APAR status
Closed as program error.
Error description
Error Message: javax.crypto.BadPaddingException: message must be same length as key for rsa decryption . Stack Trace: javax.crypto.BadPaddingException: message must be same length as key for rsa decryption at com.ibm.crypto.plus.provider.RSA.engineDoFinal(RSA.java:98) at com.ibm.crypto.plus.provider.RSA.engineDoFinal(RSA.java:188) at javax.crypto.Cipher.doFinal(Unknown Source) at testRSAPAD.decryptNoInit(testRSAPAD.java:115) at testRSAPAD.main(testRSAPAD.java:48) . IBMJCE does not have this problem.
Local fix
Problem summary
For encryption, when the original string was an empty string, padding was not done. This caused the encryption problem. For decryption, the return code was the length of the decrypted string which was zero. But the return code zero was defined as an error.
Problem conclusion
For encryption, added padding even when the original string was empty. For decryption, changed the return code to -1 when it's failed. A fix is made to IBMJCEPlus FIPS140-2, FIPS140-3 The associated Hursley RTC Problem Report is 149995 JVMs affected: Java 8 The fix was delivered for Java 8 SR8 FP20 The affected jar is "ibmjceplus.jar" The build level of this jar for the affected releases is "build_20231129" . This APAR will be fixed in the following Releases: . IBM SDK, Java Technology Edition 8 SR8 FP20 (8.0.8.20) . Contact your IBM Product's Service Team for these Service Refreshes and Fix Packs. For those running stand-alone, information about the available maintenance can be found at: https://www.ibm.com/support/pages/java-sdk
Temporary fix
Comments
APAR Information
APAR number
IJ49480
Reported component name
SECURITY
Reported component ID
620700125
Reported release
270
Status
CLOSED PER
PE
NoPE
HIPER
NoHIPER
Special Attention
NoSpecatt / Xsystem
Submitted date
2023-12-09
Closed date
2023-12-09
Last modified date
2023-12-09
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Fix information
Fixed component name
SECURITY
Fixed component ID
620700125
Applicable component levels
[{"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSNVBF","label":"Runtimes for Java Technology"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"270","Line of Business":{"code":"LOB36","label":"IBM Automation"}}]
Document Information
Modified date:
09 December 2023