PH33563: SAFPASSWORDUTILITYFACTORY.GETINSTANCE().PASSWORDCHANGE RESULTS IOEXCEPTION: EXCEPTION IN OPENING ZIP FILE AFTER MULTIPLE CALLS

APAR status

Closed as program error.

Error description

After multiple calls to API
SAFPasswordUtilityFactory.getInstance().passwordChange

the error
IOException: Exception in opening zip file
can occur on any file in the file system.

For example:
---
CWWKE0701E: FrameworkEvent ERROR java.io.IOException:
Exception
in opening zip file:
/WebSphere/Liberty/wlp20003/lib/com.ibm.ws.config_1.0.38.jar
org.eclipse.osgi.framework.util.SecureAction.getZipFile(Secu
reAc
org.eclipse.osgi.storage.bundlefile.ZipBundleFile.doOpen(Zip
Bund
org.eclipse.osgi.storage.bundlefile.CloseableBundleFile.open
(Clo
org.eclipse.osgi.storage.bundlefile.CloseableBundleFile.lock
Open
---


The IOException can be any Liberty runtime jar, application
jar,
propeties file, and can occur multiple times.  In the
example
above, the issue surfaced after calling the passwordChange
API
ten times.

Local fix

Problem summary

****************************************************************
* USERS AFFECTED:  All users of IBM WebSphere Application      *
*                  server on Z/OS                              *
****************************************************************
* PROBLEM DESCRIPTION: Changing passwords for Z/OS userid's    *
*                      using the change password facility in   *
*                      WebSphere Liberty disables access to    *
*                      the file system for the server.         *
****************************************************************
* RECOMMENDATION:                                              *
****************************************************************
When changing Z/OS Userid passwords using the change password
facility in WebSphere liberty the RACF functions used will
automatically change who the owner of the current thread is upon
successful change of the password. This results in the server no
longer having access to the file system.

Problem conclusion

A different set of RACF facilities are employed to change the
password that does not automatically change the owner of the
current thread. Leaving the server able to access the file
system.

The fix for this APAR is currently targeted for inclusion in fix
pack 21.0.0.3.  Please refer to the Recommended Updates page for
delivery information:
http://www.ibm.com/support/docview.wss?rs=180&uid=swg27004980

Temporary fix

Comments

APAR Information

APAR number
PH33563
Reported component name
LIBERTY PROF -
Reported component ID
5655W6514
Reported release
CD0
Status
CLOSED PER
PE
NoPE
HIPER
NoHIPER
Special Attention
NoSpecatt / Xsystem
Submitted date
2021-01-20
Closed date
2021-02-23
Last modified date
2021-02-23

APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:

Fix information

Fixed component name
LIBERTY PROF -
Fixed component ID
5655W6514

Applicable component levels

[{"Business Unit":{"code":"BU054","label":"Systems w\/TPS"},"Product":{"code":"SG19M","label":"APARs - z\/OS environment"},"Platform":[{"code":"PF054","label":"z\/OS"}],"Version":"CD0"}]

Document Information

Modified date:
27 February 2021

Tips

PH33563: SAFPASSWORDUTILITYFACTORY.GETINSTANCE().PASSWORDCHANGE RESULTS IOEXCEPTION: EXCEPTION IN OPENING ZIP FILE AFTER MULTIPLE CALLS

Subscribe to this APAR

APAR status

Closed as program error.

Error description

Local fix

Problem summary

Problem conclusion

Temporary fix

Comments

APAR Information

APAR number

Reported component name

Reported component ID

Reported release

Status

PE

HIPER

Special Attention

Submitted date

Closed date

Last modified date

APAR is sysrouted FROM one or more of the following:

APAR is sysrouted TO one or more of the following:

Fix information

Fixed component name

Fixed component ID

Applicable component levels

Document Information

Share your feedback

Need support?