PQ87419: ABEND IN TOP SECRET CODE WHEN PROCESSING FASTAUTH SECURITY CALL WHEN THE ENVRIN= PARAMETER IS BAD. | |||||||||||||||||||||||||||||||||||||||||||
![]() |
|||||||||||||||||||||||||||||||||||||||||||
![]() APAR status Closed as program error. Error description Security calls are being made from the WebSphere code, using SAF call 'FASTAUTH' passing in the ENVRIN= parameter. The pointer used in the ENVRIN= parameter was sometimes incorrect, which was causing Top Secret code to ABEND. Top Secret has provided code to prevent the abend. This apar is to correct the WebSphere call, such that is passes valid data on the ENVRIN= parameter during the FASTAUTH call. . Top Secret Fixes are listed in Informational APAR, II13427, which WebSphere keeps as current as possible with security OEM issues that affect WebSphere customers. Some of the messages / abends that have been reported are: TSS9999E CA-TSS Security SVC ABEND S0C4 in TSSRSVCS+61FA TSS9999E CA-TSS Security SVC ABEND S0C4 in TSSRSVCS+15E TSS9999E CA-TSS Security SVC ABEND S0C4 in TSSKROUT+188 The above were from TopSecret 5.3 level.Local fix Problem summary **************************************************************** * USERS AFFECTED: All users of WebSphere Application Server * * V5.0 for z/OS * **************************************************************** * PROBLEM DESCRIPTION: ABENDS0C4/ABEND0C4 in Top Secret code * * when processing FASTAUTH security call. * **************************************************************** * RECOMMENDATION: * **************************************************************** The ENVR body is not required by SAF to be in contiguous storage with the ENVR header, but WebSphere stores the entire ENVR contiguously. When the ENVR header/body pair is copied, The pointer from the ENVR header that connects it to the ENVR body is not being updated to point to the new copied ENVR body. At some point in time, the source ENVR goes away and the pointer is targetting freed storage, yielding the 0C4 abend.Problem conclusion Updated the copied ENVR header to point properly to the ENVR body after the storage copy. APAR PQ87419 is associated with SERVICE LEVEL W502007 of WebSphere Application Server V5.0 for z/OS.Temporary fix Comments
APAR is sysrouted FROM one or more of the following: APAR is sysrouted TO one or more of the following: Modules/Macros
Publications Referenced
|
Document Information |
Current web document: swg1PQ87419.html
Product categories: Software > Application Servers >
Distributed Application & Web Servers > WebSphere Application
Server for z/OS
Operating system(s):
Software version: 500
Software edition:
Reference #: PQ87419
IBM Group: Software Group
Modified date: May 5, 2004
(C) Copyright IBM Corporation 2000, 2009. All Rights Reserved.