APAR status
Closed as program error.
Error description
Abstract Description: When SSLv2Hello is disabled by Security property jdk.tls.disabledAlgorithms, and if the application enables SSLv2Hello programmatically by calling setEnabledProtocols(), property's value SSLv2Hello is ignored. Error Message: N/A Stack Trace, if applicable: N/A Other Error Information, as reported by customer: N/A Workaround: Do not enable SSLv2Hello by setEnabledPtorocols(), if it should not be used.
Local fix
N/A
Problem summary
Security property jdk.tls.disabledAlgorithms does not work for SSLv2Hello algorithm.
Problem conclusion
Security property jdk.tls.disabledAlgorithms can be used to disable SSLv2Hellos, even if the application try to enable it. The files affected by this APAR are: ibmjsseprovider2.jar - 8.0 build_20220415--509 The associated Hursley RTC Problem Report is 147392. The associated Austin Git issue is Issue #216 for IBMJSSE. The associated Austin APAR issue is IJ39441. The fix was delivered for: Java 8.0 SR7 FP10.
Temporary fix
Comments
APAR Information
APAR number
IJ39441
Reported component name
JAVA SECURE SOC
Reported component ID
TIVSECJSS
Reported release
600
Status
CLOSED PER
PE
NoPE
HIPER
NoHIPER
Special Attention
NoSpecatt / Xsystem
Submitted date
2022-04-14
Closed date
2022-04-19
Last modified date
2022-04-28
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Fix information
Fixed component name
JAVA SECURE SOC
Fixed component ID
TIVSECJSS
Applicable component levels
[{"Line of Business":{"code":"LOB10","label":"Data and AI"},"Business Unit":{"code":"BU008","label":"Security"},"Product":{"code":"SSWKFH","label":"Tivoli Components - Java Security"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"600"}]
Document Information
Modified date:
29 April 2022