Patch Name: PHCO_18615 Patch Description: s700_800 10.24 (VVOS) libsecalarm cumulative patch Creation Date: 99/05/17 Post Date: 99/06/08 Hardware Platforms - OS Releases: s700: 10.24 s800: 10.24 Products: N/A Filesets: VirtualVaultOS.VVOS-SHLIBS VirtualVaultOS.VVOS-PRG VirtualVaultOS.VVOS-AUX-AUDIT VirtualVaultOS.VVOS-AUX-IA Automatic Reboot?: Yes Status: General Release Critical: No Path Name: /hp-ux_patches/s700_800/10.X/PHCO_18615 Symptoms: PHCO_18615: Under certain conditions, application audit record generation may not function as expected. PHCO_16323: If an alarm_defs entry has an stime or etime between 08:00 and 09:59, it mangles the hour to be simply 00. All other times work as expected. PHCO_15979: The internal name for the libsecalarm shared library was not set. All applications that link with libsecalarm would carry in their executables the generic libsecalarm.sl name (as seen by chatr) rather than the more correct, specific libsecalarm.1 name. The latter naming of the specific version of the library is in keeping with the practice with libc. No coding changes within the library itself are present in this patch. PHCO_11954: The libsecalarm library does not support localization, a feature required by current customers. Defect Description: PHCO_18615: audit_application() does not handle audit records correctly. PHCO_16323: In alarm_defs, when the hour portion of stime or etime is set to "08" or "09", an internal error occurs causing the library routine to misbehave. This is due to the fact that the leading zero causes the hour to be misinterpreted as an octal digit instead of the expected decimal value. Since 8 and 9 are not valid octal digits, the routine corrupts the hour with 00. PHCO_15979: The /usr/lib/libsecalarm.1 did not have an internal name associated with it via the +h option of ld(1). Without use of the +h option, proper version control with this library could not be achieved. PHCO_11954: This patch allows the libsecalarm library to process multibyte characters. SR: 4701397265 4701400697 Patch Files: /etc/auth/system/files.fcdb/05.patches/PHCO11954.fcdb /usr/include/sec_alarm.h /usr/lib/libsecalarm.a /usr/lib/libsecalarm.1 /usr/lib/libsecalarm.sl /usr/lib/nls/msg/C/libsecalarm.cat /usr/lib/nls/msg/C/rmail.cat /usr/lib/nls/msg/C/vvosmta.cat /usr/newconfig/tcb/files/audit/nls/C/app_events /usr/newconfig/tcb/files/audit/alarm_defs /tcb/bin/rmail /tcb/bin/vvosmta what(1) Output: /etc/auth/system/files.fcdb/05.patches/PHCO11954.fcdb: $Revision: Hewlett-Packard ISSL 1.4 etc/auth/system/ files.fcdb/05.patches/PHCO11954.fcdb, hpuxpa tch, vvos_davis, davis142 $ $Date: 97/09/21 18:17:45 $ etc/auth/system/files.fcdb/05.patches/PHCO11954.fcdb , hpuxpatch, vvos_davis, davis142 $Date: 99/ 05/27 21:04:27 $ $Revision: 1.4 PATCH_10.24 (PHCO_11954) $ /tcb/bin/rmail: $Revision: Hewlett-Packard ISSL Level vvos_davis40 $ $Header: Hewlett-Packard ISSL Release vvos_ davis $ $Date: Fri May 28 10:16:39 EDT 1999 $ seccmd/rmail.c, libsecalarm, vvos_davis, davis142 $D ate: 99/05/27 21:04:26 $ $Revision: 1.2 PATC H_10.24 (PHCO_11954) $ /tcb/bin/vvosmta: $Revision: Hewlett-Packard ISSL Level vvos_davis40 $ $Header: Hewlett-Packard ISSL Release vvos_ davis $ $Date: Fri May 28 10:16:39 EDT 1999 $ seccmd/vvosmta.c, libsecalarm, vvos_davis, davis142 $Date: 99/05/27 21:04:26 $ $Revision: 1.2 PA TCH_10.24 (PHCO_11954) $ /usr/include/sec_alarm.h: $Revision: Hewlett-Packard ISSL 1.10 include/sec_ala rm.h, libsecurity_ia, vvos_davis, davis142 $ $Date: 97/09/03 14:11:19 $ */ include/sec_alarm.h, libsecurity_ia, vvos_davis, dav is142 $Date: 99/05/27 21:02:29 $ $Revision: 1.10 PATCH_10.24 (PHCO_11954) $ */ /usr/lib/libsecalarm.a: $Revision: Hewlett-Packard ISSL Level vvos_davis40 $ $Header: Hewlett-Packard ISSL Release vvos_ davis $ $Date: Fri May 28 10:16:39 EDT 1999 $ lib/libsecalarm/alarmlib.c, libsecalarm, vvos_davis, davis142 $Date: 99/05/27 21:02:27 $ $Revisi on: 1.6.1.4 PATCH_10.24 (PHCO_16323) $ lib/libsecalarm/app_event.c, libsecalarm, vvos_davis , davis142 $Date: 99/05/27 21:02:39 $ $Revis ion: 1.2.1.7 PATCH_10.24 (PHCO_11954) $ $Source: lib/libsecalarm/app_audit.c, libsecalarm, v vos_davis, davis144 $ $Date: 99/05/27 18:05: 24 $ $Revision: 1.1.1.8 PATCH_10.24 (PHCO_18 615) $ lib/libsecalarm/mta_api.c, libsecalarm, vvos_davis, davis142 $Date: 99/05/27 21:04:25 $ $Revisio n: 1.4 PATCH_10.24 (PHCO_11954) $ /usr/lib/libsecalarm.1: $Revision: Hewlett-Packard ISSL Level vvos_davis40 $ $Header: Hewlett-Packard ISSL Release vvos_ davis $ $Date: Fri May 28 10:16:39 EDT 1999 $ $Source: lib/libsecalarm/app_audit.c, libsecalarm, v vos_davis, davis144 $ $Date: 99/05/27 18:05: 24 $ $Revision: 1.1.1.8 PATCH_10.24 (PHCO_18 615) $ lib/libsecalarm/alarmlib.c, libsecalarm, vvos_davis, davis142 $Date: 99/05/27 21:02:27 $ $Revisi on: 1.6.1.4 PATCH_10.24 (PHCO_16323) $ lib/libsecalarm/app_event.c, libsecalarm, vvos_davis , davis142 $Date: 99/05/27 21:02:39 $ $Revis ion: 1.2.1.7 PATCH_10.24 (PHCO_11954) $ lib/libsecalarm/mta_api.c, libsecalarm, vvos_davis, davis142 $Date: 99/05/27 21:04:25 $ $Revisio n: 1.4 PATCH_10.24 (PHCO_11954) $ /usr/lib/libsecalarm.sl: $Revision: Hewlett-Packard ISSL Level vvos_davis40 $ $Header: Hewlett-Packard ISSL Release vvos_ davis $ $Date: Fri May 28 10:16:39 EDT 1999 $ $Source: lib/libsecalarm/app_audit.c, libsecalarm, v vos_davis, davis144 $ $Date: 99/05/27 18:05: 24 $ $Revision: 1.1.1.8 PATCH_10.24 (PHCO_18 615) $ lib/libsecalarm/alarmlib.c, libsecalarm, vvos_davis, davis142 $Date: 99/05/27 21:02:27 $ $Revisi on: 1.6.1.4 PATCH_10.24 (PHCO_16323) $ lib/libsecalarm/app_event.c, libsecalarm, vvos_davis , davis142 $Date: 99/05/27 21:02:39 $ $Revis ion: 1.2.1.7 PATCH_10.24 (PHCO_11954) $ lib/libsecalarm/mta_api.c, libsecalarm, vvos_davis, davis142 $Date: 99/05/27 21:04:25 $ $Revisio n: 1.4 PATCH_10.24 (PHCO_11954) $ /usr/lib/nls/msg/C/libsecalarm.cat: None /usr/lib/nls/msg/C/rmail.cat: None /usr/lib/nls/msg/C/vvosmta.cat: None /usr/newconfig/tcb/files/audit/nls/C/app_events: $Revision: Hewlett-Packard ISSL 1.4 tcb/files/audit/ nls/C/app_events, files_tcb, vvos_davis, dav is142 $ $Date: 97/08/14 17:17:18 $ tcb/files/audit/nls/C/app_events, files_tcb, vvos_da vis, davis142 $Date: 99/05/27 21:04:38 $ $Re vision: 1.4 PATCH_10.24 (PHCO_11954) $ /usr/newconfig/tcb/files/audit/alarm_defs: $Revision: Hewlett-Packard ISSL 1.3 tcb/files/audit/ alarm_defs, files_tcb, vvos_davis, davis142 $ $Date: 97/08/12 10:59:52 $ tcb/files/audit/alarm_defs, files_tcb, vvos_davis, d avis142 $Date: 99/05/27 21:02:33 $ $Revision : 1.3 PATCH_10.24 (PHCO_11954) $ cksum(1) Output: 2003082966 1773 /etc/auth/system/files.fcdb/05.patches/ PHCO11954.fcdb 2063061867 16384 /tcb/bin/rmail 2960630053 12288 /tcb/bin/vvosmta 3304563514 6447 /usr/include/sec_alarm.h 3399211612 43304 /usr/lib/libsecalarm.a 3648084073 53248 /usr/lib/libsecalarm.1 3648084073 53248 /usr/lib/libsecalarm.sl 963145498 2469 /usr/lib/nls/msg/C/libsecalarm.cat 2965799505 255 /usr/lib/nls/msg/C/rmail.cat 2338958338 274 /usr/lib/nls/msg/C/vvosmta.cat 862360832 635 /usr/newconfig/tcb/files/audit/nls/C/ app_events 3802902048 4467 /usr/newconfig/tcb/files/audit/alarm_defs Patch Conflicts: None Patch Dependencies: s700: 10.24: PHCO_15978 PHCO_18432 s800: 10.24: PHCO_15978 PHCO_18432 Hardware Dependencies: None Other Dependencies: None Supersedes: PHCO_11954 PHCO_15979 PHCO_16323 Equivalent Patches: None Patch Package Size: 230 KBytes Installation Instructions: Please review all instructions and the Hewlett-Packard SupportLine User Guide or your Hewlett-Packard support terms and conditions for precautions, scope of license, restrictions, and, limitation of liability and warranties, before installing this patch. ------------------------------------------------------------ 1. Back up your system before installing a patch. 2. Login as root. 3. Copy the patch to the /tmp directory. 4. Move to the /tmp directory and unshar the patch: cd /tmp sh PHCO_18615 5a. For a standalone system, run swinstall to install the patch: swinstall -x autoreboot=true -x match_target=true \ -s /tmp/PHCO_18615.depot 5b. For a homogeneous NFS Diskless cluster run swcluster on the server to install the patch on the server and the clients: swcluster -i -b This will invoke swcluster in the interactive mode and force all clients to be shut down. WARNING: All cluster clients must be shut down prior to the patch installation. Installing the patch while the clients are booted is unsupported and can lead to serious problems. The swcluster command will invoke an swinstall session in which you must specify: alternate root path - default is /export/shared_root/OS_700 source depot path - /tmp/PHCO_18615.depot To complete the installation, select the patch by choosing "Actions -> Match What Target Has" and then "Actions -> Install" from the Menubar. 5c. For a heterogeneous NFS Diskless cluster: - run swinstall on the server as in step 5a to install the patch on the cluster server. - run swcluster on the server as in step 5b to install the patch on the cluster clients. By default swinstall will archive the original software in /var/adm/sw/patch/PHCO_18615. If you do not wish to retain a copy of the original software, you can create an empty file named /var/adm/sw/patch/PATCH_NOSAVE. Warning: If this file exists when a patch is installed, the patch cannot be deinstalled. Please be careful when using this feature. It is recommended that you move the PHCO_18615.text file to /var/adm/sw/patch for future reference. To put this patch on a magnetic tape and install from the tape drive, use the command: dd if=/tmp/PHCO_18615.depot of=/dev/rmt/0m bs=2k Special Installation Instructions: If this patch is installed in conjunction with a VirtualVault 2.0, this patch must be applied after the installation of the VirtualVault software. If this patch is not installed after the VirtualVault software has been loaded, the libsecalarm library will not be the latest version and the functionality of this patch will be lost. Note from superseded PHCO_15979 patch: For VVOS application developers: To avoid versioning problems with future VVOS releases, please install this patch and then rebuild all applications that use the libsecalarm library. Please do this as time warrants prior to any significant upgrades.