PH61802: PROVIDE CHANGE PACKAGE LOCKING, THEREBY PREVENTING CHANGE PACKAGE MANIPULATION DEPENDING ON THE LOCKING LEVEL APPLIED.

A fix is available

APAR status

Closed as new function.

Error description

New API commands LOCK and UNLOCK control which API commands can
be used to manipulate a change package. The lock can be limited
to a specific scheme, or apply to the package regardless of
scheme. LOCK and UNLOCK requests can be processed via TSO ISPF
online panels or in batch via the CCVBMAIN utility.  The TSO
ISPF online panels provide a view of the locks applied to the
package.

By default, a change package is in unlocked state.  The LOCK API
activates the lock and sets the level of locking to be applied.
The UNLOCK API deactivates the lock.  New SAF security profiles
control user authority to perform the LOCK and UNLOCK commands.

When in lock state, API commands for that change package are
disallowed depending upon the level of locking applied.  If
executed, disallowed API commands will fail with TSO ISPF online
or batch error messages.  The LOCK API command applies locking
levels 1 to 6 as follows:
 API          Level    Level    Level    Level    Level    Level
 function       1        2        3        4        5        6
 ---------------------------------------------------------------
 ADD         Locked   Locked   Locked   Locked   Locked   Locked
 REMOVE      Locked   Locked   Locked   Locked   Locked   Locked

 READY                Locked   Locked   Locked   Locked   Locked
 UNREADY              Locked   Locked   Locked   Locked   Locked

 APPROVE                       Locked   Locked   Locked   Locked
 DISAPPROVE                    Locked   Locked   Locked   Locked

 MIGRATE                                Locked   Locked   Locked

 BACKOUT                                         Locked   Locked

 INSTALL                                                  Locked
 NEWCOPY                                                  Locked
 DISCARD                                                  Locked

New change package pre and post-processing exit points are
provided for the LOCK and UNLOCK API commands.

The pre-processing exit points for other API commands such as
READY and MIGRATE, are passed new parameters to indicate if the
API command passes or fails a lock check.  The exit can override
the lock check to allow or disallow the API command processing.

Local fix

Problem summary

****************************************************************
* USERS AFFECTED: All users of CICS Configuration Manager      *
****************************************************************
* PROBLEM DESCRIPTION: CICS Configuration Manager for z/OS is  *
*                      enhanced to provide change package      *
*                      locking, thereby preventing change      *
*                      package manipulation depending on the   *
*                      locking level applied.                  *
****************************************************************
New API commands LOCK and UNLOCK control which API commands can
be used to manipulate a change package. The lock can be limited
to a specific scheme, or apply to the package regardless of
scheme. LOCK and UNLOCK requests can be processed via TSO ISPF
online panels or in batch via the CCVBMAIN utility. The TSO ISPF
online panels provide a view of the locks applied to the
package.

By default, a change package is in unlocked state. The LOCK API
activates the lock and sets the level of locking to be applied.
The UNLOCK API deactivates the lock. New SAF security profiles
control user authority to perform the LOCK and UNLOCK commands.

When in lock state, API commands for that change package are
disallowed depending upon the level of locking applied. If
executed, disallowed API commands will fail with TSO ISPF online
or batch error messages. The LOCK API command applies locking
levels 1 to 6 as follows:

 API          Level    Level    Level    Level    Level    Level
 function       1        2        3        4        5        6
 ---------------------------------------------------------------
 ADD         Locked   Locked   Locked   Locked   Locked   Locked
 REMOVE      Locked   Locked   Locked   Locked   Locked   Locked

 READY                Locked   Locked   Locked   Locked   Locked
 UNREADY              Locked   Locked   Locked   Locked   Locked

 APPROVE                       Locked   Locked   Locked   Locked
 DISAPPROVE                    Locked   Locked   Locked   Locked

 MIGRATE                                Locked   Locked   Locked

 BACKOUT                                         Locked   Locked

 INSTALL                                                  Locked
 NEWCOPY                                                  Locked
 DISCARD                                                  Locked

New change package pre and post-processing exit points are
provided for the LOCK and UNLOCK API commands.

The pre-processing exit points for other API commands, such as
READY and MIGRATE, are passed new parameters to indicate if the
API command passes or fails a lock check. The exit can override
the lock check to allow or disallow the API command processing.

Problem conclusion

CICS Configuration Manager is enhanced. A new change package
locking mechanism is introduced to limit API commands from
manipulating a change package.

Temporary fix

Comments

APAR Information

APAR number
PH61802
Reported component name
CICS CONFIG MGR
Reported component ID
5697CIC00
Reported release
540
Status
CLOSED PER
PE
NoPE
HIPER
NoHIPER
Special Attention
YesSpecatt / New Function / Xsystem
Submitted date
2024-06-11
Closed date
2024-08-29
Last modified date
2024-10-03

APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:

UI98224 UI98225 UI98226

Modules/Macros

CCVAADD  CCVAALT  CCVAAPP  CCVABACK CCVACMDA CCVACOPY CCVACRE
CCVADISA CCVADISC CCVADLET CCVAIMP  CCVAINQ  CCVAINST CCVALIST
CCVALOCK CCVAMG10 CCVAMG20 CCVAMG30 CCVAMG40 CCVAMG45 CCVAMG50
CCVAMG60 CCVAMG70 CCVAMG80 CCVAMIGR CCVANCPY CCVARDY  CCVARECV
CCVAREM  CCVAREN  CCVASECU CCVAUNLK CCVAUPD  CCVAURDY CCVBARPT
CCVBCCVE CCVBDPLY CCVBHKP  CCVBMAIN CCVBPACK CCVBRATT CCVBTKUP
CCVCSDUP CCVDEFLT CCVE54   CCVH0112 CCVH0113 CCVHCODE CCVHFPKA
CCVHPKCM CCVHPKGE CCVHPKK1 CCVHPKK2 CCVHPKKL CCVHPKKO CCVHPKKS
CCVHPKKT CCVHPKLL CCVHPKOP CCVHT008 CCVI10   CCVIINIT CCVJPKG1
CCVJPKG2 CCVL24   CCVL25   CCVOAAPE CCVOACIE CCVOACIL CCVOADDR
CCVOADMN CCVOALTR CCVOAMSE CCVOASYS CCVOAXFD CCVOAXFE CCVOAXGE
CCVOBANC CCVOBANE CCVOBPDC CCVOBPDE CCVOCATC CCVOCATE CCVOCBUC
CCVOCBUE CCVOCCFL CCVOCCOC CCVOCCOE CCVOCCSC CCVOCCSE CCVOCCVA
CCVOCCVE CCVOCDCC CCVOCDCE CCVOCDEC CCVOCDEE CCVOCDJC CCVOCDJE
CCVOCDOC CCVOCDOE CCVOCDTC CCVOCDTE CCVOCDUC CCVOCDUE CCVOCENC
CCVOCENE CCVOCFIC CCVOCFIE CCVOCGRC CCVOCHEK CCVOCHST CCVOCICA
CCVOCIPC CCVOCIPE CCVOCJMC CCVOCJME CCVOCJVC CCVOCJVE CCVOCLBC
CCVOCLBE CCVOCLIC CCVOCLSC CCVOCLSE CCVOCMAC CCVOCMAE CCVOCMMC
CCVOCMME CCVOCMQC CCVOCMQE CCVOCOPY CCVOCPAC CCVOCPAE CCVOCPFC
CCVOCPFE CCVOCPGC CCVOCPGE CCVOCPIC CCVOCPIE CCVOCPRC CCVOCPRE
CCVOCPTC CCVOCPTE CCVOCRAC CCVOCRAE CCVOCREC CCVOCREE CCVOCRGC
CCVOCRGE CCVOCRIC CCVOCRIE CCVOCRMC CCVOCRME CCVOCRSL CCVOCSEC
CCVOCSEE CCVOCSTK CCVOCSYC CCVOCSYE CCVOCTCC CCVOCTCE CCVOCTDC
CCVOCTDE CCVOCTEC CCVOCTEE CCVOCTRC CCVOCTRE CCVOCTSC CCVOCTSE
CCVOCTTC CCVOCTTE CCVOCTXC CCVOCTXE CCVOCURC CCVOCURE CCVOCWEC
CCVOCWEE CCVOCXXC CCVODIA  CCVODRV  CCVOEDLL CCVOEXPG CCVOEXPL
CCVOFACT CCVOFBAS CCVOFVIE CCVOIMEX CCVOINST CCVOLRES CCVOPKBE
CCVOPKGB CCVOPKGE CCVOPKGH CCVOPKGI CCVOPKGK CCVOPKGL CCVOPKGP
CCVOPKGR CCVOPKHE CCVOPKHL CCVOPKRL CCVOPRIM CCVORCFL CCVORCJL
CCVORCJS CCVORCJT CCVORFND CCVORREX CCVORRGR CCVORRSL CCVORRXC
CCVORRXL CCVORSCN CCVOSET  CCVOSOCK CCVOSOCL CCVOSTKL CCVOTC1C
CCVOTC1E CCVOTCGC CCVOTCGE CCVOTOPO CCVOTP1C CCVOTP1E CCVOTT1C
CCVOTT1E CCVOTT2C CCVOTT2E CCVOWLM  CCVOWTGC CCVOWTGE CCVOWW1C
CCVOWW1E CCVOWW2C CCVOWW2E CCVOWW3C CCVOWW3E CCVOWW4C CCVOWW4E
CCVOWW5C CCVOWW5E CCVOWWDC CCVOWWDE CCVOWWGC CCVOWWGE CCVOWWSC

Fix information

Fixed component name
CICS CONFIG MGR
Fixed component ID
5697CIC00

Applicable component levels

R540 PSY UI98224
UP24/09/04 P F409
R54E PSY UI98225
UP24/09/05 P F409
R54K PSY UI98226
UP24/09/05 P F409

Fix is available

Select the PTF appropriate for your component level. You will be required to sign in. Distribution on physical media is not available in all countries.

[{"Business Unit":{"code":"BU048","label":"IBM Software"},"Product":{"code":"SS2L7A","label":"CICS Configuration Manager for z\/OS"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"5.4","Line of Business":{"code":"LOB70","label":"Z TPS"}}]

Document Information

Modified date:
03 October 2024

Tips

PH61802: PROVIDE CHANGE PACKAGE LOCKING, THEREBY PREVENTING CHANGE PACKAGE MANIPULATION DEPENDING ON THE LOCKING LEVEL APPLIED.

A fix is available

Subscribe

APAR status

Closed as new function.

Error description

Local fix

Problem summary

Problem conclusion

Temporary fix

Comments

APAR Information

APAR number

Reported component name

Reported component ID

Reported release

Status

PE

HIPER

Special Attention

Submitted date

Closed date

Last modified date

APAR is sysrouted FROM one or more of the following:

APAR is sysrouted TO one or more of the following:

Modules/Macros

Fix information

Fixed component name

Fixed component ID

Applicable component levels

R540 PSY UI98224

R54E PSY UI98225

R54K PSY UI98226

Fix is available

Select the PTF appropriate for your component level. You will be required to sign in. Distribution on physical media is not available in all countries.

Document Information

Share your feedback

Need support?