IV61844: BUG IN PASSWORD ENCODING/DECODING ALGORITHM

APAR status

• Closed as program error.

Error description

• Issue with the encoding/decoding of a password that has one or
  more special characters, when generating or using the
  database.xml file.
  
  
  This is confirmed by using a clear text password in the
  database.xml file, that allows a successful connection with the
  backend DB.
  
  
  The log shows:
  13-Jun-2014,23:20:42 [DBCleaner] [ERROR] -
   Threw SQLException whilst getting a connection from a
  datasource :Login
   failed for user 'pippo'.
  ClientConnectionId:d255e126-3595-4d25-a0bc-d28771e95594
  DSRA0010E: SQL
  State = S0001, Error Code = 18,456
  13-Jun-2014,23:20:42 [DBCleaner] [INFO ] - DBCleaner: Database
  connection error...
  13-Jun-2014,23:20:42 [DBCleaner] [INFO ] - DBCleaner: Sleeping
  
  The passord in use has a format like
  
  !@NormalString#$
  

Local fix

• As a workaround while the
  problem is fixed, edit the database.xml file in the liberty
  server's profile directory. There the password can be set in
  clear text
  or obfuscated as detailed in the instructions for the
  securityUtility
  tool bundled with liberty:
  http://www-01.ibm.com/support/knowledgecenter/SSAW57_8.5.5/com.i
  bm.websp
  here.wlp.nd.multiplatform.doc/ae/rwlp_command_securityutil.html?
  cp=SSAW57_8.5.5%2F3-3-11-0-4-1-2-0&lang=en
  

Problem summary

• Users
  affected:
  Platform affected: ALL
  Version affected:  v9.x
  Component: Server Installation, server scripts
  
  Problem description:
  When you enter a password for the database connection during
  installation, it appears to verify successfully during
  installation pre-tests. After installation the server cannot
  connect to the database due to an incorrect password. This only
  affects some passwords not all passwords.
  
  Problem Summary:
  During installation the server connects to the database
  successfully with the given password. However during the
  installation of the server, the password is incorrectly
  processed. A password that contains special characters is
  incorrectly stored and the special characters are lost. This
  also affects some passwords that would be used via the database
  reset password scripts. The appropriate scripts have been
  modified to handle the characters and the installer is now
  pre-processing the password to avoid losing special characters.
  

Problem conclusion

• The fix will be included in the following maintenance packages
  9.1.0-TIV-IEMRC910-IF0003
  9.0.1-TIV-IEMRC901-IF0004
  9.0.0-TIV-IEMRC900-IF0006
  

Temporary fix

Comments

APAR Information

• APAR is sysrouted FROM one or more of the following:

• APAR is sysrouted TO one or more of the following:

Fix information

• Fixed component name

  TIV EP MGR REM

• Fixed component ID

  5725C43RC

Applicable component levels

• R900 PSY

     UP

• R910 PSY

     UP