APAR status
Closed as program error.
Error description
When PBKDF2 derived keys generated from SecretKeyFactory is used in password-based encryption. The java.security.InvalidKeyException will be thrown with the message like: "Invalid AES key length: 179 bytes". The displayed number might be different depend on the key length. This is happening because the information of the key (e.g. key size) is added to the encoded bytes when getEncoded() is invoked to get the raw bytes of the key. JVM affected: 6.0, 6.26, 7.0
Local fix
N/A
Problem summary
When PBKDF2 derived keys generated from SecretKeyFactory is used in password-based encryption. The java.security.InvalidKeyException will be thrown with the message like: "Invalid AES key length: 179 bytes". The displayed number might be different depend on the key length. This is happening because the information of the key (e.g. key size) is added to the encoded bytes when getEncoded() is invoked to get the raw bytes of the key.
Problem conclusion
Hursley defect: 192130. Affects ibmjceprovider.jar. Available in 6.0 SR11, 6.0_26 SR 3, and 7.0 SR 3 Jar build date: 120601
Temporary fix
Comments
APAR Information
APAR number
IV21993
Reported component name
TIV JAVA CRYPTO
Reported component ID
TIVSECJCE
Reported release
100
Status
CLOSED PER
PE
NoPE
HIPER
NoHIPER
Special Attention
NoSpecatt
Submitted date
2012-05-31
Closed date
2012-06-01
Last modified date
2012-06-01
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Fix information
Fixed component name
TIV JAVA CRYPTO
Fixed component ID
TIVSECJCE
Applicable component levels
R100 PSY
UP
[{"Business Unit":{"code":"BU048","label":"IBM Software"},"Product":{"code":"SSCZL42","label":"JCE"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"100","Edition":"","Line of Business":{"code":"","label":""}}]
Document Information
Modified date:
01 June 2012