APAR status
Closed as program error.
Error description
Error Message: The IBMJCECCA provider uses wrong OIDs for RSA signature algorithms. The wrong OIDs are 1.3.14.3.2.26 for SHA1withRSA, 2.16.840.1.101.3.4.2.1 for SHA2withRSA, 2.16.840.1.101.3.4.2.2 for SHA3withRSA, and 2.16.840.1.101.3.4.2.3 for SHA5withRSA. . Stack Trace: N/A .
Local fix
Problem summary
The IBMJCECCA provider uses wrong OIDs for RSA signature algorithms.
Problem conclusion
This defect will be fixed in: 7.0.0 SR1 . The OID associated with each RSA signature algorithm is updated to the correct OID. The correct OIDs are 1.2.840.113549.1.1.5 for SHA1withRSA, 1.2.840.113549.1.1.11 for SHA2withRSA, 1.2.840.113549.1.1.12 for SHA3withRSA, and 1.2.840.113549.1.1.13 for SHA5withRSA.
Temporary fix
Comments
APAR Information
APAR number
IV15420
Reported component name
SECURITY
Reported component ID
620700125
Reported release
260
Status
CLOSED PER
PE
NoPE
HIPER
NoHIPER
Special Attention
NoSpecatt
Submitted date
2012-02-15
Closed date
2012-02-15
Last modified date
2012-02-15
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Fix information
Fixed component name
SECURITY
Fixed component ID
620700125
Applicable component levels
R260 PSY
UP
[{"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSNVBF","label":"Runtimes for Java Technology"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"260","Edition":"","Line of Business":{"code":"LOB36","label":"IBM Automation"}}]
Document Information
Modified date:
07 December 2020