IZ43907: IBM JSSE2 CLIENT THROWS FATAL ALERT (DESCRIPTION = INTERNAL_ERROR) WHEN ENCOUNTERING SERVER CERT NOT TRUSTED.
Closed as program error.
IBM JDK 160 SR3 IBM JSSE2 component Description: When custom TrustMananager is used and the handshake does not succeed due to certificate_unknown (per SSL protocol), a fatal, description = internal_error may result instead of fatal, description = certificate_unknown. JVM affected: 1.4.2, 1.5.0, 1.6.0 jar affected: ibmjsseprovider2.jar
Level 3 to update
When custom TrustMananager is used and the handshake does not succeed due to certificate_unknown (per SSL protocol), a fatal, description = internal_error will result instead of fatal, description = certificate_unknown when custom TrustManager throws CertificateException without setting a message.
Handle null message from CertificateException. Workaround: Have custom trustManager set message when CertificateException is thrown. The problem is fixed using in the IBMJSSEProvider2.jar dated 20090216 - JVM 1.4.2 sr14 IBMJSSEProvider2.jar dated 20090218 - JVM 1.5.0 sr10 IBMJSSEProvider2.jar dated 20090216 - JVM 1.6.0 sr5 Hursley Defect 146771
Reported component name
JAVA SECURE SOC
Reported component ID
Last modified date
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Fixed component name
JAVA SECURE SOC
Fixed component ID
Applicable component levels
More support for:
Tivoli Components - Java Security
Software version: 100
Reference #: IZ43907
Modified date: 20 February 2009