IBM Support

IV62044: CMS PROVIDER 2.50 CAN NOT READ SOME OLD VERSION KEYSTORES

Subscribe

You can track all active APARs for this component.

APAR status

  • Closed as program error.

Error description

  • Error Message: N/A
    .
    Stack Trace: N/A
    .
    

Local fix

  • Use CMS Provider previous versions or other tool such as
    gsk8capicmd
    

Problem summary

  • CMS Provider 2.50 can not read some old version keystoresiKeyman
    8.0.382 generates CSR with no Attributes sequence
    

Problem conclusion

  • CMSProvider issue caused by the index rebuilding when opening
    some old version keystores.- Fixed CMS Provider 2.50 can't read
    some old version keystores.- Upgraded CMS Provider V3 format to
    use DES3.In additioniKeyman 8.0.382 generates CSR with no
    Attributes sequence.Ikeyman added some new features as
    followed:1) Validation warning on certificate receipt.if the
    received cert doesn't pass validation, then a warning msg
    raises.2) Validation indication on listing.if a cert is invalid,
    a warning msg raises. iKeycmd displays a question mark ? before
    the cert and a warning msg will be shown next line. Meanwhile,
    iKeymanchanges background color to yellow of the cert.3) User
    Validation support.-validate option has been supported from now
    on (a new "validate" button added to GUI). And an appropriate
    validation msg (successful or failed) will
    beshown.15481812bc4cdf2abf6c004f494ac83bf583ae04
    gskikm.jar5d1892775a8f3402d420477bd30855b4b16ce9ad
    ibmcmsprovider.jar
    .
    This APAR will be fixed in the following Java Releases:
       6 R1 SR8 FP1   (6.1.8.1)
       6    SR16 FP1  (6.0.16.1)
       7    SR7 FP1   (7.0.7.1)
       7 R1 SR1 FP1   (7.1.1.1)
    .
    Contact your IBM Product's Service Team for these Service
    Refreshes and Fix Packs.
    For those running stand-alone, Java maintenance is available
    from:
               https://www.ibm.com/developerworks/java/jdk/
    

Temporary fix

Comments

APAR Information

  • APAR number

    IV62044

  • Reported component name

    SECURITY

  • Reported component ID

    620700125

  • Reported release

    260

  • Status

    CLOSED PER

  • PE

    NoPE

  • HIPER

    NoHIPER

  • Special Attention

    NoSpecatt

  • Submitted date

    2014-06-27

  • Closed date

    2014-07-09

  • Last modified date

    2014-07-09

  • APAR is sysrouted FROM one or more of the following:

  • APAR is sysrouted TO one or more of the following:

Fix information

  • Fixed component name

    SECURITY

  • Fixed component ID

    620700125

Applicable component levels

  • R260 PSY

       UP

  • R600 PSY

       UP



Document information

More support for: Runtimes for Java Technology
Security

Software version: 260

Reference #: IV62044

Modified date: 09 July 2014