A fix is available
APAR status
Closed as program error.
Error description
Some RDz 7.6.1 clients using SSL have sessions started that state the session is not encrypted. In this scenario, the customer used a group to define read, write and execute permssions for the ssl.properties file instead of the typical owner, group, and others. Normally, the ssl.properties file must have read permissiion granted for others for SSL to work. rwx-rwx---- With this configuration, if two or more RSED processes were started, the first process was SSL-enabled, but any subsequent RSEDx processes were not SSL-enabled. An error in the stderr.log showed: java.util.MissingResourceException: Can't find bundle for base name ssl, locale en_US [...] java.net.SocketException: Connection reset [...] java.lang.Exception: Server terminated unexpectedly [...] A change was made to the ResourceBundle.getBundle so that ssl.properties does not need to be read by teach client thread.
Local fix
Problem summary
**************************************************************** * USERS AFFECTED: All RDz users * **************************************************************** * PROBLEM DESCRIPTION: Some RDz 7.6.1 clients using SSL have * * sessions started that state the session * * is not encrypted. In this scenario, * * the customer use a group to define rwx * * permissions for the ssl.properties file * * instead of the typical owner, group, * * and others. Normally, ssl.properties * * must have read permission granted for * * others for SSL to work. * * rwx-rwx---- * * With this configuration, if two or more * * RSED processes were started, only the * * first process was SSL-enabled, which * * caused the server to terminate with a * * java.util.MissingResourceException. * **************************************************************** * RECOMMENDATION: * **************************************************************** ServerThread runs with the user's authorization when ssl.properties is read.
Problem conclusion
A change was made to the ResourceBundle.getBundle so that ssl.properties does not need to be read by each client thread.
Temporary fix
Comments
APAR Information
APAR number
PM26875
Reported component name
RATL DEV FOR SY
Reported component ID
5724T0700
Reported release
760
Status
CLOSED PER
PE
NoPE
HIPER
NoHIPER
Special Attention
NoSpecatt
Submitted date
2010-11-16
Closed date
2010-12-10
Last modified date
2010-12-15
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Modules/Macros
FEKFCORE FEKFCOR6 FEKFZOS
Fix information
Fixed component name
RD/Z HOST
Fixed component ID
5724T0723
Applicable component levels
R760 PSY UK63066
UP10/12/15 I 1000
Fix is available
Select the PTF appropriate for your component level. You will be required to sign in. Distribution on physical media is not available in all countries.
[{"Business Unit":{"code":"BU058","label":"IBM Infrastructure w\/TPS"},"Product":{"code":"SSJK49","label":"IBM Developer for z Systems"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"7.6","Edition":"","Line of Business":{"code":"LOB35","label":"Mainframe SW"}},{"Business Unit":{"code":"BU054","label":"Systems w\/TPS"},"Product":{"code":"SG19M","label":"APARs - z\/OS environment"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"7.6","Edition":"","Line of Business":{"code":"","label":""}}]
Document Information
Modified date:
15 December 2010