VOOZH about

URL: https://www.ibm.com/support/pages/apar/IJ45200

⇱ IJ45200: IBMJCEPLUS PROVIDER, DURING CHACHA20-POLY1305 CRYPTO OPERATIONS, INCORRECTLY THROWS AN ILLEGALSTATEEXCEPTION

IJ45200: IBMJCEPLUS PROVIDER, DURING CHACHA20-POLY1305 CRYPTO OPERATIONS, INCORRECTLY THROWS AN ILLEGALSTATEEXCEPTION

APAR status

  • Closed as program error.

Error description

  • Error Message: Fatal (INTERNAL_ERROR): Fail to wrap application
data.
.
Stack Trace: java.security.ProviderException: Could not
determine buffer size
 at javax.crypto.CipherSpi.a(Unknown Source)
 at javax.crypto.CipherSpi.engineDoFinal(Unknown
Source)
 at javax.crypto.Cipher.doFinal(Unknown Source)
 at
com.ibm.jsse2.SSLCipher$T12CC20P1305WriteCipherGenerator$CC20P13
05WriteCipher.encrypt(SSLCipher.java:2473)
 at
com.ibm.jsse2.OutputRecord.t10Encrypt(OutputRecord.java:410)
 at
com.ibm.jsse2.OutputRecord.encrypt(OutputRecord.java:315)
 at
com.ibm.jsse2.SSLEngineOutputRecord.encode(SSLEngineOutputRecord
.java:272)
 at
com.ibm.jsse2.SSLEngineOutputRecord.encode(SSLEngineOutputRecord
.java:174)
 at
com.ibm.jsse2.SSLEngineImpl.encode(SSLEngineImpl.java:258)
 at
com.ibm.jsse2.SSLEngineImpl.writeRecord(SSLEngineImpl.java:205)
 Caused by: java.lang.IllegalStateException: Cipher has not
been initialized
 at
com.ibm.crypto.plus.provider.ChaCha20Poly1305Cipher.checkCipherI
nitialized(ChaCha20Poly1305Cipher.java:551)
 at
com.ibm.crypto.plus.provider.ChaCha20Poly1305Cipher.engineDoFina
l(ChaCha20Poly1305Cipher.java:147)
 ... 58 more}
.
Before the IllegalStateException, a ShortBufferException was
thrown.

Local fix



Problem summary


    

  • IBMJCEPlus provider, during ChaCha20-Poly1305 crypto operations,
incorrectly throws an IllegalStateException



Problem conclusion


    

  • The JVM has been updated so that a ShortBufferException during
during ChaCha20-Poly1305 crypto operations, sets the internal
state variables correctly so that IllegalStateException is not
thrown.
The affected jar file is: ibmjceplus.jar
JVMs affected: Java 8.
The associated Java Security GIT issue is: 472
The associated RTC problem report is: 148403
The Java 8 build dates are:
FIPS140-2 - Build-Date: 20221213
FIPS140-3 - Build-Date: 20221216
The fixes were delivered for: Java 8.0 sr8
.
This APAR will be fixed in the following Releases:
.
IBM SDK, Java Technology Edition
 8 SR8 (8.0.8.0)
.
Contact your IBM Product's Service Team for these Service
Refreshes and Fix Packs.
For those running stand-alone, information about the available
maintenance can be found at:
 https://www.ibm.com/support/pages/java-sdk



Temporary fix


    



Comments


    



APAR Information




    

  • APAR number
    IJ45200
    • 

  • Reported component name
    SECURITY
    • 

  • Reported component ID
    620700125
    • 

  • Reported release
    270
    • 

  • Status
    CLOSED PER
    • 

  • PE
    NoPE
    • 

  • HIPER
    NoHIPER
    • 

  • Special Attention
    NoSpecatt / Xsystem
    • 

  • Submitted date
    2023-02-02
    • 

  • Closed date
    2023-02-02
    • 

  • Last modified date
    2023-02-02
    • 





    

  • APAR is sysrouted FROM one or more of the following:
    

    • 

  • APAR is sysrouted TO one or more of the following:
    

    • 



Fix information


    

  • Fixed component name
    SECURITY
    • 

  • Fixed component ID
    620700125
    • 



Applicable component levels







 
 
 
 

 [{"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSNVBF","label":"Runtimes for Java Technology"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"270","Line of Business":{"code":"LOB36","label":"IBM Automation"}}]
 

 

 
 
 

 

 

 

 

 

 
Document Information


 

 

 Modified date:
 

 08 February 2023