APAR status
Closed as program error.
Error description
javax.net.ssl.SSLKeyException: Public key not type RSA is thrown invalidly. Java5 does not throw this error. This error can occur at all Service Refresh levels, including the base level of Java6. This error can occur in either 31bit or 64bit jvms.
Local fix
users who have java5 installed *may* use the java5 version of the ibmjsseprovider2.jar in place of the java6 version *ONLY* if no java6 unique functions are NOT required.
Problem summary
Cannot use DSA certificate using RSA cipher suite on Java 6.0. The following is shown in the trace: main, handling exception: javax.net.ssl.SSLKeyException: Public key not of type RSA main, SEND SSLv3 ALERT: fatal, description = unexpected_message main, WRITE: SSLv3 Alert, length = 2 [Raw write]: length = 7 0000: 15 03 00 00 02 02 0a ....... main, called closeSocket() ClientJsse: can't connect using: SSL_RSA_WITH_RC4_128_MD5 javax.net.ssl.SSLKeyException: Public key not of type RSA javax.net.ssl.SSLKeyException: Public key not of type RSA at com.ibm.jsse2.RSAClientKeyExchange.<init>(RSAClientKeyExchange.j ava:95) at com.ibm.jsse2.ClientHandshaker.serverHelloDone(ClientHandshaker. java:640) at com.ibm.jsse2.ClientHandshaker.processMessage(ClientHandshaker.j ava:223) at com.ibm.jsse2.Handshaker.processLoop(Handshaker.java:617) at com.ibm.jsse2.Handshaker.process_record(Handshaker.java:554) at com.ibm.jsse2.SSLSocketImpl.readRecord(SSLSocketImpl.java:971) at com.ibm.jsse2.SSLSocketImpl.performInitialHandshake(SSLSocketImp l.java:1193) at com.ibm.jsse2.SSLSocketImpl.startHandshake(SSLSocketImpl.java:12 20) at com.ibm.jsse2.SSLSocketImpl.startHandshake(SSLSocketImpl.java:12 04) at ClientJsse.main(ClientJsse.java:166)
Problem conclusion
This defect will be fixed in: 6.0.0 SR8 FP1 IBMJSSEProvider2.jar dated 20100325 Hursley Defect 163742 Austin Defect 110177
Temporary fix
Comments
APAR Information
APAR number
IZ73187
Reported component name
SECURITY
Reported component ID
620700125
Reported release
600
Status
CLOSED PER
PE
NoPE
HIPER
NoHIPER
Special Attention
NoSpecatt
Submitted date
2010-03-22
Closed date
2010-05-23
Last modified date
2010-07-08
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Fix information
Fixed component name
SECURITY
Fixed component ID
620700125
Applicable component levels
R600 PSY
UP
[{"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSNVBF","label":"Runtimes for Java Technology"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"6.0","Edition":"","Line of Business":{"code":"LOB36","label":"IBM Automation"}}]
Document Information
Modified date:
07 December 2020