APAR status
Closed as program error.
Error description
Error Message, as reported by customer: The third party vendor cannot verify the XML file's signature using IBM Java 70 SR8 FP10. Stack Trace, if applicable: N/A Other Error Information, as reported by customer: N/A
Local fix
N/A
Problem summary
XML signature cannot be verified ERROR DESCRIPTION: The third party vendor cannot verify the XML file's signature generated using IBM Java 70 SR8 FP10.
Problem conclusion
Problem is in C14n canonicalization. Fix is to correct how node attributes are canonicalized in C14n canonicalization. The associated RTC PR is 104837 The associated Austin CMVC defect is 117130 The associated APAR is IV79003 JVMs affected : Java 6.0, Java 6.1, Java 7.0 , Java 7.1 and Java 8.0 The fix was delivered for Java 6.0 SR16 FP20, Java 6.1 SR8 FP20, Java 7.0 SR9 FP30, Java 7.1 SR3 FP30 and Java 8.0 SR2 FP10 The affected jar is "ibmxmlcrypto.jar". The build level of this jar for the affected releases is "20151210"
Temporary fix
Comments
APAR Information
APAR number
IV79003
Reported component name
JAVA SPEC REQUE
Reported component ID
TIVOXML00
Reported release
100
Status
CLOSED PER
PE
NoPE
HIPER
NoHIPER
Special Attention
NoSpecatt
Submitted date
2015-11-18
Closed date
2015-12-15
Last modified date
2015-12-15
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Fix information
Fixed component name
JAVA SPEC REQUE
Fixed component ID
TIVOXML00
Applicable component levels
R100 PSY
UP
[{"Business Unit":{"code":"BU008","label":"Security"},"Product":{"code":"SSWKFH","label":"Tivoli Components - Java Security"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"100","Edition":"","Line of Business":{"code":"","label":""}}]
Document Information
Modified date:
15 December 2015