java.security.NoSuchAlgorithmException: Cannot find any provider supporting RSA/NONE/OAEPPADDING

Got below error during web service request:-

java.security.NoSuchAlgorithmException: Cannot find any provider supporting RSA/NONE/OAEPPADDING
at javax.crypto.Cipher.getInstance(DashoA12275)
at org.apache.ws.security.util.WSSecurityUtil.getCipherInstance(WSSecurityUtil.java:703)
at org.apache.ws.security.processor.EncryptedKeyProcessor.handleEncryptedKey(EncryptedKeyProcessor.java:145)
at org.apache.ws.security.processor.EncryptedKeyProcessor.handleEncryptedKey(EncryptedKeyProcessor.java:114)

Continue reading “java.security.NoSuchAlgorithmException: Cannot find any provider supporting RSA/NONE/OAEPPADDING”

Concatenate/merge/join Multiple Text Files in Windows

Last night I got many log files from 8 different servers, all the servers have date wise log files. I separated out similar logs and kept in a folder, now as per requirement team needs the one type of log in consolidated manner means “USAGE.log” of all days and servers in one USAGE-Consildated.log file.

I was searching for some utility on Google but not get any. Later I thought about DOS Batch command to do the same but a simple copy command did it for me.

Continue reading “Concatenate/merge/join Multiple Text Files in Windows”

uncaught exception: [Exception… “Not enough arguments” (NS_ERROR_XPC_NOT_ENOUGH_ARGS)

I was testing my web application on FireFox5 , I faced “not enough arguments” issue. During investigation what I found is while opening the page we are hitting actual issues inside ‘addEventListener’ function. I searched web around behavior of ‘addEventListener’ in firefox and found that it expect third argument as well so I replaced below code locally and it worked for me =)

addEventListener(“load”, function(event) {
      _init();
);

with Continue reading “uncaught exception: [Exception… “Not enough arguments” (NS_ERROR_XPC_NOT_ENOUGH_ARGS)”

How to read Blue Dump’s (BSOD) Minidump file

From couple of weeks in my brother’s machine he was getting Blue Dump screen with message “DRIVER_IRQL_NOT_LESS_OR_EQUAL”. Today to investigate I asked him to pass me the minidump files. Minidump are file that windows write for debugging purpose at below location:

%SystemRoot%\Minidump

in the above folder you will find files with ext .dmp
if you open this file with notepad or any other editor you will not be able to read it’s content.

Continue reading “How to read Blue Dump’s (BSOD) Minidump file”

Mainframe CICS DB2 : Security mechanism not supported

I was writing a code to access DB2 in CICS where I encountered this error. This error encounters when you are trying to access a secured Db with default options. In order to get this working, you have to specify ‘securityMechanism’ property in your connection string with value as supported by server, see below:

jdbc:db2://SERVERNAME:3700/DB:securityMechanism=7;

Continue reading “Mainframe CICS DB2 : Security mechanism not supported”

Mainframe CICS DB2 : java.lang.NoClassDefFoundError: com/ibm/crypto/provider/IBMJCE

I was trying to access Mainframe () DB2 using standalone application with “com.ibm.db2.jcc.DB2Driver” driver where I encountered the below error

java.lang.NoClassDefFoundError: com/ibm/crypto/provider/IBMJCE

Problem was that ibmjceprovider.jar was missing from my classpath and java.security file I added the jar file and then added below line in security file..it works.

security.provider.10=com.ibm.crypto.provider.IBMJCE

Spring cross site scripting XSS issues solution

XSS (Cross-site Scripting) is one of the most common vulnerabilities with a web-application. And, it can be exploited by hackers very easily without using any sophisticated tool.

How does it work?
Most web-applications have forms (text-box etc.) to receive input-data from user. So, a web-application may have a input-text-field to get 'user-id'. The hacker may enter anything in it including "JavaScript". If the hacker enters JavaScript (a malicious code), the server may process it, and then return it. In this case, user-id is not authenticated and it is sent as it is on the error page.

If the user's input data is returned as it is, the java-script code may execute. And, hacker wins!!

I am posting solution for Spring… 

In Spring-MVC, form-tags are used to create jsp page. Spring MVC provides multiple options to encode the html-escape-sequences on server side.

  • At global level, it can be defined in web.xml file. This will be applicable to entire application. All form-tags would refer to this definition. The sample code is shown below:

         <context-param>
            <param-name>defaultHtmlEscape</param-name>
            <param-value>true</param-value>
        </context-param>

  • At page level, it is defined as a tag-declaration. The code is:

          Any form-tag, after the above declaration uses html-escape-sequence-encoding.

          <spring:htmlEscape defaultHtmlEscape="true" />

  • Third option is to define it as attribute for each form-tag. For example, a input-text can be defined as :

          <form:input path="name" htmlEscape="true" />

           Depending upon requirement, it can be implemented as global, page or tag level.

I hope this information helps. Please do post your comments 🙂

How to Delete .SVN folders in Linux and Windows

Hi all,

Yesterday I got a code for study that was actually maintained inside Subversion. The code I get was not a exported copy of subversion, because of this I get a deep hierarchy of code included ".svn" folder in each folder. Now before start working with the code in eclipse it was mandatory for me to remove the .svn folders.

Below I am providing solution for both OS (windows/Linux) to remove these recursive ".svn" folders. Hope you will find helpful.

Do post your comments 🙂

Solution under Windows: 

Right click on the folder and click Search..

Enter .svn as the filename to search for.

Click “More advanced options” and select:

– Search hidden files and folders

– Search subfolders

Press search button and delete the folders you find appropriate. 

Solution under Linux/Unix: 

find ./ -name ".svn" | xargs rm -Rf 

or

find . -type d -name ‘.svn’ -print0 | xargs -0 rm -rdf