APAR status
Closed as program error.
Error description
Error Message: N/A . Stack Trace: N/A .
Local fix
Problem summary
1. Update KDB format to support PBES2 Add PBES2 (Password-Based Encryption Standard-2) encryption algorithm based on AES-256 and Hmac-SHA-384.
Problem conclusion
Set the PBES2 algorithm based on AES-256 and HMAC-SHA-384 as the default encryption algorithm. Also, support the legacy PBES1-format Keystore. "com.ibm.security.cmskeystore.CMSLoadStoreParameterFactory.newCM SLoadParameter(File ksFile, ProtectionParameter protection, boolean pqc)" can create both PBES1 and PBES2 formatted Keystore via "pqc" boolean parameter. . This APAR will be fixed in the following Releases: . IBM SDK, Java Technology Edition 8 SR8 FP5 (8.0.8.5) . Contact your IBM Product's Service Team for these Service Refreshes and Fix Packs. For those running stand-alone, information about the available maintenance can be found at: https://www.ibm.com/support/pages/java-sdk
Temporary fix
Comments
APAR Information
APAR number
IJ45598
Reported component name
SECURITY
Reported component ID
620700125
Reported release
270
Status
CLOSED PER
PE
NoPE
HIPER
NoHIPER
Special Attention
NoSpecatt / Xsystem
Submitted date
2023-02-27
Closed date
2023-02-28
Last modified date
2023-02-28
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Fix information
Fixed component name
SECURITY
Fixed component ID
620700125
Applicable component levels
[{"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSNVBF","label":"Runtimes for Java Technology"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"270","Line of Business":{"code":"LOB36","label":"IBM Automation"}}]
Document Information
Modified date:
01 March 2023