PH12064: WMQ CSQX053E SNAP XFFSRRIMQISERVERCALL REMOTEPASSWORD LENGTH

Obtain the fix for this APAR.

APAR status

• Closed as program error.

Error description

• Hursley finds (in the APAR'd case) that the first character
  within the provided password is not an invariant in EBCDIC as
  it represents different symbols depending on the active CCSID
  Some conversion differences across code page are described at
  > https://tinyurl.com/yy7t28ce
  At v9 MQ performs additional checks on flowed passwords,
  validating their length using the isgraph() function. The
  Metal-C version of this function is hard-coded to only interpret
  characters as CCSID 1047. In this case, the result is that a
  character within a password is treated as a non-printable
  character and so the password is eventually interpreted as
  having a null-length.
  

Local fix

Problem summary

• ****************************************************************
  * USERS AFFECTED: All users of IBM MQ for z/OS Version 9       *
  *                 Release 0 Modification 0 and Version 9       *
  *                 Release 1 Modification 0.                    *
  ****************************************************************
  * PROBLEM DESCRIPTION: If a Java client flows a password that  *
  *                      contains a character that is deemed un- *
  *                      printable by the Metal-C 'isgraph'      *
  *                      function then the password length could *
  *                      be set incorrectly, including being set *
  *                      to a null-length which could cause a    *
  *                      FFST.                                   *
  ****************************************************************
  If a java client tries to flow a password that contains a
  character that the Metal-C 'isgraph' function identifies as a
  non-printable character then the password length will be set to
  an incorrect value. If this is the first character, such as in
  the scenario for this APAR, then the password length will be
  set to null-length which results in an FFST.
  

Problem conclusion

• The use of the 'isgraph' Metal-C function has been removed,
  therefore passwords flowed from a Java client will be processed
  up until a space or null character as expected.
  

Temporary fix

Comments

APAR Information

• APAR is sysrouted FROM one or more of the following:

• APAR is sysrouted TO one or more of the following:

  UI64078 UI64079

Modules/Macros

• CMQXRSRV
  

Fix information

• Fixed component name

  IBM MQ Z/OS V9

• Fixed component ID

  5655MQ900

Applicable component levels

• R000 PSY UI64078

     UP19/07/23 P F907 ¢

• R100 PSY UI64079

     UP19/07/23 P F907 ¢

Fix is available

• Select the PTF appropriate for your component level. You will be required to sign in. Distribution on physical media is not available in all countries.