IZ81254: IMPROPERLY ENCODED MODULI IN AN RSAPUBLICKEY ARE NOT HANDLED BY IBMJCE.
Closed as program error.
Envt: IBM JDK 150 SR11 Component: IBM JCE Description : Improperly encoded moduli in an RSAPublicKey are not handled by IBMJCE. JVM affected: 142, 50, 60 JAR affected: ibmjceprovider.jar Additional Notes: Not a defect in IBM JCE code, but change warranted in order to align with other industry provider implementations (SUN, open SSL) Error message when processing public key in DER encoded certificate: java.lang.ArithmeticException: BigInteger: modulus not positive at java.math.BigInteger.modPow(BigInteger.java:1556) at com.ibm.crypto.provider.c.a(Unknown Source) at com.ibm.crypto.provider.c.a(Unknown Source) at com.ibm.crypto.provider.qc.engineVerify(Unknown Source) at java.security.Signature$Delegate.engineVerify(Signature.java:119 4) at java.security.Signature.verify(Signature.java:647) at SignatureTest.main(SignatureTest.java:164)
Use properly encoded RSA keypairs/certificates created using IBM providers.
Improperly encoded moduli in an RSAPublicKey are not handled by IBMJCE.
Affects ibmjceprovider.jar. Hursley defect 168838. Likely available in 1.4.2 SR13-FP8, 5.0 SR12-FP2, and 6.0 SR 9. (Also affects JCEFIPS, which customer has not requested, but a fix will be made FIPS at next opportunity). SVN build date: 20100730_01
Reported component name
TIV JAVA CRYPTO
Reported component ID
Last modified date
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Fixed component name
TIV JAVA CRYPTO
Fixed component ID
Applicable component levels
More support for:
Tivoli Components - Java Security
Software version: 100
Reference #: IZ81254
Modified date: 10 January 2011