APAR status
Closed as program error.
Error description
Error Message: NIST is deprecating the use of RSA key transport for key exchange and disabling its use after January 2024. Therefore, in Java 8 sr8 fp5, the following RSA cipher suites will be disabled in FIPS 140-3 Tech Preview mode: TLS_RSA_WITH_AES_128_CBC_SHA256 (x00, 3C) TLS_RSA_WITH_AES_256_CBC_SHA256 (x00, 3D) TLS_RSA_WITH_AES_128_GCM_SHA256 (x00, x9C) TLS_RSA_WITH_AES_256_GCM_SHA384 (x00, x9D) . Stack Trace: N/A .
Local fix
Problem summary
RSA key transport cipher suites will be disabled in FIPS 140-3 Tech Preview and will not be allowed for use.
Problem conclusion
Binary affected - ibmjsseprovider2.jar GIT Issue - #252 RTC - 148997 Build - 8.0 build_20230317--631 JVM to be delivered in - JDK 8 SR8FP5 . This APAR will be fixed in the following Releases: . IBM SDK, Java Technology Edition 8 SR8 FP5 (8.0.8.5) . Contact your IBM Product's Service Team for these Service Refreshes and Fix Packs. For those running stand-alone, information about the available maintenance can be found at: https://www.ibm.com/support/pages/java-sdk
Temporary fix
Comments
APAR Information
APAR number
IJ45919
Reported component name
SECURITY
Reported component ID
620700125
Reported release
270
Status
CLOSED PER
PE
NoPE
HIPER
NoHIPER
Special Attention
NoSpecatt / Xsystem
Submitted date
2023-03-20
Closed date
2023-03-28
Last modified date
2023-03-28
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Fix information
Fixed component name
SECURITY
Fixed component ID
620700125
Applicable component levels
[{"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSNVBF","label":"Runtimes for Java Technology"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"270","Line of Business":{"code":"LOB36","label":"IBM Automation"}}]
Document Information
Modified date:
29 March 2023