BROKEN PIPE CONDITION CAUSES SSL SERVER SHUTDOWN
APAR Identifier ...... PK80387 Last Changed ........ 09/06/19
BROKEN PIPE CONDITION CAUSES SSL SERVER SHUTDOWN
Symptom ...... IN INCORROUT Status ........... CLOSED PER
Severity ................... 4 Date Closed ......... 09/05/05
Component .......... 5735FAL00 Duplicate of ........
Reported Release ......... 540 Fixed Release ............ 999
Component Name TCP/IP V2 FOR V Special Notice
Current Target Date .. Flags
SCP ...................
Platform ............
Status Detail: SHIPMENT - Packaged solution is available for
shipment.
PE PTF List:
PTF List:
Release 540 : UK46335 available 09/05/07 (0902 )
Parent APAR:
Child APAR list:
ERROR DESCRIPTION:
Upon detection of a 'broken pipe' condition, the SSL server
initiates a shutdown, causing all secure connections to be
closed.
For example, when the FTP server encounters a disk full
condition while handling a secure file transfer PUT request, it
closes the subject data connection. This action creates a
broken pipe condition in the SSL server for which a shutdown
ensues, even though this condition has no adverse impact on
other secure connections.
Because a broken pipe condition can arise due to conditions that
pertain to a specific connection only, a shutdown should not
be initiated unless fully warranted.
LOCAL FIX:
None.
PROBLEM SUMMARY:
****************************************************************
* USERS AFFECTED: All customers running the z/VM SSL server. *
****************************************************************
* PROBLEM DESCRIPTION: *
****************************************************************
* RECOMMENDATION: APPLY PTF *
****************************************************************
Existing logic within the SSLSERV module initiates a server
shutdown whenever a broken pipe condition is detected.
However, such a condition can be raised in conjunction with
errors that are not sufficiently severe to warrant this action,
as in the case of the problem described, for which the broken
pipe is associated with an incomplete send().
PROBLEM CONCLUSION:
The routine responsible for initiating a server shutdown upon
the broken pipe condition has been modified to instead just
issue a warning of this condition. Server-initiated shutdown
actions thus will be controlled by logic elsewhere within the
SSLSERV module.
With this change, message DTCSSL073 now will be issued as a
warning message, not as an error message.
===============================================================
The revised information that follows will be included in any
future updates to the following publication(s):
GC24-6124-04 -- z/VM: TCP/IP Level 540 Messages and Codes
Chapter 18. SSL Messages
Page: 380
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Changed Message and Text:
-------------------------
DTCSSL073W Broken pipe condition encountered
Explanation: A connection to the TCP/IP server, or other local
server or client, has closed unexpectedly or is in an
unusable state. This condition might arise due to an error
encountered by the server or client involved with the secured
connection.
System Action: SSL Processing continues.
System Programmer Response: Verify that the subject server is
still operational. If it is not, take appropriate action to
restart that server. Review pertinent console messages or
message logs for errors that correspond to this error and
take corrective action, as warranted.
TEMPORARY FIX:
COMMENTS:
MODULES/MACROS: SSLSERV SSLVMAIN SSLVMCOM
SRLS: GC24612404
RTN CODES:
CIRCUMVENTION:
MESSAGE TO SUBMITTER: