Microsoft KB Archive/929442
Article ID: 929442
Article Last Modified on 12/4/2007
- Microsoft Host Integration Server 2004 Enterprise Edition
- Microsoft Host Integration Server 2004 Standard Edition
The Microsoft Host Integration Server 2004 SnaBase service may terminate unexpectedly when it receives data from a Host Integration Server client over an encrypted connection. This problem may occur when any version of the Host Integration Server client is used.
Note This problem does not occur when Host Integration Server encryption is disabled.
A supported hotfix is now available from Microsoft. However, this hotfix is intended to correct only the problem that is described in this article. Apply this hotfix only to systems that are experiencing this specific problem. This hotfix might receive additional testing. Therefore, if you are not severely affected by this problem, we recommend that you wait for the next service pack that contains this hotfix.
To resolve this problem, submit a request to Microsoft Online Customer Services to obtain the hotfix. To submit an online request to obtain the hotfix, visit the following Microsoft Web site:
Note If additional issues occur or any troubleshooting is required, you might have to create a separate service request. The usual support costs will apply to additional support questions and issues that do not qualify for this specific hotfix. To create a separate service request, visit the following Microsoft Web site:
The English version of this hotfix has the file attributes (or later file attributes) that are listed in the following table. The dates and times for these files are listed in Coordinated Universal Time (UTC). When you view the file information, it is converted to local time. To find the difference between UTC and local time, use the Time Zone tab in the Date and Time item in Control Panel.
|File name||File version||File size||Date||Time||Platform|
Note Because of file dependencies, the most recent software update that contains these files may also contain additional files.
Microsoft has confirmed that this is a problem in the Microsoft products that are listed in the "Applies to" section.
When this problem occurs, the stack output may resemble one of the following stack outputs.
Note These stack outputs may appear in a Dr. Watson log file or in the Application log.
Stack output 1
0e03fae0 76c97885 msv1_0!rc4+0x12e 0e03fbfc 76c9a467 msv1_0!SspEncryptBuffer+0x52 0e03fd9c 76c96567 msv1_0!SspSignSealHelper+0x2ef 0e03fe04 76f51aa9 msv1_0!SpUnsealMessage+0xe0 0e03fe20 76f51a3c secur32!LsaUnsealMessage+0x67 0e03fe44 606ca901 secur32!DecryptMessage+0x43 0e03fec8 606c9e0c snaip!SnaDecryptMessage+0xe6 0e03ff60 67432c87 snaip!ReceiveSNAMessage+0x278 0e03ffb8 77e4a990 snadmod!IoThread+0x10a 0e03ffec 00000000 kernel32!BaseThreadStart+0x34
Stack output 2
00d9fe38 77f46866 ntdll!RtlpCoalesceFreeBlocks+0x350 00d9ff04 606c1432 ntdll!RtlFreeHeap+0x2e9 00d9ff20 606c4bc1 snaip!CleanupConnection+0x31 00d9ff50 67432346 snaip!CloseConnection+0x109 00d9ff64 67432f0f snadmod!CloseLtab+0x224 00d9ffb8 77e4a990 snadmod!IoThread+0x392 00d9ffec 00000000 kernel32!BaseThreadStart+0x34
Data encryption between a client computer and Host Integration Server 2004 works on a per-user basis. The data encryption is implemented transparently for any application that uses the Host Integration Server 2004 APIs. Therefore, any software that uses the Host Integration Server 2004 client APIs automatically benefits from encryption. For example, a third-party emulator that uses the Host Integration Server 2004 client APIs automatically benefits from encryption.
Host Integration Server 2004 lets you encrypt data for client-to-server and server-to-server communications. By default, this feature is enabled automatically for Host Integration Server 2004 and for later versions. For earlier versions such as Microsoft SNA 4.0 and Microsoft Host Integration Server 2000, this option must be set explicitly.
An application that is running on the Host Integration Server client computer may form a message incorrectly. For example, a third-party emulator may form a message incorrectly. This message is encrypted, and then it is passed to the server for processing. When the SnaBase service processes the message data, an error may occur. When the error occurs, you experience the symptoms that are mentioned in the "Symptoms" section.
This hotfix creates an internal firewall for the SnaBase service. By taking this action, the hotfix prevents the SnaBase service from processing any corrupted data that the SnaBase service may receive.
Keywords: kbbug kbfix kbqfe kbpubtypekc kbhotfixserver KB929442