SSL stops to work or it is not able to configure SSL in IBM® HTTP Server after PTF6 for WebSphere® Application Server V3.5 on AIX® is applied.
Download Description
USERS AFFECTED:
WebSphere Application Server Users that are applying V3.5.6 on and AIX machine.
PROBLEM DESCRIPTION:
During installation of fix pack for WebSphere Application Server on AIX, the /usr/HTTPServer/bin/sidd and /usr/HTTPServer/libexec/mod_ibm_ssl_128.so files are removed with no error reported by the install script. This failure occurs on top of the GUI or silent install.
RECOMMENDATION:
In V3.5.6, the defect PQ55885 ptf install scripts for AIX uses "installp -u -p gskit.rte" to remove the previous version of gskit. This was not necessary because the newer version of gskit.rte should (and does) write over the old version when using the installp command for install.
Forcing the uninstall caused the requesite software file sets:
- http_server.ssl.core
- http_server.ssl.128
to be removed from the system (this includes all ssl files such as sidd and .so files for ssl).
PROBLEM CONCLUSION:
For future 3.5.x ptfs, the line "installp -u -p gskit.rte" will be omitted from the install for AIX.
TEMPORARY FIX:
//wasdoc0/apars/PQ62341/ or remove the line "installp -u -p gskit.rte" from the install script for V3.5.6.
The APAR PQ62341 needs to be applied BEFORE fix pack 6 installation so that SSL filesets are not removed from AIX.