IBM Support

PH00285: UNEXPECTED CIPHER SELECTION OCCURS WITH INVOKE WEBSERVICE REQUEST FROM CLIENT USING URIMAP WHEN QUERYSTRING INCLUDED

A fix is available

Obtain the fix for this APAR.

Subscribe

You can track all active APARs for this component.

 

APAR status

  • Closed as program error.

Error description

  • You have a client application in CICS performing an outbound
web service call.  You have set up a URIMAP (USAGE=CLIENT) with
the CIPHERS attribute specified.  You expect a particular
cipher to be first selected, but it is not.




Additional Symptom(s) Search Keyword(s): KIXREVxxx

Local fix

  • n/a

Problem summary

  • ****************************************************************
* USERS AFFECTED: All CICS users.                              *
****************************************************************
* PROBLEM DESCRIPTION: Unexpected cipher selection occurs      *
*                      with EXEC CICS INVOKE WEBSERVICE        *
*                      URIMAP.                                 *
****************************************************************
CICS as a requester is performing an INVOKE WEBSERVICE call with
a URIMAP specified.  The URIMAP contains a querystring as part
of the PATH attribute and also specifies that a ciphers file is
to be used.  The ciphers file does not contain any ciphers from
the current default list.

When DFHPITH comes to send the request it uses the host and path
from the DFHWS-URI container to locate a matching URIMAP.  The
querystring is not included on that LOCATE_URIMAP call so the
intended URIMAP is not found.  This causes the default set of
ciphers to be used instead of the set specified in the URIMAP.

Failing to use the required ciphers may cause the SSL handshake
to fail and message DFHSO0123 to be issued.

Problem conclusion

  • DFHPITH has been changed to use the querystring on its
LOCATE_URIMAP call.

Temporary fix

  • 



Comments


    

  • 



APAR Information




    

  • APAR number
    PH00285
    • 

  • Reported component name
    CICS TS Z/OS V5
    • 

  • Reported component ID
    5655Y0400
    • 

  • Reported release
    000
    • 

  • Status
    CLOSED  PER
    • 

  • PE
    NoPE
    • 

  • HIPER
    NoHIPER
    • 

  • Special Attention
    NoSpecatt / Xsystem
    • 

  • Submitted date
    2018-07-09
    • 

  • Closed date
    2018-09-02
    • 

  • Last modified date
    2018-10-02
    • 





    

  • APAR is sysrouted FROM one or more of the following:
    

    • 

  • APAR is sysrouted TO one or more of the following:
    

    
UI58260 UI58261
    

    • 



Modules/Macros


    

  • DFHPITH

    



Fix information


    

  • Fixed component name
    CICS TS Z/OS V5
    • 

  • Fixed component ID
    5655Y0400
    • 



Applicable component levels


    

  • R000  PSY  UI58261
       UP18/09/05  P  F809
    • 

  • R100  PSY  UI58260
       UP18/09/05  P  F809
    • 



Fix is available


    

  • Select the PTF appropriate for your component level.
You will be required to sign in. Distribution on physical
media is not available in all countries.
    








      
              
                            

              

              [{"Business Unit":{"code":"BU058","label":"IBM Infrastructure w\/TPS"},"Product":{"code":"SSGMGV","label":"CICS Transaction Server"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"5.3","Edition":"","Line of Business":{"code":"LOB35","label":"Mainframe SW"}},{"Business Unit":{"code":"BU054","label":"Systems w\/TPS"},"Product":{"code":"SG19M","label":"APARs - z\/OS environment"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"5.3","Edition":"","Line of Business":{"code":"","label":""}}]
              

                          

          
 
        

      

    

      

        

          

            
Document Information


            

            


                        

            Modified date:
            

            02 October 2018
            

            
                      

        


        

        


      

    

  



    

  

  
    
            

          
Page Feedback