IBM Support

IV68890: PROVIDING PROPERTY TO MAKE 'SSLV3' MATCHING 'SSL' BEHAVIOR

Subscribe to this APAR

By subscribing, you receive periodic emails alerting you to the status of the APAR, along with a link to the fix after it becomes available. You can track this item individually or track all items by product.

Notify me when this APAR changes.

Notify me when an APAR for this component changes.

 

APAR status

  • Closed as program error.

Error description

  • Error Message: Due to POODLE fix, "SSLv3" is disabled by
    default.The customer has hardcoded "SSLv3" in their application,
    and they need that part of code working like "SSL".Since the
    customer will not update their hardcoded "SSLv3" to "SSL",  IBM
    will provider a new system propertycom.ibm.jsse2.convertSSLv3 =
    true <PIPE> false,  default is falseto convert "SSLv3" to "SSL".
    .
    Stack Trace: N.A.
    .
    

Local fix

  • Do not use SSLv3.
    

Problem summary

  • Need a system property to make SSLv3 working as SSL in the
    customer's application.
    

Problem conclusion

  • IBM JSSE2 provider added a new system
    propertycom.ibm.jsse2.convertSSLv3 = true <PIPE> false,  default
    is falseto allow the application to convert SSLv3 to SSL.The
    corresponding Austin defect is 116139.The corresponding Hursley
    defect is 202672.The corresponding RTC Problem Report is
    83258.Platform affected: All platforms.JVMs affected: 5.0, 6.0,
    6.26, 7.0, 7.27, 8.0.Jars affected: ibmjsseprovider2.jar.The fix
    will be available in 150_SR16_FP10, 160_SR16_FP4, 626_SR8_FP4,
    170_SR9, 727_SR3, 180_SR1.Build level is 20150120.
    .
    This APAR will be fixed in the following Java Releases:
       6 R1 SR8 FP4   (6.1.8.4)
       5.0  SR16 FP10 (5.0.16.10)
       6    SR16 FP4  (6.0.16.4)
       7    SR9       (7.0.9.0)
       7 R1 SR3       (7.1.3.0)
       8    SR1       (8.0.1.0)
    .
    Contact your IBM Product's Service Team for these Service
    Refreshes and Fix Packs.
    For those running stand-alone, information about the Service
    Refreshes and Fix Packs can be found at:
               https://www.ibm.com/developerworks/java/jdk/
    

Temporary fix

Comments

APAR Information

  • APAR number

    IV68890

  • Reported component name

    SECURITY

  • Reported component ID

    620700125

  • Reported release

    260

  • Status

    CLOSED PER

  • PE

    NoPE

  • HIPER

    NoHIPER

  • Special Attention

    NoSpecatt

  • Submitted date

    2015-01-22

  • Closed date

    2015-02-03

  • Last modified date

    2015-03-09

  • APAR is sysrouted FROM one or more of the following:

  • APAR is sysrouted TO one or more of the following:

    IV68891

Fix information

  • Fixed component name

    SECURITY

  • Fixed component ID

    620700125

Applicable component levels

  • R260 PSY

       UP

  • R600 PSY

       UP

[{"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSNVBF","label":"Runtimes for Java Technology"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"260","Edition":"","Line of Business":{"code":"LOB36","label":"IBM Automation"}}]

Document Information

Modified date:
07 December 2020