IBM Support

IV50142: ISAKMPD LOOPS WITH HIGH CPU AFTER RECEIVING LARGE SCAN PACKET APPLIES TO AIX 6100-08

A fix is available

Obtain the fix for this APAR.

Subscribe

You can track all active APARs for this component.

 

APAR status

  • Closed as program error.

Error description

  • When isakmpd is scanned by a port scanner with a large
packet it will start looping with this message in the
log:
isakmpd: The time is : Wed Sep 11 10:31:53 2013
isakmpd: simple_isakmp_ureq::get_channel_mask():mask is
0x00000000000000000000000000000800.
isakmpd: The value of tbit is
0x00000000000000000000000000100000
isakmpd: event_capture::capture():net event(s).
isakmpd: isakmp_buf::realloc(int sz):"new char[sz]"
failed.
isakmpd:
isakmp_simple_net::recv_msg(channel):msgbuf->realloc()
failed.
isakmpd: isakmp_anchor::deliver_events():net->recv_msg()
failed on channel 20.

Local fix

  • There is no workaround on AIX.  The only workaround is to
not run the scan.

Problem summary

  • When isakmpd is scanned by a port scanner with a large
packet it will start looping with high CPU usage. If syslog
is configured ,we can see the repeated instance of
msgbuf->realloc() failed.

Problem conclusion

  • Fixed isakmpd daemon code to take care of such situations and
not hang.

Temporary fix

  • 



Comments


    

  • 6100-07 - use AIX APAR IV58344
6100-08 - use AIX APAR IV50142
6100-09 - use AIX APAR IV51911
6100-09 - use AIX APAR IV51911
6100-09 - use AIX APAR IV51911
7100-01 - use AIX APAR IV57624
7100-02 - use AIX APAR IV57250
7100-03 - use AIX APAR IV51458

    



APAR Information




    

  • APAR number
    IV50142
    • 

  • Reported component name
    AIX 610 STD EDI
    • 

  • Reported component ID
    5765G6200
    • 

  • Reported release
    610
    • 

  • Status
    CLOSED  PER
    • 

  • PE
    NoPE
    • 

  • HIPER
    NoHIPER
    • 

  • Submitted date
    2013-09-30
    • 

  • Closed date
    2013-10-25
    • 

  • Last modified date
    2014-08-14
    • 






Fix information


    

  • Fixed component name
    AIX 610 STD EDI
    • 

  • Fixed component ID
    5765G6200
    • 



Applicable component levels


    

  • R610  PSY  U865388
       UP14/08/08  I  1000
    • 



PTF to Fileset Mapping








      
              
                            

              

              [{"Business Unit":{"code":"BU054","label":"Systems w\/TPS"},"Product":{"code":"SSMV87","label":"AIX 6.1 Enterprise Edition"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"610","Edition":"","Line of Business":{"code":"LOB08","label":"Cognitive Systems"}},{"Business Unit":{"code":"BU058","label":"IBM Infrastructure w\/TPS"},"Product":{"code":"SSMVAX","label":"AIX Express Edition"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"610","Edition":"","Line of Business":{"code":"LOB08","label":"Cognitive Systems"}},{"Business Unit":{"code":"BU054","label":"Systems w\/TPS"},"Product":{"code":"SSAUMY","label":"IBM AIX Enterprise Edition"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"610","Edition":"","Line of Business":{"code":"","label":""}},{"Business Unit":{"code":"BU054","label":"Systems w\/TPS"},"Product":{"code":"SG11Q","label":"AIX 6.1 HIPERS, APARs and Fixes"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"610","Edition":"","Line of Business":{"code":"","label":""}}]
              

                          

          
 
        

      

    

      

        

          

            
Document Information


            

            


                        

            Modified date:
            

            14 August 2014
            

            
                      

        


        

        


      

    

  



    

  

  
    
            

          
Page Feedback