APAR status
Closed as program error.
Error description
Pointer problem in security code.
WebSphere calls AIX function passwdexpired() sending a pointer
as the second parameter. We then free the pointer after it
returns. It seems the routine passwdexpired in case of failure
does not return NULL as the second parameter so the free cores.
Now we initialize the pointer to NULL and check for NULL before
freeing.
Local fix Problem summary
****************************************************************
* USERS AFFECTED: All AIX platform WebSphere Application *
* Server users who have enabled security and *
* are utilizing AIX local user registry. *
****************************************************************
* PROBLEM DESCRIPTION: When using local OS registry in AIX *
* platform there might be a server *
* crash in WebSphere library *
* libUnixRegistryImpl.so. *
****************************************************************
* RECOMMENDATION: *
****************************************************************
When security is enabled using local OS registry in AIX
the server might crash in free() routine in WebSphere library
libUnixRegistryImpl.so. This happens only on AIX platforms.
Problem conclusion
WebSphere Security calls AIX function passwdexpired() sending
a pointer as the second parameter. The code then frees
the pointer after passwdexpired() returns. It seems the routine
passwdexpired() in case of failure does not return NULL
as the second parameter so the free cores.
The fix is to initialize the pointer to NULL and check
for NULL before freeing.
The fix for this APAR is currently targeted for inclusion in
fixpack 5.1.1.4 and 5.0.2.11. Please refer to the Recommended
Updates page for delivery dates:
http://www-1.ibm.com/support/docview.wss?rs=180&
context=SSEQTP&uid=swg27004980
Temporary fix Comments
APAR information |
APAR number |
PK01428 |
Reported component name |
WBISF 510 |
Reported component ID |
5724H7400 |
Reported release |
10W |
Status |
CLOSED PER |
PE |
NoPE |
HIPER |
NoHIPER |
Special Attention |
NoSpecatt |
Submitted date |
2005-02-21 |
Closed date |
2005-02-25 |
Last modified date |
2005-02-25 |
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Modules/Macros
Publications Referenced
|
Fix information |
Fixed component name |
WAS BASE 5.0 |
Fixed component ID |
5630A3600 |
Applicable component levels |
R00A PSY |
UP |
R10A PSY |
UP |
|