APAR status
Closed as program error.
Error description
Certificate pinning goes through successfully on 7.1 irrespective of the correct certificate being pinned
Local fix
Problem summary
**************************************************************** * USERS AFFECTED: * * All users on 7. 1 using certificate pinning * **************************************************************** * PROBLEM DESCRIPTION: * * All users on 7. 1 using certificate pinning, the * * certificated will be accepted irrespective of the * * certificate being available on the client * **************************************************************** * RECOMMENDATION: * * - * ****************************************************************
Problem conclusion
All users on 7. 1 using certificate pinning, the certificated will be accepted irrespective of the certificate being available on the client. This is now fixed by ensuring that the TLSSocketFactory takes into consideration before passing the certificate.
Temporary fix
Comments
APAR Information
APAR number
PI68232
Reported component name
MOBILE1ST PLATF
Reported component ID
5725I4301
Reported release
710
Status
CLOSED PER
PE
NoPE
HIPER
NoHIPER
Special Attention
NoSpecatt / Xsystem
Submitted date
2016-08-28
Closed date
2016-11-16
Last modified date
2016-11-16
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Fix information
Fixed component name
MOBILE1ST PLATF
Fixed component ID
5725I4301
Applicable component levels
R710 PSY
UP
[{"Business Unit":{"code":"BU053","label":"Cloud & Data Platform"},"Product":{"code":"SSZH4A","label":"IBM Worklight"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"710","Edition":"","Line of Business":{"code":"LOB45","label":"Automation"}}]
Document Information
Modified date:
16 November 2016