 |
≫ |
|
|
|
パッチ名: PHCO_36006
パッチ摘要: s700_800 11.11 libsec累積パッチ
作成日: 07/02/14
公開日: 07/03/05
ハードウェアプラットフォームおよびOSリリース:
s700: 11.11
s800: 11.11
現象:
PHCO_36006:
(SR:8606457619 CR:JAGag13921)
11.11の高信頼性システムで、あるユーザーをローカルリポジトリとLDAPリポ
ジトリの両方に構成すると、プロセスがハングすることがあります。
問題点の説明:
PHCO_36006:
(SR:8606457619 CR:JAGag13921)
libsecライブラリで使用しているファイル記述子をクローズして別のモジュー
ルで再利用すると、プロセスがreadコール内でハングすることがありました。
解決方法:
この問題が起きないようにlibsecでのファイル記述子処理を修正しました。
-----------------------------------------------------------------------------
Patch Name: PHCO_36006
Patch Description: s700_800 11.11 libsec cumulative patch
Creation Date: 07/02/14
Post Date: 07/03/05
Hardware Platforms - OS Releases:
s700: 11.11
s800: 11.11
Products: N/A
Filesets:
OS-Core.CORE-64SLIB,fr=B.11.11,fa=HP-UX_B.11.11_32/64,v=HP
OS-Core.CORE-SHLIBS,fr=B.11.11,fa=HP-UX_B.11.11_32/64,v=HP
ProgSupport.PROG-MIN,fr=B.11.11,fa=HP-UX_B.11.11_32/64,v=HP
ProgSupport.PROG-MN-64ALIB,fr=B.11.11,fa=HP-UX_B.11.11_32/64,v=HP
Automatic Reboot?: No
Status: General Release
Critical:
Yes
PHCO_36006: HANG
PHCO_24613: ABORT
PHCO_23990: OTHER
Reduces potential severe performance impact on a
Trusted System with a very large I/O buffer cache
and heavy I/O; the system may appear to be hung.
Category Tags:
defect_repair enhancement general_release critical
halts_system
Path Name: /hp-ux_patches/s700_800/11.X/PHCO_36006
Symptoms:
PHCO_36006:
( SR:8606457619 CR:JAGag13921 )
On an 11.11 trusted system, a process can hang when a user
is configured in both the local and LDAP repositories.
PHCO_30913:
( SR:8606344660 CR:JAGaf05510 )
authck -p does not report orphaned trusted-mode user entries
when the domain name is not set.
PHCO_29028:
( SR:8606212549 CR:JAGad81735 )
remshd and ftpd can intermittently fail under
heavy loads on a trusted system.
PHCO_27038:
( SR:8606221280 CR:JAGad90414 )
This patch is a member of a set of product updates needed
to enable the optional HP-UX shadow password feature.
Upon installation, the HP-UX shadow password bundle
(ShadowPassword) will install the full set of products
(including this patch) to enable the shadow password
feature.
If the HP-UX shadow password product is not installed,
this patch will have no impact on your system.
PHCO_24613:
( SR:8606206706 CR:JAGad75879 )
On a trusted system, libsec could core dump when
called by a multithreaded application.
( SR:8606107314 CR:JAGab77493 )
On a trusted system, certain devices do not lock
properly.
PHCO_23990:
( SR:8606180704 CR:JAGad49925 )
There can be severe login delays on a Trusted System with a
very large I/O buffer cache and heavy I/O; the system may
appear to be hung.
Defect Description:
PHCO_36006:
( SR:8606457619 CR:JAGag13921 )
A process can hang in a read call when a file descriptor
that is being used by the libsec library is closed and
reused in another module.
Resolution:
The file descriptor handling in libsec has been changed to
avoid this condition.
PHCO_30913:
( SR:8606344660 CR:JAGaf05510 )
If a user exists only in the trusted mode database and the
domain name is not set, the command 'authck -p' does not
catch this discrepancy.
Resolution:
autchk -p now works as expected when the domain name is not
set.
PHCO_29028:
( SR:8606212549 CR:JAGad81735 )
remshd and ftpd can intermittently fail under
heavy loads on a trusted system.
Resolution:
Fixed a timing problem in libsec.
PHCO_27038:
( SR:8606221280 CR:JAGad90414 )
Enhancement request: HP-UX 11.11 does not support shadow
passwords.
Resolution:
This module has been made aware of shadow passwords and
will take the appropriate actions when the HP-UX shadow
password bundle is installed.
PHCO_24613:
( SR:8606206706 CR:JAGad75879 )
On a trusted system, a multithreaded application may
coredump if it calls libsec with more than one thread.
Libsec does not support two or more simultaneous threads,
however, a coredump could occur even in the case where
the threads are not simultaneous.
Resolution:
Libsec now properly handles two or more non-simultaneous
threads.
( SR:8606107314 CR:JAGab77493 )
On a trusted system, certain devices do not lock
properly, because libsec improperly identifies
them as pseudo-devices.
Resolution:
Updated the pseudo-device identification algorithm.
PHCO_23990:
( SR:8606180704 CR:JAGad49925 )
A login to a Trusted System with a very large buffer cache
can take an extremely long time, because libsec sync's the
entire buffer cache each time it updates the /tcb database.
Resolution:
Libsec no longer sync's the entire buffer cache when it
updates the /tcb database. Now it syncs only the database
files which were modified.
Enhancement:
No (superseded patches contained enhancements)
PHCO_27038:
This patch is one of many pre-enablement patches
for the shadow password feature.
SR:
8606457619 8606107314 8606180704 8606206706 8606212549
8606221280 8606344660
Patch Files:
OS-Core.CORE-64SLIB,fr=B.11.11,fa=HP-UX_B.11.11_32/64,v=HP:
/usr/lib/pa20_64/libsec.2
OS-Core.CORE-SHLIBS,fr=B.11.11,fa=HP-UX_B.11.11_32/64,v=HP:
/usr/lib/libsec.2
ProgSupport.PROG-MIN,fr=B.11.11,fa=HP-UX_B.11.11_32/64,v=HP:
/usr/lib/libsec.a
ProgSupport.PROG-MN-64ALIB,fr=B.11.11,
fa=HP-UX_B.11.11_32/64,v=HP:
/usr/lib/pa20_64/libsec.a
what(1) Output:
OS-Core.CORE-64SLIB,fr=B.11.11,fa=HP-UX_B.11.11_32/64,v=HP:
/usr/lib/pa20_64/libsec.2:
$Revision: @(#) libprot R11.11_BL2007_0214_2 PATCH_1
1.11 PHCO_36006
OS-Core.CORE-SHLIBS,fr=B.11.11,fa=HP-UX_B.11.11_32/64,v=HP:
/usr/lib/libsec.2:
$Revision: @(#) libprot R11.11_BL2007_0214_2 PATCH_1
1.11 PHCO_36006
ProgSupport.PROG-MIN,fr=B.11.11,fa=HP-UX_B.11.11_32/64,v=HP:
/usr/lib/libsec.a:
$Revision: @(#) libprot R11.11_BL2007_0214_2 PATCH_1
1.11 PHCO_36006
ProgSupport.PROG-MN-64ALIB,fr=B.11.11,
fa=HP-UX_B.11.11_32/64,v=HP:
/usr/lib/pa20_64/libsec.a:
$Revision: @(#) libprot R11.11_BL2007_0214_2 PATCH_1
1.11 PHCO_36006
cksum(1) Output:
OS-Core.CORE-64SLIB,fr=B.11.11,fa=HP-UX_B.11.11_32/64,v=HP:
1132587318 162424 /usr/lib/pa20_64/libsec.2
OS-Core.CORE-SHLIBS,fr=B.11.11,fa=HP-UX_B.11.11_32/64,v=HP:
1747910673 155648 /usr/lib/libsec.2
ProgSupport.PROG-MIN,fr=B.11.11,fa=HP-UX_B.11.11_32/64,v=HP:
3667602748 130152 /usr/lib/libsec.a
ProgSupport.PROG-MN-64ALIB,fr=B.11.11,
fa=HP-UX_B.11.11_32/64,v=HP:
1226228884 241880 /usr/lib/pa20_64/libsec.a
Patch Conflicts: None
Patch Dependencies: None
Hardware Dependencies: None
Other Dependencies: None
Supersedes:
PHCO_30913 PHCO_29028 PHCO_27038 PHCO_24613 PHCO_23990
Equivalent Patches:
PHCO_35048:
s700: 11.23
s800: 11.23
Patch Package Size: 250 KBytes
Installation Instructions:
Please review all instructions and the Hewlett-Packard
SupportLine User Guide or your Hewlett-Packard support terms
and conditions for precautions, scope of license,
restrictions, and, limitation of liability and warranties,
before installing this patch.
------------------------------------------------------------
1. Back up your system before installing a patch.
2. Login as root.
3. Copy the patch to the /tmp directory.
4. Move to the /tmp directory and unshar the patch:
cd /tmp
sh PHCO_36006
5. Run swinstall to install the patch:
swinstall -x autoreboot=true -x patch_match_target=true \
-s /tmp/PHCO_36006.depot
By default swinstall will archive the original software in
/var/adm/sw/save/PHCO_36006. If you do not wish to retain a
copy of the original software, include the patch_save_files
option in the swinstall command above:
-x patch_save_files=false
WARNING: If patch_save_files is false when a patch is installed,
the patch cannot be deinstalled. Please be careful
when using this feature.
For future reference, the contents of the PHCO_36006.text file is
available in the product readme:
swlist -l product -a readme -d @ /tmp/PHCO_36006.depot
To put this patch on a magnetic tape and install from the
tape drive, use the command:
dd if=/tmp/PHCO_36006.depot of=/dev/rmt/0m bs=2k
Special Installation Instructions: None
|
