======================================================================= Hewlett-Packard OpenVMS ECO Release Notes ======================================================================= 1 KIT NAME: VMS84I_ENCRYPT-V0200 2 KIT DESCRIPTION: 2.1 Installation Rating: INSTALL_3 : To be installed by customers experiencing the problems corrected. 2.2 Reboot Requirement: No reboot is necessary after installation of this kit, however, there are additional steps that must be performed in order to use the images provided by this kit. Refer to the section titled Special Installation Instructions for required post-installation actions. 2.3 Version(s) of OpenVMS to which this kit may be applied: OpenVMS for Integrity Servers V8.4 2.4 New functionality or new hardware support provided: No 3 KITS SUPERSEDED BY THIS KIT: - VMS84I_ENCRYPT-V0100 4 KIT DEPENDENCIES: 4.1 The following remedial kit(s), or later, must be installed BEFORE installation of this, or any required kit: - VMS84I_PCSI-V0400 - VMS84I_UPDATE-V0700 - HP_I64VMS_SSL_V1.4 Page 2 4.2 In order to receive all the corrections listed in this kit, the following remedial kits, or later, should also be installed: - None 5 NEW FUNCTIONALITY AND/OR PROBLEMS ADDRESSED IN THE VMS84I_ENCRYPT-V0200 KIT 5.1 New functionality addressed in this kit Not Applicable 5.2 Problems addressed in this kit 5.2.1 ENCRYPT /AUTHENTICATE returns ACCVIO in $STATUS symbol 5.2.1.1 Problem Description: When the following command is issued, it appears that it completes successfully. However, the value returned in the $STATUS symbol is %x1000000C (accvio) $ ENCRYPT/AUTHENTICATE/AES=AES128/SECURITY=filename - _$ /DATABASE=filename/UPDATE /out=outfilename - _$ FileList /Multiple TEMPKEY This problem has been fixed. Images Affected: - [SYSEXE]ENCRYPT$AUTH.EXE 5.2.1.2 Quix and PTR cases reporting this problem: 5.2.1.2.1 Quix Cases QXCM1001260584 5.2.1.2.2 PTR(S) None Page 3 5.2.1.3 Release Version of OpenVMS that will contain this change: Next release of OpenVMS Integrity after V8.4 5.2.1.4 Work-arounds: None 5.2.2 TYPE /TAIL not working on listing log file generated by ENCRYPT/AUTHENTICATE 5.2.2.1 Problem Description: "TYPE /TAIL/CONTINUOUS" does not work on the log file (outfilename) generated using the following command $ ENCRYPT/AUTHENTICATE/AES=AES128/SECURITY=filename - _$ /DATABASE=filename/UPDATE /out=outfilename - _$ FileList /Multiple TEMPKEY This problem has been fixed. Images Affected: - [SYSEXE]ENCRYPT$AUTH.EXE 5.2.2.2 Quix and PTR cases reporting this problem: 5.2.2.2.1 Quix Cases QXCM1001260598 5.2.2.2.2 PTR(S) None 5.2.2.3 Release Version of OpenVMS that will contain this change: Next release of OpenVMS Integrity after V8.4 5.2.2.4 Work-arounds: None Page 4 5.2.3 Missing comments around APIs exposed 5.2.3.1 Problem Description: The HP supplied file encrypt$examples:encrypt_def.* did not have enough comments for end users to easily use the example files. Changes have been done to provide enough comments around the API's exposed through the ENCRYPT_DEF.PLI and other ENCRYPT_DEF header files. This will ease the usability of the APIs for the end users. Images Affected: - [SYSHLP.EXAMPLES.ENCRYPT]ENCRYPT_DEF.ADA - [SYSHLP.EXAMPLES.ENCRYPT]ENCRYPT_DEF.BAS - [SYSHLP.EXAMPLES.ENCRYPT]ENCRYPT_DEF.FOR - [SYSHLP.EXAMPLES.ENCRYPT]ENCRYPT_DEF.H - [SYSHLP.EXAMPLES.ENCRYPT]ENCRYPT_DEF.MAR - [SYSHLP.EXAMPLES.ENCRYPT]ENCRYPT_DEF.PAS - [SYSHLP.EXAMPLES.ENCRYPT]ENCRYPT_DEF.PLI - [SYSHLP.EXAMPLES.ENCRYPT]ENCRYPT_DEF.R32 5.2.3.2 Quix and PTR cases reporting this problem: 5.2.3.2.1 Quix Cases QXCM1001168670 5.2.3.2.2 PTR(S) None 5.2.3.3 Release Version of OpenVMS that will contain this change: Next release of OpenVMS Integrity after V8.4 Page 5 5.2.3.4 Work-arounds: None 6 PROBLEMS ADDRESSED IN PREVIOUS KITS Problems addressed by previously released VMS84I_ENCRYPT patch kits can be found in the following files: o VMS84I_ENCRYPT-V0100.RELEASE_NOTES Before kit installation, these files can be extracted from the kit via the following commands: o To extract all release notes files at once use: PRODUCT EXTRACT RELEASE_NOTES VMS84I_ENCRYPT /VERSION=V2.0 - [/file=destination_directory] o To extract a single release notes file use: PRODUCT EXTRACT FILE VMS84I_ENCRYPT /VERSION=V2.0 - /SELECT=release_note_name[/DESTINATION=destination_directory] The names of individual RELEASE_NOTES files in the kit can be found with: PRODUCT LIST VMS84I_ENCRYPT /VERSION=V2.0 /SELECT = *.RELEASE_NOTES 7 FILES PATCHED OR REPLACED: o [SYSLIB]ENCRYPSHR.EXE (new image) Image Identification Information Image name: "ENCRYPSHR" Image file identification: "ENCRYPT V2.2" Image build identification: "0100000065" linker identification: "Linker I02-37" Link Date/Time: 2-FEB-2012 11:30:31.13 Overall Image Checksum: F1A8341D o [SYSEXE]ENCRYPT$AUTH.EXE (new image) Image Identification Information Image name: "ENCRYPT$AUTH" Image file identification: "ENCRYPT V2.2" Image build identification: "0100000102" linker identification: "Linker I02-37" Link Date/Time: 12-MAR-2013 11:32:18.31 Overall Image Checksum: 9F234F4B Page 6 o [SYSMSG]ENCRYPT$_MSG.EXE (new image) Image Identification Information Image name: "ENCRYPT$_MSG" Image file identification: "ENCRYPT V2.2" Image build identification: "0100000065" linker identification: "Linker I02-37" Link Date/Time: 2-FEB-2012 11:31:32.41 Overall Image Checksum: A147CE2E o [SYSUPD]DCLDICT.HLP (new file) o [SYSUPD]ENCRYPT.CLD (new file) o [SYSHLP.EXAMPLES.ENCRYPT]ENCRYPT_DEF.ADA (new file) o [SYSHLP.EXAMPLES.ENCRYPT]ENCRYPT_DEF.BAS (new file) o [SYSHLP.EXAMPLES.ENCRYPT]ENCRYPT_DEF.FOR (new file) o [SYSHLP.EXAMPLES.ENCRYPT]ENCRYPT_DEF.H (new file) o [SYSHLP.EXAMPLES.ENCRYPT]ENCRYPT_DEF.MAR (new file) o [SYSHLP.EXAMPLES.ENCRYPT]ENCRYPT_DEF.PAS (new file) o [SYSHLP.EXAMPLES.ENCRYPT]ENCRYPT_DEF.PLI (new file) o [SYSHLP.EXAMPLES.ENCRYPT]ENCRYPT_DEF.R32 (new file) 8 INSTALLATION INSTRUCTIONS 8.1 Test/Debug Image Loss In the course of debugging problems reported to OpenVMS Engineering, customers may be given debug or point-fix images to install. Typically, these images do not have the same image generation flags contained in images released via the OpenVMS remedial patch process. Because of this, any debug or point-fix image that is in the SYS$COMMON area, will be replaced by any image of the same name installed by this kit. If this occurs, you will lose any functionality that is provided by the replaced image. If you wish to retain these debug or point-fix images, you can take the following steps: o Prior to installing this kit, move the test/debug image(s) to be saved to the SYS$SPECIFIC area. o During kit installation, you will be asked if you wish to delete the image(s) in SYS$SPECIFIC. You should answer NO for each image that you want to keep. Page 7 o After installation completes, but before rebooting the system (if required), move the image(s) from SYS$SPECIFIC back to SYS$COMMON. 8.2 Compressed File This kit is provided as a Self Extracting ZIPEXE kit. To expand this file to the installable .PCSI file, run the file with the following command: $ RUN VMS84I_ENCRYPT-V0200.ZIPEXE 8.3 Installation Command Install this kit with the POLYCENTER Software installation utility by logging into the SYSTEM account, and typing the following at the DCL prompt: PRODUCT INSTALL VMS84I_ENCRYPT[/SOURCE=location of Kit] Note that this kit will install with the /SAVE_RECOVERY_DATA option turned on. Using this qualifier will allow easy removal of the kit from the system in the event of problems. If you wish to disable this option you must use the /NOSAVE_RECOVERY_DATA qualifier on the PRODUCT INSTALL command. The /SAVE_RECOVERY_DATA qualifier is optional but highly recommended. Using this qualifier will allow easy removal of the kit from the system in the event of problems. The kit location may be a tape drive, CD, or a disk directory that contains the kit. The /SOURCE qualifier is not needed if the PRODUCT INSTALL command is executed from the same directory as the kit location. Additional help on installing PCSI kits can be found by typing HELP PRODUCT INSTALL at the system prompt. 8.4 Scripting of Answers to Installation Questions During installation, this kit will ask and require user response to several questions. If you wish to automate the installation of this kit and avoid having to provide responses to these questions, you must create a DCL command procedure that includes the following logical name definitions and commands: o To avoid the BACKUP question, define the following: $ DEFINE/SYS NO_ASK$BACKUP TRUE o To save replaced files as *.*_OLD define the following logical name as YES. If you do not wish to save replaced files, define the logical name as NO. Note that if you use the /SAVE_RECOVERY_DATA qualifier (recommended) on the PRODUCT Page 8 INSTALL command all replaced files will be saved as part of that operation. There is no need to also save files as *.*_OLD: $ DEFINE/JOB ARCHIVE_OLD NO o Add the following qualifiers to the PRODUCT INSTALL command and add that command to the DCL procedure. /PROD=HP/BASE=I64VMS/VER=V2.0 [/SOURCE=location of Kit] o De-assign the logical names assigned For example, a sample command file to install the VMS84I_ENCRYPT-V0200 kit would be: $ DEFINE/SYS NO_ASK$BACKUP TRUE $ DEFINE/JOB ARCHIVE_OLD NO $! $ PROD INSTALL VMS84I_ENCRYPT/PRODUCER=HP/BASE=I64VMS/VER=V2.0 $! $ DEASSIGN/SYS NO_ASK$BACKUP $! $ exit $! 8.5 Special Installation Instructions: If this kit is being installed in a clustered environment with a shared system disk, in order for all members of the cluster that share the system disk to make use of the new image, you must execute the following command on each node that is sharing the system disk (except for the node on which the installation was performed ; the installation has already done the INSTALL REPLACE on that node). : INSTALL REPLACE SYS$COMMON:[SYSLIB]ENCRYPSHR.EXE INSTALL REPLACE SYS$COMMON:[SYSMSG]ENCRYPT$_MSG.EXE Once installed, users will need to logout and login back in order to use the new image. 9 COPYRIGHT AND DISCLAIMER: (C) Copyright 2013 Hewlett-Packard Development Company, L.P. Confidential computer software. Valid license from HP and/or its subsidiaries required for possession, use, or copying. Consistent with FAR 12.211 and 12.212, Commercial Computer Software, Computer Software Documentation, and Technical Data for Commercial Items are licensed to the U.S. Government under Page 9 vendor's standard commercial license. Neither HP nor any of its subsidiaries shall be liable for technical or editorial errors or omissions contained herein. The information in this document is provided "as is" without warranty of any kind and is subject to change without notice. The warranties for HP products are set forth in the express limited warranty statements accompanying such products. Nothing herein should be construed as constituting an additional warranty. DISCLAIMER OF WARRANTY AND LIMITATION OF LIABILITY THIS PATCH IS PROVIDED AS IS, WITHOUT WARRANTY OF ANY KIND. ALL EXPRESS OR IMPLIED CONDITIONS, REPRESENTATIONS AND WARRANTIES, INCLUDING ANY IMPLIED WARRANTY OF MERCHANTABILITY, FITNESS FOR PARTICULAR PURPOSE, OR NON-INFRINGEMENT, ARE HEREBY EXCLUDED TO THE EXTENT PERMITTED BY APPLICABLE LAW. IN NO EVENT WILL HP BE LIABLE FOR ANY LOST REVENUE OR PROFIT, OR FOR SPECIAL, INDIRECT, CONSEQUENTIAL, INCIDENTAL OR PUNITIVE DAMAGES, HOWEVER CAUSED AND REGARDLESS OF THE THEORY OF LIABILITY, WITH RESPECT TO ANY PATCH MADE AVAILABLE HERE OR TO THE USE OF SUCH PATCH.