A fix is available
APAR status
Closed as program error.
Error description
USS FILESYS TRSQ 003 User Mount Setuid
Local fix
Problem summary
**************************************************************** * USERS AFFECTED: * * All users of z/OS UNIX System Services for HBB77B0 using * * non-privileged mount with setuid * **************************************************************** * PROBLEM DESCRIPTION: * * Incorrect rsncode, JRUserNotPrivileged, is returned when * * using non-privileged mount * * with setuid when user has READ access to * * SUPERUSER.FILESYS.USERMOUNT profile. * **************************************************************** * RECOMMENDATION: * **************************************************************** STG defect 169027: For release level V2R2 and below, when a non-privileged user with READ access to SUPERUSER.FILESYS.USERMOUNT profile attempts to mount a filesystem without specifying nosetuid on the mount, the usermount will fail with the following error: Errno=79x The parameter is incorrect; Reason=119B063B EINVAL: The parameter is incorrect JrNoSetUID: NOSETUID was not specified on the nonprivileged user mount interface For release V2R3, when a non-privileged user with READ access to SUPERUSER.FILESYS.USERMOUNT profile attempts to mount a filesystem without specifying nosetuid on the mount, the usermount will fail with the following error: Errno=8Bx The operation is not permitted; Reason=119B00B0 EPERM: The operation is not opermitted JRUserNotPrivileged: The requester of the service is not privileged While it is true that the userid was not permitted UPDATE, and therefore not permitted to mount without specifying nosetuid, in V2R3, we have lost a reason code that helps the end user diagnose a problem that they can easily correct.
Problem conclusion
An additional check against UNIXPRIV profile, SUPERUSER.FILESYS.USERMOUNT for READ authority was added in order to distinguish between no usermount authority and no usermount authority with setuid. z/OS UNIX System Services Messages and Codes SRL: SA232284xx Action for JRNoSetUID RSN '063B' was updated to reflect new authority for SETUID. JrNoSetUID Rsn '063B' Description : NOSETUID was not specified on the nonprivileged user mount interface. Action: Specify the NOSETUID option instead or obtain authority to use SETUID.
Temporary fix
Comments
APAR Information
APAR number
OA52528
Reported component name
OPENMVS SYS SRV
Reported component ID
5695SCPX1
Reported release
7B0
Status
CLOSED PER
PE
NoPE
HIPER
NoHIPER
Special Attention
NoSpecatt / Xsystem
Submitted date
2017-04-11
Closed date
2017-06-09
Last modified date
2017-07-05
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
UA92144
Modules/Macros
BPXMERNO BPXVRCHM BPXYERNO
| SA232284xx |
Fix information
Fixed component name
OPENMVS SYS SRV
Fixed component ID
5695SCPX1
Applicable component levels
R7B0 PSY UA92144
UP17/06/21 P F706
Fix is available
Select the PTF appropriate for your component level. You will be required to sign in. Distribution on physical media is not available in all countries.
[{"Business Unit":{"code":"BU054","label":"Systems w\/TPS"},"Product":{"code":"SG19M","label":"APARs - z\/OS environment"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"7B0","Edition":"","Line of Business":{"code":"","label":""}},{"Business Unit":{"code":null,"label":null},"Product":{"code":"SG19O","label":"APARs - MVS environment"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"7B0","Edition":"","Line of Business":{"code":"","label":""}}]
Document Information
Modified date:
05 July 2017