PQ83045: Cannot create keystore with iKeyman after Verisign Certificates have expired on Linux/PPC with GSKit6

 Fixes are available

PQ85834; 2.0.47,2.0.42,2.0.42.1,2.0.42.2: GSKit vulnerability and cumulative fix
PQ83045; 2.0.42: Expiring default CA and Intermediate certs cause problems



APAR status
Closed as program error.

Error description
Some versions of iKeyman/iKeycmd will no longer create new
keystores with the expired Verisign Certificate.  This failure
is dependent of whether a customer uses Verisign Certificates or
not.  This problem has been seen on Linux/PPC
Local fix
N/A
Problem summary
If one has expiring CA or Intermediate certs in
keyring and they try to create a new .kdb file,
will recieve an "An error occurred while insert
to the database" from the Ikeyman utility used
.kdb files.
Problem conclusion
Problem is in gskit ikeyman utility
Temporary fix Comments
APAR information
APAR number PQ83045
Reported component name WAS HTTP SERVER
Reported component ID 5630A3603
Reported release 00P
Status CLOSED PER
PE NoPE
HIPER NoHIPER
Special Attention NoSpecatt
Submitted date 2004-01-09
Closed date 2004-01-16
Last modified date 2004-01-16

APAR is sysrouted FROM one or more of the following:

APAR is sysrouted TO one or more of the following:

Modules/Macros
GSKIT          

Publications Referenced

Fix information
Fixed component name WAS HTTP SERVER
Fixed component ID 5630A3603

Applicable component levels
R00W PSN    UP


Document Information


Product categories: Software > Application Servers > Distributed Application & Web Servers > IBM HTTP Server > Runtime
Operating system(s):
Software version: 00P
Software edition:
Reference #: PQ83045
IBM Group: Software Group
Modified date: Jan 16, 2004