A fix is available
APAR status
Closed as program error.
Error description
CICS receives an HTTP GET request with a querystring exceeding 256 bytes. The TCPIPSERVICE specifies URM(DFHWBAAX) and none of the installed URIMAPs match the incoming request. This causes DFHWBERX to be invoked to send back an error response to the client. DFHWBERX issues an EXEC CICS WEB EXTRACT command to obtain the QUERYSTRING. DFHWBERX only supplies a 256 byte buffer so the command returns a LENGERR. DFHWBERX does not handle the LENGERR so gets abended AEIV. Additional Symptom(s) Search Keyword(s): KIXREVACC RESP=22 RESP2=8
Local fix
Use querystrings of 256 bytes or less
Problem summary
**************************************************************** * USERS AFFECTED: All CICS users. * **************************************************************** * PROBLEM DESCRIPTION: Abend AEIV in DFHWBERX if CICS receives * * an HTTP GET request with a querystring * * exceeding 256 bytes and none of the * * installed URIMAPs match it. * **************************************************************** CICS receives an HTTP GET request with a querystring exceeding 256 bytes. The TCPIPSERVICE specifies URM(DFHWBAAX) and none of the installed URIMAPs match the incoming request. This causes DFHWBERX to be invoked to send back an error response to the client. DFHWBERX issues an EXEC CICS WEB EXTRACT command to obtain the QUERYSTRING. DFHWBERX only supplies a 256 byte buffer so the command returns a LENGERR. DFHWBERX does not handle the LENGERR so gets abended AEIV.
Problem conclusion
DFHWBERX has been changed to make sure ABEND AEIV will not happen if querystring exceeds 256 bytes, Response 404 will be sent back with a maximum querystring length of 256 bytes.
Temporary fix
Comments
APAR Information
APAR number
PH11233
Reported component name
CICS TS Z/OS V5
Reported component ID
5655Y0400
Reported release
000
Status
CLOSED PER
PE
NoPE
HIPER
NoHIPER
Special Attention
NoSpecatt / Xsystem
Submitted date
2019-04-18
Closed date
2019-07-01
Last modified date
2019-08-01
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
UI64019 UI64020 UI64021
Modules/Macros
DFHWBERX
Fix information
Fixed component name
CICS TS Z/OS V5
Fixed component ID
5655Y0400
Applicable component levels
R000 PSY UI64020
UP19/07/03 P F907
R100 PSY UI64019
UP19/07/03 P F907
R200 PSY UI64021
UP19/07/03 P F907
Fix is available
Select the PTF appropriate for your component level. You will be required to sign in. Distribution on physical media is not available in all countries.
[{"Business Unit":{"code":"BU058","label":"IBM Infrastructure w\/TPS"},"Product":{"code":"SSGMGV","label":"CICS Transaction Server"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"5.3","Edition":"","Line of Business":{"code":"LOB35","label":"Mainframe SW"}},{"Business Unit":{"code":"BU054","label":"Systems w\/TPS"},"Product":{"code":"SG19M","label":"APARs - z\/OS environment"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"5.3","Edition":"","Line of Business":{"code":"","label":""}}]
Document Information
Modified date:
01 August 2019