Topic
  • 2 replies
  • Latest Post - ‏2009-03-04T06:42:25Z by SystemAdmin
SystemAdmin
SystemAdmin
101 Posts

Pinned topic unable to decrypt password on j9 jvm on iseries

‏2009-02-27T12:56:16Z |
hi all,
i am facing a very strange issue while decrypting some password on j9 jvm.
we have some application which while run on websphere running on j9 jvm able to decrypt the password. but if i try to do the same thing on PASE i.e on qshell the password wont get decrypted.
but if i run the same code on classic jvm then even on pase it run successfully.

i am using jdk 1.5 version for both classic and j9.
websphere 6.1

any pointers will be really helpful.
the error stack trace i get on j9 is as follows:
java.io.IOException: com.sun.crypto.provider.SealedObjectForKeyProtector
at com.ibm.crypto.provider.JceKeyStore.engineLoad(Unknown Source)
at java.security.KeyStore.load(KeyStore.java:1173)
at com.mycomp.crypto.server.internal.JCEKeyStoreManager.init(JCEKeyStor
eManager.java:126)
at com.mycomp.crypto.server.internal.JCEKeyStoreManager.getKey(JCEKeySt
oreManager.java:70)
at com.mycomp.crypto.server.ServerCrypto.getCryptoAlgorithm(ServerCrypt
o.java:101)
at com.mycomp.crypto.server.ServerCrypto.decrypt(ServerCrypto.java:34)
at TestServerCryptoDecryptShaggy.testDecrypt(TestServerCryptoDecryptS
haggy.java:18)
at TestServerCryptoDecryptShaggy.main(TestServerCryptoDecryptShaggy.j
ava:40)

For information following are the things i have already tried.
providers are there in java.security

change the java.security.policy file but didn't work.

any pointer will be really helpful.
its a blocker for us.
Updated on 2009-03-04T06:42:25Z at 2009-03-04T06:42:25Z by SystemAdmin
  • SystemAdmin
    SystemAdmin
    101 Posts

    Re: unable to decrypt password on j9 jvm on iseries

    ‏2009-03-04T06:31:29Z  
    hi all,

    i got the solution for my error.
    We were using a ketstore created outside the j9 hence it was unable to read the keystore.
    this is answered in several other thread that keystore created outside j9 cannot be read using j9.
    we created a new keystore using j9 and it worked fine.

    our QA team didnt tell this earlier that keystore was created outside j9.

    Cheers...
  • SystemAdmin
    SystemAdmin
    101 Posts

    Re: unable to decrypt password on j9 jvm on iseries

    ‏2009-03-04T06:42:25Z  
    got the solution