PQ72629: JCEKS formatted keystores created by non-IBM JDK JCE isn't readable by the IBM JDK JCE

 A fix is available

Security JCE Cumulative Fix



APAR status
Closed as user error.

Error description
Environment:
WebSphere Application Server 4.0.5 AE

Description:
   A JCEKS keystore file was created using the Sun JDK
keytool file, but when it is attempted to be read by the IBM
JDK using the IBM JCE, the JCEKS keystore file fails to be read.
The IBM JDK is able to read the JCEKS keystore file when the
ibmjcefw.jar file is replaced by the Sun JDK's jce1_2_2.jar
file. The IBM JDK needs to be able to read a JCEKS formatted
keystore file without repacing the IBM JCE with a non-IBM JCE.
Local fix Problem summary Problem conclusion Temporary fix
WAS_Security_03-14-2003_4.0.6-4.0.5-4.0.4-4.0.3-4.0.2-4.0.1_
JCE_cumulative_Fix.jar which contains the 3/14/2003
IBM JCE build suggested by Tivoli as a test fix.
Comments
Keystores contain serialized objects.  Since the keystores were
created using Sun's JCE implementation, the implementation
files needed to be in the classpath to be able to read the
keystores.
APAR information
APAR number PQ72629
Reported component name WEBSPHERE AE LI
Reported component ID 5630A2207
Reported release 400
Status CLOSED USE
PE NoPE
HIPER NoHIPER
Submitted date 2003-03-28
Closed date 2003-05-28
Last modified date 2003-05-28

APAR is sysrouted FROM one or more of the following:

APAR is sysrouted TO one or more of the following:

Modules/Macros

SRLS

Fix information

Applicable component levels


Document Information


Product categories: Software > Application Servers > Distributed Application & Web Servers > WebSphere Application Server > General
Operating system(s):
Software version: 400
Software edition:
Reference #: PQ72629
IBM Group: Software Group
Modified date: May 28, 2003