IBM Support

PK94509: JARSIGNER FAILS TO SIGN JAR FILE.

Subscribe

You can track all active APARs for this component.

 

APAR status

  • Closed as program error.

Error description

  • Error Message: java.lang.SecurityException: class
"Twofish.Twofish_Properties"'s signer information does not match
signer information of other classes in the same package
.
Stack Trace: java.lang.SecurityException: class
"Twofish.Twofish_Properties"'s signer information does not match
signer information of other classes in the same package
at java.lang.ClassLoader.checkCerts(ClassLoader.java)

at java.lang.ClassLoader._m$mDefineClass(ClassLoader.java)

at java.lang.ClassLoader.defineClass(ClassLoader.java)

at
java.security.SecureClassLoader.defineClass(SecureClassLoader.ja
va)
at java.net.URLClassLoader.defineClass(URLClassLoader.java)
.

Local fix

  • 



Problem summary


    

  • The problem is caused when the jar is signed using any other
signing algorithm except:
- SHA is the message digest scheme described in FIPS 180-1.
- SHA1withDSA is the signature scheme described in FIPS 186.
- DSA is the key generation scheme as described in FIPS 186.

    



Problem conclusion


    

  • This defect will be fixed in:
1.4.2 SR13-3
.
The JVM has been updated to verify the jar if the jar filed is
signed from any algorithm.
.
To obtain the fix:
Install build 20090927 or later

    



Temporary fix


    

  • 



Comments


    

  • 



APAR Information




    

  • APAR number
    PK94509
    • 

  • Reported component name
    JAVA(1.3/1.4 CO
    • 

  • Reported component ID
    5648C9800
    • 

  • Reported release
    42A
    • 

  • Status
    CLOSED  PER
    • 

  • PE
    NoPE
    • 

  • HIPER
    NoHIPER
    • 

  • Special Attention
    NoSpecatt / Xsystem
    • 

  • Submitted date
    2009-08-22
    • 

  • Closed date
    2009-09-29
    • 

  • Last modified date
    2009-11-05
    • 





    

  • APAR is sysrouted FROM one or more of the following:
    

    • 

  • APAR is sysrouted TO one or more of the following:
    

    • 



Fix information


    

  • Fixed component name
    JAVA(1.3/1.4 CO
    • 

  • Fixed component ID
    5648C9800
    • 



Applicable component levels


    

  • R42A  PSN
       UP
    • 

  • R42L  PSN
       UP
    • 

  • R42W  PSN
       UP
    • 

  • R420  PSN
       UP
    • 








      
              
                            

              

              [{"Business Unit":{"code":"BU048","label":"IBM Software"},"Product":{"code":"SUPPORT","label":"IBM Worldwide Support"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"1.4.2","Edition":"","Line of Business":{"code":"","label":""}}]
              

                          

          
 
        

      

    

      

        

          

            
Document Information


            

            


                        

            Modified date:
            

            09 February 2022
            

            
                      

        


        

        


      

    

  



    

  

  
    
            

          
Page Feedback