IV27934: ALLOW IMPORT OF IBM-1047 BASE64 ENCODED CERTIFICATES

Subscribe

You can track all active APARs for this component.

APAR status

  • Closed as program error.

Error description

  • Error Message: keytool error:  Input not an X.509 certificate
    .
    Stack Trace: N/A
    .
    

Local fix

  • The workaround is converting the input to ASCII
    

Problem summary

  • I am trying to import a server CA certificate (generated on
    z/OS)  to
    the client under USS on the same system using the following
    command:
    hwkeytool -importcert -file db.cacert -trustcacerts -keystore
    myTrustStore -alias db_ca
    and got the exception:
    keytool error: java.lang.Exception: Input not an X.509
    certificate
    However, when I import the same CA certificate to a Windows
    machine,
    the import worked successfully.
    

Problem conclusion

  • This defect will be fixed in:
    6.0.0 SR12
    6.0.1 SR4
    7.0.0 SR3
    5.0.0 SR15
    .
    Add support for reading EBCDIC certificates in addition to ASCII
    certificates to hwkeytool.
    

Temporary fix

Comments

APAR Information

  • APAR number

    IV27934

  • Reported component name

    JAVA 5 SECURITY

  • Reported component ID

    620500125

  • Reported release

    500

  • Status

    CLOSED PER

  • PE

    NoPE

  • HIPER

    NoHIPER

  • Special Attention

    NoSpecatt

  • Submitted date

    2012-09-13

  • Closed date

    2012-09-13

  • Last modified date

    2012-09-13

  • APAR is sysrouted FROM one or more of the following:

    IV27933

  • APAR is sysrouted TO one or more of the following:

Fix information

  • Fixed component name

    JAVA 5 SECURITY

  • Fixed component ID

    620500125

Applicable component levels

  • R500 PSY

       UP



Rate this page:

(0 users)Average rating

Document information


More support for:

Runtimes for Java Technology
Security

Software version:

5.0

Reference #:

IV27934

Modified date:

2012-09-13

Translate my page

Machine Translation

Content navigation