-- 1 root root 2.0M Apr 5 11:24 nashorn.jar -rw-r--r-- 1 root root 47K Apr 5 11:24 sunec.jar -rw-r--r-- 1 root root 292K Apr 5 11:24 sunjce_provider.jar -rw-r--r-- 1 root root 289K Apr 5 11:24 sunpkcs11.jar -rw-r--r-- 1 root root 69K Apr 5 11:24 zipfs.jar -r--r--r-- 1 root root 79K Apr 14 2023 cryptojce-6.2.5.0.2.jar -r--r--r-- 1 root root 1.6M Apr 14 2023 cryptojcommon-6.2.5.0.2.jar -r--r--r-- 1 root root 518K Apr 14 2023 jcmFIPS-6.2.5.jar -r--r--r-- 1 root root 7.9K Apr 14 2023 util-6.2.5.jar The avi service cannot start due to same error so you have to remove cryptojce-6.2.5.jar and cryptojcommon-6.2.5.jar # rm cryptojce-6.2.5.jar # rm cryptojcommon-6.2.5.jar NOTE: Do not rename these two files in the original path, otherwise the following error appears ( avinstaller still looking for renamed cryptojce-6.2.5.jar ) Restart avi service # avinstaller.pl --start Avistart process: INFO: Starting AVI service... INFO: Succeed to start AVI service. Check status of avi service and ensure that the service is up. # systemctl status avi Shut down the service and put back the original AVIDB file # avinstaller.pl –stop# cp /space/avidb.bak /usr/local/avamar/var/avi/server_data/avidb# avinstaller.pl --start Verify it works by login to the avinstaller web interface or run command # avi-cli -v localhost –listhistory
Click on a version to see all relevant bugs
Dell Integration
Learn more about where this data comes from
Bug Scrub Advisor
Streamline upgrades with automated vendor bug scrubs
BugZero Enterprise
Wish you caught this bug sooner? Get proactive today.