Sun JavaTM System Web Server 6.1 2006Q2 SP6 (hereafter referred to as Sun Java System Web Server 6.1) contains important security vulnerability fixes. All users of Sun Java System Web Server, especially those with sites that use Secure Sockets Layer (SSL) or Transport Security Layer (TSL), are strongly encouraged to install this service pack. This release also provides support for the HP-UX and AIX platforms.
These release notes contain important information available at the time of release of Sun Java System Web Server 6.1 SP6, including information about features and enhancements, known limitations and problems, technical notes, and pointers to additional resources. Review the release notes prior to installing and configuring your server, and then periodically thereafter for the most up-to-date information.
The complete Sun Java System Web Server 6.1 documentation is available at http://docs.sun.com/coll/1308.2.
These release notes contain the following sections:
Sun Java System Web Server 6.1 provides the following features and enhancements:
Sun Java System Web Server includes a Java 2 Platform, Enterprise Edition (J2EETM)-compliant implementation of the Java Servlet 2.3 and JavaServer Pages (JSP) 1.2 specifications. A J2EE-compliant Web container provides the flexibility and reliability needed to design and deploy web applications that comply with Java technology standards. Web applications can be deployed on a per virtual server basis.
For information about these technologies, see the following resources:
Java Servlets at http://java.sun.com/products/servlet/index.html
JavaServer Pages at http://java.sun.com/products/jsp/index.html
For information about developing Servlets and JSPs, see Sun Java System Web Server 6.1 SP6 Programmer’s Guide to Web Applications.
Sun Java System Web Server supports Java 2 Platform, Standard Edition (J2SETM) 1.4. J2SE is bundled with the Web Server and installed during installation. You can also install your own JDK at a later time.
The 64-bit Solaris SPARC release of Sun Java System Web Server requires a 64-bit JDK. On all other platforms, a 32-bit JDK is required.
For Sun Java System Web Server 6.1 SP7, AIX will be bundled with JDK 1.4.2.
Sun Java System Web Server supports Java 2 Platform, Standard Edition (J2SE) 1.5 and has been tested and certified with 1.5.0_01 on Solaris, Linux, and Windows platforms.
Sun Java System Web Server supports the Web-based Distributed Authoring and Versioning (WebDAV) protocol. WebDAV enables collaborative Web publishing and has the following features:
Compliance with RFC 2518 and interoperability with RFC 2518 clients
Security and access control for Web publishing
Basic publishing operations on file-system-based WebDAV collections and resources
WebDAV provides integrated support for content meta data, name space management, and overwrite protection. These technologies combined with the many authoring tools that support WebDAV provide an ideal development platform for collaborative environments.
Sun Java System Web Server extends the Netscape Server Application Programmer's Interface (NSAPI) to support NSAPI filters.
Filters enable the custom processing of HTTP request and response streams. This allows a function to intercept and potentially modify the content presented to or generated by another function. For example, a plug-in could install a NSAPI filter to intercept a XML page generated by another plug-in's Server Application Function (SAF) and then transform that XML page into a HTML, XHTML, or WAP page appropriate for the client. Alternatively, a NSAPI filter could decompress data received from a client before presenting it to another plug-in.
For more information, see Sun Java System Web Server 6.1 SP6 NSAPI Programmer’s Guide.
Sun Java System Web Server supports content compression, which allows you to increase delivery speed to clients and serve higher content volumes without incurring a corresponding increase in hardware expenses. Content compression reduces content download time, a benefit most apparent to users of dial-up and high-traffic connections.
For more information, see Sun Java System Web Server 6.1 SP6 Administrator’s Guide.
Sun Java System Web Server supports a Java-based search engine that provides full-text search indexing and retrieval. The search feature allows you to search documents on the server and display results on a Web page. Server administrators can create the indexes of documents against and customize the search interface to meet user specific needs.
The default URL to access the search functionality is as follows:
http://<server-instance >:port number/search
Example:
http://plaza:8080/search
When the end-user invokes this URL, the Search page (a Java web application) is launched.
For detailed information about conducting basic and advanced searches, see the Online Help provided with the search engine. To access Online Help, click the Help link on the Search page. For more information, see Sun Java System Web Server 6.1 SP6 Administrator’s Guide.
Sun Java System Web Server allows you to restrict access using flat file authentication. Sun Java System Web Server supports the Java Security Manager. Enabling the Security Manager can improve security by restricting the rights granted to your J2EE web applications. By default, the Security Manager feature is disabled when you install the product. To enable Security Manager, uncomment the following entries in the server.xml file:
<JVMOPTIONS>-Djava.security.manager</JVMOPTIONS>
<JVMOPTIONS>-Djava.security.policy=instance_dir/config/server.policy</JVMOPTIONS>
where instance_dir is the path to the installation directory of this server instance.
For more information about server.xml, see Sun Java System Web Server 6.1 SP6 Administrator’s Configuration File Reference.
Sun Java System Web Server supports the Java Naming and Directory Interface (JNDI). JNDI provides connectivity to heterogeneous enterprise naming and directory services.
Sun Java System Web Server provides out-of-the-box Java DataBase Connectivity (JDBC), and supports a wide range of industry-standard and customized JDBC drivers.
Sun Java System Web Server supports Sun Java Studio Enterprise 8. Sun Java Studio technology is Sun's powerful and extensible integrated development environment (IDE) for Java technology developers. Sun Java Studio is based on the NetBeans software and is integrated with the Sun Java platform.
Sun Java Studio support is available on all platforms supported by Sun Java System Web Server 6.1. The plug-in for the Web Server can be obtained in the following ways:
From the companion CD in the Sun Java System Web Server Media Kit
By using the AutoUpdate feature of Sun Java Studio
From the download center for Sun Java System Web Server
Sun Java Studio 8 plug-in for Sun Java System Web Server 6.1 SP6 works only with a local Web Server, that is, with the IDE and the Web Server on the same machine
For information about using the web application features in Sun Java Studio 8, see http://developers.sun.com/prodtech/javatools/jsenterprise/learning/tutorials/index.html.
Set the Sun Java System Web Server 6.1 SP6 instance as default, and then take the same actions described in the tutorial.
Also see the NetBeans tutorial at http://www.netbeans.org/kb/41/j2ee-tut/.
For more information about Sun Java Studio 8, see http://www.sun.com/software/sundev/jde/.
For additional developer resources, see Additional Sun Resources in these release notes.
Sun Java Studio Enterprise 8 can be used for remote debugging if you want to manually attach the IDE to a remote Web Server started in debug mode. The steps are as follows:
Restart the server instance in the debug mode by using the Sun Java System Web Server Administration interface (Server Manager > JVM General > Debug Enabled).
Note the JPDA port number.
Start the IDE.
Choose Debug > Start.
Select the dt_socket method.
Enter the remote machine name and JPDA port number.
At that moment, any breakpoint created in the IDE on Servlet source code of a deployed application will be active.
Sun Java System Web Server 6.1 supports the Active Server Pages specification through Sun Java System Active Server Pages version 4.0.1 (formerly SunTM ChiliSoft ASP) and 4.0.2. Sun Java System Active Server Pages adds a secure and enterprise-grade Active Server Pages engine to the Sun Java System Web Server.
Sun Java System Web Server 6.1 supports Sun Java System Active Server Pages 4.0.1 and 4.0.2 on the following platforms:
SolarisTM (SPARC®) 8 and 9
Windows 2000 and XP
Red Hat Advanced Server 2.1
A license is not required for Sun Java System Active Server Pages if you are installing it to the Sun Java System Web Server. The Sun Java System Active Server Pages installer is available on the companion CD if you purchase the Sun Java System Web Server Media Kit, or you can download from http://www.sun.com/software/chilisoft/index.html.
Note the following:
The Sun Java System Active Server Pages plug-in requires an additional 50 MB (approximately) of disk space after Sun Java System Web Server 6.1 is installed.
Before you begin installation, make sure you are logged in as root.
PHP can be used with the Sun Java System Web Server using one of the three supported APIs namely CGI, NSAPI, and FastCGI. PHP is a page scripting language available from the PHP group. The PHP group provides instructions on its Web site (http://www.php.net) for configuring the PHP software to use any of the following APIs:
CGI API is the most stable interface that can be used but will suffer from performance limitations inherent in CGI.
NSAPI uses the Sun Java System Web Server's native API to run the PHP software within the Web Server's memory. This configuration will provide the best performance, but risks crashing the server if non thread safe PHP modules are used.
FastCGI interface provides a compromise between performance and stability. FastCGI allows the PHP software to remain running after serving requests while continuing to run outside of the Web Server's memory. If an unstable PHP module is used, it will not crash the Web Server. For this reason Sun recommends you to use FastCGI interface with the PHP software.
The FastCGI interface is supported with Web Server through the installation of the FastCGI add-on available athttp://www.sun.com/download/products.xml?id=42d693c3.
When run as a FastCGI process, the PHP software uses the following environment variables to control the life cycle of PHP processes.
PHP_FCGI_CHILDREN determines the number of PHP processes that will be created to respond to requests.
PHP_FCGI_MAX_REQUESTS determines the number of requests a PHP process can respond to before terminating itself and being replaced with a new PHP process.
Sun recommends against the use of PHP_FCGI_CHILDREN. Instead, you can use the FastCGI add-on configuration parameter min-procs to control the minimum number of PHP processes.
Sun Java System Web Server supports NSS. The version of NSS included in this version of Web Server is 3.11.1 (for both 32–bit and 64-bit). NSS is a set of libraries designed to support cross-platform development of security-enabled server applications. Sun Java System Web Server 6.1 SP6 also includes NSPR 4.6.2.
NSS has released the following patches. You can download these patches from http://patchstatus.sfbay.sun.com/patchstatus/.
Solaris 8 SPARC: 119209-07
Solaris 9 SPARC: 119211-07
Solaris 9 x86: 119212-07
Solaris 10 SPARC: 119213-07
Solaris 10 x86: 119214-07
Linux: 121656-07
Sun Java System Web Server 6.1 provides hardware accelerator support for Sun Crypto Accelerator 500 and 1000, a cryptographic accelerator board that enhances the performance of SSL on Web Server.
To complement the existing support to 32-bit Solaris SPARC, Sun Java System Web Server 6.1 SP6 also supports 64-bit Solaris SPARC. Sun encourages administrators to continue to deploy the 32-bit release of Sun Java System Web Server.
The 64-bit release may be of use in certain memory-intensive deployments as it enables administrators to configure a larger file cache and Java heap than the 32-bit release. However, existing plug-ins are not compatible with the 64-bit release. These plug-ins have to be recompiled for the 64-bit release by the plug-in vendor. Java web applications that use native, and non-Java libraries should also be recompiled.
Sun Java System Web Server 6.1 SP6 also provides 64-bit support for FastCGI, Reverse Proxy, and Java Web Services Developer Pack (JWSDP) plug-ins.
The 64-bit release is compatible with 64-bit Solaris kernels on UltraSPARC processors. The 64-bit release cannot be used on x86 processors or with 32-bit Solaris kernels. The 32-bit release continues to be compatible with both 32-bit and 64-bit Solaris kernels.
The 64-bit and 32-bit releases of Sun Java System Web Server are packaged and distributed separately. It is not possible to upgrade an existing 32-bit Sun Java System Web Server installation to a 64-bit installation. It is possible to distinguish the 32-bit and 64-bit releases by the version string that is displayed in the installer, at server startup, and in the server errors log as follows:
Release |
Version String |
32–bit |
Sun ONE Web Server 6.1SP6 |
64-bit |
Sun ONE Web Server 6.1SP6 (64-Bit) |
For Web Server's SSL subsystem (NSS) to use external PKCS#11 token(s), you have to configure NSS with the modutil command to make it aware of the token(s). The Solaris libpkcs11 softtoken is a PKCS#11 compliant token which can be used with NSS. As an additional benefit on UltraSPARC-T1, systems using Solaris 10's libpkcs11 will make use of the platform crypto acceleration support.
Run the modutil command without any arguments for usage information. For example, to add the Solaris 10 libpkcs11 library as a PKCS11 token in NSS,
Ensure that SSL support has been initialized for the Web Server instance(s). You can do this using the Administration GUI.
Run the following command:
% modutil -dbdir $ALIASDIR -dbprefix $PREFIX -add libpkcs -libfile /usr/lib/libpkcs11.so -mechanisms RSA
where,
$ALIASDIR is the path to the alias directory in the install root where the NSS database files are located.
$PREFIX is the prefix used by the key3/cer8 database files in the alias directory and is of the form https-$INSTANCENAME-.
Note the -mechanisms flag which makes this token the preferred initial provider for the given algorithms.
Run the modutil command without any arguments for a list of all possible mechanisms.
Before using the libpkcs11 provider, initialize its password with pktool:
% pktool setpin
For further details on configuring NSS, see man pages and references:
libpkcs11(3LIB): http://docs.sun.com/app/docs/doc/816-5173/6mbb8aduq?a=view
pkcs11_softtoken(5): http://docs.sun.com/app/docs/doc/816-5175/6mbba7f37?a=view
pktool(1): http://docs.sun.com/app/docs/doc/816-5165/6mbb0m9oj?a=view
modutil: http://www.mozilla.org/projects/security/pki/nss/tools/modutil.html
If you are using a localized version of Web Server 6.1x, you can take advantage of the existing localization features by installing Sun Java System Web Server 6.1 SP6 over the existing server. Sun Java System Web Server 6.1 SP6 is available in Japanese, Simplified and Traditional Chinese, French, Spanish, German, and Korean.
Sun Java System Web Server 6.1 SP6 can be installed on the Solaris, HP-UX, AIX, Linux, and Windows platforms. For more information about installation requirements, see Required Patches in these release notes and Sun Java System Web Server 6.1 SP6 Installation and Migration Guide. The following table summarizes platform support.
HP-UX 11i is supported only on PA-RISC platforms.
* AIX 5.1 is deprecated.
** As of iPlanet Web Server 6.0, older SPARC CPUs are not supported. Sun Java System Web Server 6.1 continues to support the UltraSPARC architecture.
*** Sun or Sun Partner Advantage professional services highly recommended.
**** Support for Sun Linux 5.0 is deprecated and will be removed in the next release of the Sun Java System Web Server.
Sun recommends you to migrate your Web Server to a supported operating system.
For a Solaris installation, Sun Java System Web Server (SP5 onwards) supports Global Zone with Sparse Root Zone and Whole Root Zone.
Sun recommends you to update your operating system with the latest applicable patches.
To upgrade from Java Enterprise System (JES) 4 to Sun Java System Web Server 6.1 SP6, you should add the security patches along with the Web Server patches.
Solaris users must have the Sun recommended patch cluster installed. For more details, see http://sunsolve.sun.com.
Solaris 8 2/02
Sun recommended latest Security and Recommended patch cluster
Solaris 9 8/03 or above
Sun recommended latest Security and Recommended patch cluster
The following HP-UX patches are required for Sun Java System Web Server 6.1 SP6.
HP-UX 11i is supported only on PA-RISC platforms.
The minimum patch level required is as follows:
B.11.11.0203 – HP-UX 11i Operating Environment Component
B.11.11.0306.1 — Required patch bundle for 11i, June 2003
B.11.11.0306.4 — Gold Base patches for HP-UX 11i, June 2003
B.11.11.0306.4 — Gold Application patches for HP-UX 11i, June 2003
PHCO_29109 — Pthread enhancement and fixes
PHCO_30544 — Pthread.h fix and new enhancement
PHCO_29328 — libc man page cumulative patch
PHCO_29495 — libc cumulative patch
Java Out-of-Box — JAVAOOB, 1.0.00.0
The following patch levels are also certified:
For bundled JDK
BUNDLE11i — B.11.11.0306.1 — Required Patch Bundle for HP-UX 11i, June 2003
HPUX11i-OE — B.11.11.0412 — HP-UX 11i Operating Environment Component
GOLDAPPS11i — B.11.11.0412.5 — Gold Applications Patches for HP-UX 11i v1, December 2004
GOLDBASE11i — B.11.11.0412.5 — Gold Base Patches for HP-UX 11i v1, December 2004
GOLDAPPS11i — B.11.11.0506.4 — Applications Patches for HP-UX 11i v1, June 2005
GOLDBASE11i — B.11.11.0506.4 — Base Patches for HP-UX 11i v1, June 2005
GOLDBASE11i.PHCO_29960 — 1.0 — Pthread enhancement and fixes
GOLDBASE11i.PHCO_31061 — 1.0 — libc cumulative patch
PHCO_30544 — 1.0 — Pthread enhancement and fixes
PHCO_31923 — 1.0 — libc cumulative header file patch JAVAOOB, 1.0.00.02
PHCO_33711 – 1.0 — libc cumulative patch
For JDK 1.5.0_01:
BUNDLE11i — B.11.11.0306.1 — Required Patch Bundle for HP-UX 11i, June 2003
GOLDAPPS11i — B.11.11.0506.4 — Applications Patches for HP-UX 11i v1, June 2005
GOLDBASE11i — B.11.11.0506.4 — Base Patches for HP-UX 11i v1, June 2005
HPUX11i-OE — B.11.11.0312 — HP-UX 11i Operating Environment Component
PHCO_30544 — 1.0 — Pthread enhancement and fixes
PHCO_32761 — 1.0 — libc cumulative patch
PHCO_33711 – 1.0 — libc cumulative patch
Java15JDK – 1.5.0.01.00 — Java 1.5 JDK for HP-UX
JAVAOOB — 2.03.01 — Java2 Out-of-box for HP-UX
The Java out-of-box tool is used to configure the necessary kernel tunable parameters. Use of this tool is the recommended method for modifying kernel values. If necessary, modify the following tunable parameters to reflect a value equal to or greater than the following:
nkthreads — 3635
maxfiles — 60
maxfiles_lim — 1024
max_thread_proc — 512
maxswapchunks — 2048
nfile — 4136
ncallout — 3651
nproc — 2068
Modifying the kernel tunable parameters can have adverse impacts on your system.
The following AIX patches are required for Sun Java System Web Server 6.1 SP6.
Base-level OS — AIX 5.1
Maintenance-level patches — 5100-09
JDK APAR — IY46667 must be applied
Base-level OS — AIX 5.2
Maintenance-level patches — 5200-02
JDK APAR — IY46668 must be applied
If you have deployed Java web applications on the Web Server, set the following environment variables to the values specified below (as per the IBM JDK documentation) before starting the server:
export AIXTHREAD_SCOPE=S
export AIXTHREAD_MUTEX_DEBUG=OFF
export AIXTHREAD_RWLOCK_DEBUG=OFF
export AIXTHREAD_COND_DEBUG=OFF
You can directly add the above code line to the Web Server start script.
Base-level OS — AIX 5.3
Maintenance-level patches — 5300-01
The following public interfaces in Sun Java System Web Server 6.1 may be deprecated or modified in non-compatible ways in a future Web Server release. These interfaces remains unchanged within the Web Server 6.1 product. Scripts that rely on these interfaces may have to be updated to function with future Web Server releases.
Table 2 Deprecated or Modified Public Interfaces
Configuration File or Utility |
Description |
---|---|
magnus.conf |
Modified. Some functionality may be moved to other files. |
server.xml |
Modified. Schema and functionality may be modified. |
nsfc.conf |
Deprecated. Functionality may be moved to other files. |
dbswitch.conf |
Deprecated. This file may be eliminated; functionality may be moved to other files. |
password.conf |
Deprecated. This file may be eliminated; functionality may be moved to other files. |
file layout |
Modified. The configuration file structure may be modified. |
start, stop, restart, and rotate scripts |
Modified. The names and/or locations of these utilities may change. |
wdeploy application |
Deprecated. This utility may be eliminated; functionality may be integrated with other management utilities. |
This section includes notes about installing, upgrading, and migrating your Sun Java System Web Server. For detailed information about these topics, refer the Sun Java System Web Server 6.1 SP6 Installation and Migration Guide. For known issues in this release of Sun Java System Web Server, see Known Issues.
Do not install Web Server into a directory with spaces in the name.
It is very important to note that the Web Server will not start if it is installed into a directory with spaces in the name, for instance, Program Files. You will not receive an error message about this during installation, but following installation the server will not start.
Web Server cannot be set up on RHLAS 3.0 without compat-libstdc++
When you install Sun Java System Web Server 6.1 SP6 over an existing installation of Sun Java System Web Server, the installer automatically carries out the upgrade.
If you have Sun ONE Web Server 6.1 SP1 installed, point the Sun Java System Web Server 6.1 SP6 installer to the location of the 6.1 SP1 installation and then upgrade.
If you have the Sun Java Enterprise System 1 installed on your system and you wish to upgrade the Sun ONE Web Server 6.1 that is part of Sun Java Enterprise System 1 to Sun Java System Web Server 6.1 SP6, refer the Sun Java Enterprise System 2004Q2 Installation Guide.
Direct migration from a version of iPlanet TM Web Server lower than 4.1 to Sun Java System Web Server 6.1 SP6 is not supported. You must first migrate your legacy server to iPlanet Web Server 4.1, and then to Sun Java System Web Server 6.1 SP6.
For detailed migration information, see Sun Java System Web Server 6.1 SP6 Installation and Migration Guide. This guide contains information about migrating from version 4.1 to 6.1 and from version 6.0 to 6.1.
Sun Java System Web Server includes a complete set of product documentation at http://docs.sun.com/coll/1308.2.
Sun Java System Web Server manuals are available as online files in PDF and HTML formats. The following table lists the tasks and concepts described in each manual.
Table 3 Sun Java System Web Server Documentation Roadmap
To obtain accessibility features that have been released since the publishing of this media, consult Section 508 product assessments available from Sun upon request to determine which versions are best suited for deploying accessible solutions. Updated versions of applications can be found at: http://sun.com/software/javaenterprisesystem/get.html. For information on Sun's commitment to accessibility, see http://sun.com/access.
This section lists the most important issues fixed in the following releases:
The following table lists the issues resolved in Sun Java System Web Server 6.1 SP6.
Table 4 Issues Resolved in Sun Java System Web Server 6.1 SP6
The following table lists the issues resolved in the English language version of Sun Java System Web Server 6.1 SP6 documentation.
The following issues exists in the localized version of Sun Java System Web Server 6.1 SP6 documentation.
Problem ID |
Description |
---|---|
6378473 |
Release Notes for Sun Java System Web Server 6.1 Add-Ons Reverse Proxy Plugin has incorrect default value for the validate-server-cert SAF. |
6391505 |
Installation and Migration Guide should document configuration file writability, root security risks, and Solaris net_privaddr privilege. |
6359385 |
Administrator's Configuration File Reference should document the magnus.conf variable MaxKeepAliveConnections value range for 64–bit server. |
6358849 |
Administrator's Configuration File Reference should document the MaxOpenFiles attribute in the nsfc.conf configuration file. |
5065188 6173274 |
Administrator's Guide incorrectly describes a Find menu Passage Search option in the Advanced Search section. This menu option is not available. |
6155266 |
Administrator's Guide describes the configuration log level incorrectly. |
6206074 |
Administrator's Configuration File Reference describes an incorrect default value for the ChildRestartCallback directive. |
6170766 |
Installation and Migration Guide describes an incorrect method of upgrading a new version of Web Server in the Before You Install Sun ONE Web Server section. |
6170769 |
Administrator's Configuration File Reference has incorrect information about the AdminLanguage directive. |
6173273 |
Administrator's Guide has a typo error under section Choosing MIME Types. |
6173133 |
NSAPI Programmer's Guide describes an incorrect example of a NSAPI Function Reference. |
6173272 |
Administrator's Guide incorrectly documents the supported version of Java as `1.4.1_03'. |
5029460 |
Administrator's Guide documents an incorrect certmap.conf configuration. |
4975161 |
Administrator's Configuration File Reference does not document the optional parameter `block-size' for pool-init. |
5002190 |
Administrator's Guide doesn't contain information about the htpasswd command utility. |
5002192 |
Administrator's Configuration File Reference has incorrect information about the loglevel attribute. |
5038534 |
Administrator's Configuration File Reference has incorrect default value for the LogFlushInterval directive. |
4781137 |
Administrator's Guide has the following incorrect information: |
4823362 |
Administrator's Guide needs to be updated with additional information regarding ACL. |
5046588 |
Installation and Migration Guide incorrectly documents the supported version of Sun accelerator hardware. |
5052605 |
NSAPI Programmer's Guide does not clearly specify that content-type needs to be in lower case. |
5062560 |
Installation and Migration Guide does not document the method of disabling the start-on-boot option. |
6285234 |
Administrator's Configuration File Reference incorrectly describes the default value of the StrictHttpHeaders directive as on. |
6067318 |
Administrator's Configuration File Reference has insufficient information about the set-variable error parameter. |
6230379 |
Administrator's Configuration File Reference incorrectly describes a remove-file() SAF. |
6208955 |
NSAPI Programmer's Guide incorrectly documents the description of SERVER_SOFTWARE as MAGNUS_VERSION_STRING. |
6320016 |
Administrator's Configuration File Reference doesn't clearly define the default value of listenQ on Windows. |
6354681 |
Administrator's Configuration File Reference needs more information about DNS. |
The following table lists the issues resolved in Sun Java System Web Server 6.1 SP5.
Table 6 Issues Resolved in Sun Java System Web Server 6.1 SP5
The following table lists the issues resolved in Sun Java System Web Server 6.1 SP4.
Table 7 Issues Resolved in Sun Java System Web Server 6.1 SP4
Problem ID |
Description |
---|---|
6021153 |
Required patch id 112396-03 does not exist. The patch #112396-03 listed as required in earlier release notes was incorrect. The correct patch number is: 112396-02. Solaris users must have the Sun recommended patch cluster installed, available in the Recommended and Security Patches section at: http://sunsolve.sun.com Solaris 8 (SPARC)
Solaris 9 (SPARC and x86)
|
6066252 |
Client certificates with AKI extension causes SEC_ERROR_UNKNOWN_ISSUER error. |
6092498 |
Web Server 6.1 fails to validate a client certificate with LDAP if the certificate contains Czech characters. |
6171311 |
Frequent errors encountered when running Web Server with JDK 1.5. |
6171784 |
Web Server performance issue with certain error logging configuration. |
4925875 |
For Korean HTML collection, Korean word search with asterix does not contain return any result. |
6171950 |
Precompiled JSPs do not work as expected with reload-interval parameter in sun-web.xml. Workaround: Use the property `use-precompiled' (set to true under JSP-config in sun-web.xml) to specify that the JSPs are precompiled and should never need to be compiled at runtime. A sample sun-web.xml is as follows: <sun-web-app> <session-config> <session-manager> </session-config> <jsp-config> <property name="use-precompiled" value="true" > </jsp-config> </sun-web-app> |
5048940 |
Superuser Access Control page in Administration GUI not accessible after upgrade from SP1. |
6177544 |
libpassthrough.so not present after RPM installation of plug-in. |
6176231 |
Sun Java System Web Server 6.1 SP4 — Using the Delete certificate Administration GUI (bin/https/admin/security) core dumps with NSS 3.9.3 beta. |
6173365 |
Multiple package installers for same build of Web Server of Solaris SPARC/x86. |
5039633 |
Update NSS to 3.9 series. |
5063134 |
Java Enterprise System symbolic link not used for J2SE location. |
6067407 |
Problems using ACL_LDAPSessionFree(). |
6173293 |
Web Server always sets content type to text/html when Servlet filter is set. |
6176264 |
Web Server 6.1 SP4 Solaris x86 unable to start the SSL instance through the Administration GUI. |
6180677 |
Web Server SP4 for JES3 is unable to upgrade on top of Web Server SP2 for JES2. |
6066139 |
Tests fail while running Web Server with JDK1.5_beta2 release. |
6088595 |
Administration console throws exception with JDK 1.5.0_beta2 while creating and editing classes. |
4904913 |
I18N search: `?' wildcard search in Japanese causes wrong match. |
The following table lists the issues resolved in Sun Java System Web Server 6.1 SP3.
Table 8 Issues Resolved in Sun Java System Web Server 6.1 SP3
Problem ID |
Description |
---|---|
4798461 |
GUI does not correctly reflect when `Transmit File' is turned off. |
4904896 |
I18N search: sort encoding list of Default Encoding on search Administration GUI. |
4905412 |
GUI doesn't permit to manage users in the keyfile database. |
4991338 |
Web Server Administration console does not show all the tabs (in Mozilla browser). |
5001819 |
Web Server 6.1: Nova Search Engine sometimes misses to pick up document. |
5014693 |
Java filters, HTTP compression, and SHTML fail to interoperate. |
5021077 |
Encountering java.lang.NullPointerException if you click on OK button without selecting the Directory Server. |
5025617 |
Web Server's JNDI needs to map resource-env-ref's from sun-web.xml. |
5042676 |
Request flow problem with Client tag code=302. |
5056989 |
Enable prefixing of hostname in session ID. You can enable prefixing hostname in session ID (as in 6.0SPx) for the web-app by setting the value of the property prefixSessionIDWithHostname under manager-properties to yes, true, or on, in the web-app's sun-web.xml. In the following example, prefixing host name in session ID is enabled for the web-app by setting the parameter value to true. <session-config> <session-manager> <manager-properties> <property name="prefixSessionIDWithHostname" value="true"> </manager-properties> </session-manager> </session-config> |
5057749 |
Web Server 6.1 SP2: Plug-in defined in certmap.conf does not load. |
6041356 |
Memory leaks when AdminLanguage and/or DefaultLanguage is specified in magnus.conf. |
6057426 |
The load balancer plug-in (formerly Resonate plug-in), loadbal.so, does not work on SPARC Solaris. Note that the location of the loadbal.so plug-in is: server_root/plugins/loadbal.so |
5065017 |
Servlet session data problem. |
5048051 |
Create collection fails on Linux with RPM install. |
5029954 |
Stack size is ignored when ConnQueueSize/RqThrottle is 0. |
4898077 |
Inconsistent behavior between HttpServerAdmin and iWS console. |
5013100 |
Two ports (for example, 2500 and 02500) are added in server.xml as different ports. |
5046634 |
2–byte character in HTTP header and plug-in programs. You can enable response header encoding at the web-app level by setting the value of the configuration parameter use-responseCT-for-headers to yes, true, or on, in the web-app's sun-web.xml. In the following example, response header encoding is enabled for the web-app setting the parameter value to true. A sample sun-web.xml is as follows: <sun-web-app> <parameter-encoding form-hint-field="j_encoding"> <property name="use-responseCT-for-headers" value="true" > <session-config> <session-manager> </session-config> <jsp-config> </sun-web-app> |
The following table lists the issues resolved in Sun Java System Web Server 6.1 SP2.
Table 9 Issues Resolved in Sun Java System Web Server 6.1 SP2
Problem ID |
Description |
---|---|
4536102 |
ADM:i18n: SNMP community name doesn't show up on Solaris Netscape. |
4536194 |
CGI subsystem makes blocking calls from NSPR user threads. |
4536739 |
Administration ACL and Superuser AC: Allow only `from host' does not work. |
4615933 |
CORE SHTML: can't set Content-encoding for .shtml files. |
4629796 |
French Thread pool name displaying garbage on JA-NT (Internet Explorer and Netscape). |
4651056 |
Web Server returns 404 for files starting with `..'. |
4651206 |
After adding new mime type file, there is no way of verifying addition from the GUI. |
4651207 |
Document preference Web page should provide a file to use for error responses. |
4652009 |
Customized access log file is not reflected in the GUI in the View Access Log tab. |
4657465 |
Need to disable cookie-encoding. By default, the Sun Java System Web Server URL encodes the cookies before sending them to the client. If you do not want the cookies to be encoded, add the following line to sun-web.xml: <property name="encodeCookies" value="false"> For the above example, add the line directly under the sun-web-app tag; do not embed them in any other tag. |
4664945 |
Internal Error from URL forwarding form. |
4666409 |
Clearing the ErrorResponse CGI files name. |
4676934 |
Distributed -Administration: Overrides default ACI in Web Server 6.0 SP2. |
4676946 |
No validation of virtual server settings form. |
4676950 |
Internal error on removing http:// from URL forwarding form. |
4682434 |
CGI that has scripts to grab environment variables fails to execute. |
4682894 |
Cluster management - Selection of source server deselects target servers. |
4684775 |
Asynchronous DNS is disabled by default. |
4707989 |
Web-app/JSP: load-on-startup not working on JSP files. |
4704385 |
Cluster: Null message in modify cluster when `OK' is clicked soon after reset. |
4705181 |
User and group is not validating for the users and accepting blank spaces in CGI. |
4705204 |
Newly added ACL files are not getting deleted after selecting delete. |
4706063 |
chroot and directory are not validating correctly. |
4711353 |
Administration: Global|SNMP Master Trap Warning displays Form Element Missing:manager?. |
4718914 |
Turn the security ON for any instance server without installing a certificate. |
4724503 |
After enabling IPv6 on GUI Edit listen socket, server will not start. |
4727597 |
Administration GUI gets cluttered when a new server is added with a duplicate port. |
4721021 |
Unable to access absolute URI on SSL enabled server. |
4727444 |
Access Log reports incorrect data. |
4732877 |
Urlhosts field does not accept more than one hostname. |
4745314 |
$id variable in VSCLASS docroot is not working on Windows. |
4749239 |
ACLI: Incorrect processing of ACL. |
4753601 |
MaxRqHeader directive in magnus.conf is not working as desired. |
4754934 |
Vignette NSAPI plug-in on Web Server 6.0 not functioning correctly when HTTP1.1 is used. |
4761188 |
LDAP: Improve LDAP dynamic group performance for ACL's. For performance reason, a new LDAP configuration parameter, dyngroups fast is introduced for SP2. With this parameter, Web Server will make assertion about group membership bypassing nested individuals among dynamic groups. For example, assuming that user `alpha' belongs to group `a', group `a' is a member of group `b' by group `b' memberURL definition (dynamic group), and your ACL only grants group `b' access. In such case, Web Server will deny access from `alpha' because `alpha' is not regarded as member of group `b'. If you want to support a nested group, do not define this new config for LDAP authentication service (you won't get performance gain consequently.) A sample configuration directory is as follows: ldapregular ldap://localhost:389/o=TestCentral ldapregular: dyngroups fast |
4763653 |
Validation required for the form elements in document preferences page. |
4764307 |
Magnus.conf: Performance settings: accepting negative numbers. |
4765709 |
Administration: Configure Directory Service not validating binddn/password. |
4770294 |
Web Server 6.1 on Windows should add CR character to the end of line in access log. |
4786612 |
Web Server treats `:' as a separator between hostname/IP and port in several places. This code needs to be updated to recognize when the `:' is actually part of an IPv6 address. |
4787310 |
Eviction fails in NSFC when SmallFileSpace is set to low value. |
4788075 |
Setting the PATH variable in magnus.conf for Web Server 6.0 SP5 does not work. |
4800173 |
Performance issue with large ACL file in conjunction with many virtual servers. |
4808402 |
Native authenticator support. |
4814097 |
Unable to select `none' as program item under program groups in GUI. |
4822720 |
Keep-alive subsystem should be dynamically tuned. The keep-alive subsystem requires tuning for optimal performance. In Web Server 6.0, this subsystem was tuned for heavy load and performs poorly when there are only a handful of concurrent keep-alive connections. The keep-alive subsystem was modified for Web Server 6.1 SP2 so it performs some dynamic tuning to accommodate the actual load. |
4849907 |
shtml is parsed when execute permission is not set and configured. |
4855807 |
AIX: Web Server hangs after restarted by watchdog. |
4858152 |
Access log entries in server.xml of the migrated instance points to invalid path. |
4869527 |
SNMP: Test fails for RH Linux 6.2/7.2/Adv Server 2.1, and Sun Linux 5. |
4862498 |
New directory Service Screen not connected to interface. |
4870613 |
Back button not working for frames in Netscape 7. |
4873766 |
The upload-file SAF does not work correctly with chunked requests. |
4882838 |
Unable to specify protocol for URL in generated redirects. The server generates a self-referencing URL whenever it sends a redirect to a client. As of Web Server 6.1 SP1, the servername attribute of the LS element in server.xml can be used to configure the scheme used in server-generated self-referencing URLs. For example, if an SSL offloader sits between the Internet and the Web Server instance, decrypting SSL-encrypted traffic for http://www.sun.com and relaying it to the Web Server on port 8080, a LS element such as the following could appear in server.xml: <LS remap="ls1" port="8080" security="disabled"...servername="https://www.sun.com"> The `https://' prefix in the servername value instructs the server to use the HTTPS scheme in self-referencing URLs even though the LS is not configured to handle SSL traffic. |
4889081 |
Internal log rotation creates empty logs. |
4894033 |
Distributed-administration: Functioning of Administration ACL `Allow only from host/ip' is not as per document. |
4896881 |
While untaring the Web Server bits, the ownership and group information is not correct. |
4897074 |
On Linux only: When you create a collection, PDF files will not be indexed and added to the collection. |
4899105 |
The highlighting of the connection value in edit virtual server is not correct. |
4905175 |
WebDAV ACL settings are inherited into new Virtual Servers. |
4909378 |
Help Button for edit WebDAVd is not pointing to the correct help page. |
4903449 |
Performance affected with multi-process mode and one thread. |
4905681 |
The AsyncDNS setting is ignored in Sun Java System Web Server 6.1 SP1. The Web Server never performs asynchronous DNS lookups. Note that even when the magnus.conf has AsyncDNS on, Asynchronous DNS is still turned off. |
4908631 |
An error message status is returned when user tries to stop the server when it is not running. |
4907288 |
Cluster Management file transfer not working on Windows. |
4909678 |
Web Server 6.1 Digest authentication is not working for flat files. |
4910266 |
Web Server 6.1: Creating Digest file users via GUI duplicates users in exponential order. |
4904088 |
Migration final page needs to HTML encode the `<' and `>' characters. |
4908986 |
JDBC: Servlet code UploadServlet mishandles SQL exceptions. |
4904896 |
I18N search: sort encoding list of Default Encoding on search Administration GUI. |
4908010 |
Unable to remove search collection for a newly created virtual server. |
4908401 |
I18N: Un-localized timestamp for each search—returned documents. |
4910222 |
Error on Windows when trying to create a collection with a document root that has back slashes. Workaround: This behavior occurs when you specify a document root that has back slashes or mixed slashes. Use forward slashes. |
4911548 |
Server returns ConfigException while creating the duplicate search collection. |
4911656 |
I18N: Can not go to `sort by date' link while searching multibyte characters. |
4913909 |
i18n: error adding file with Korean filename - skipping since no read permission. |
4913228 |
Missing quote in oracle script for jdbcRealm sample application. |
4910869 |
NSFC enhancement needed. Add the ReplaceFiles nsfc.conf directive. When ReplaceFiles=true (default), the existing file cache behavior is preserved. ReplaceFiles=false indicates that once a file is cached, its file cache entry should never be discarded to make room for another file; this is useful in benchmark scenarios because it allows us to eliminate contention on the hit list lock. |
4910272 |
Server should not accept mixed slashes for the doc root while adding a new server. |
4912254 |
Web Server installation failed due to `set -o noclobber' in .env. |
4911070 |
Web Server 6.1: Add listen socket protocol family field is missing for IPv6 address. |
4911630 |
Many of the fields in the magnus editor does not have validations as they are accepting negative integer values. |
4911550 |
Getting ServletException while trying to access the server with additional doc. |
4911633 |
Change Password for the user is not working. |
4913566 |
The URL Forwarding Editing Page is not consistent. |
4919473 |
Updating Security Realm properties from Administration GUI not reflected in server.xml. |
4913289 |
Help on `Edit Virtual Class' doesn't give complete criteria for VS class deletion. |
4916331 |
Keep-alive connections can hang under light load. |
4925475 |
The server.xml createconsole attribute is ignored. |
4925938 |
Getting Null Pointer exception if user mistakenly edits the VS Administration URL. |
4929848 |
Performance: Web Server polls kstat once per second. |
4926414 |
I18N-korean: Re-indexing collection hangs when missing one or more existing docs. |
4935797 |
certmap.conf file location mis-represented. |
4930327 |
Destination headers are not URL decoded in MOVE/COPY requests. |
4933483 |
SIGCHLD signals are reported on startup. |
4935582 |
TCP_NODELAY need not be set for AF_NCA. |
4930642 |
Source returned when the file's mime.types entry does not end with a carriage return. |
4930329 |
Default values of maxpropdepth is poorly chosen. |
4932995 |
The leading `/' is being removed when deleting web application through Administration GUI. |
4935420 |
Resource picker for restrict access fails for migrated instance of 6.1. |
4944850 |
Address directive not properly migrated when migrating from Web Server 4.1 to 6.1. |
4946829 |
Administration: Creating a new virtual server after migration causes $user: unable to find value. |
4941027 |
Cross site scripting in Web Server administration interface. |
4948397 |
Web Server 6.1 SP1 SNMP is not working. |
4946187 |
Distributed-Administration: `After enabling distributed administration, if an ACL is set to allow authenticated users only, the server still allows access to other users in the Administration group. |
4947005 |
Add server instance is not working on Solaris x86. |
4940040 |
Administrator's Configuration File Reference defines nonexistent TYPE element. |
4942750 |
Search example is incorrect. |
4943631 |
Wrong documentation on Thread pool config file. |
4941741 |
Web Server 6.1 SP1 server on Solaris 8 SPARC fails to start due to libCld.so. |
4945994 |
fc_net_write should result in a single system call. |
4940418 |
Third-party profiler support for bytecode instrumentation. |
4943329 |
IWSSessionManager doesn't work as expected with Web Server 6.1. |
4947065 |
The search web-app shows only a maximum of 11 collections. |
4947624 |
Ineffective alert message displayed while re-indexing on Windows. |
4950552 |
Wrong number of results for particular output results (11, 21, 31...). |
4954789 |
Web Server deployment fails with ClassCastException. |
4956415 |
Web Server 6.1 Search: Requesting an ability to display the meta tag description. |
4950644 |
Ineffective alert message displayed while creating a duplicate collection on Linux. |
4951860 |
httpagt depends on NETSITE_ROOT variable. |
4957158 |
fc_open fails when running specweb99 on x86 build. |
4952492 |
MOVE method should `rename' files when possible. |
4958571 |
PR_NetAddrToString performance is less than expected. |
4951264 |
Web Server crashes during Java-triggered reconfiguration and server shutdown. |
4958755 |
ServletContext.getContext(String) does not return other contexts when called from root context. It returns the root context. |
4950653 |
`Null' is displayed for QoS vsclass values. |
4951982 |
Invalid error message is displayed while configuring LDAP with wrong credentials. |
4953147 |
Cron-based log rotation fails when Administration user is root, and instance is non-root. Workaround: Change the user to be same as Administration server user in the scheduler.conf file. |
4961864 |
Web Server hangs when using rotate-callback. |
4962059 |
Administration password stored as plain text in file setup.inf. |
4969637 |
Minor coding error in send-error SAF. |
4961999 |
After adding a virtual server, the top frame does not show the virtual server in the drop down box. |
4962624 |
Administration: No Validation for protocol value in Edit Listen socket. |
4963483 |
The GUI gets cluttered if one tries to create an ACL file path with forward slash. |
4968422 |
Showing up invalid ACL file on the browser in the WebDAV screen. |
4966497 |
Perf Dump data for Average Queueing Delay is not correct. |
4970955 |
Cross-site security issue with Apache sample (\plugins\java\samples\webapps\simple). |
4972573 |
Incorrect behavior in web-apps-sample sample application in Web Server 6.1 SP1. |
4972587 |
Incorrect instructions in index.html of I18N sample application. |
4976454 |
Samples shipped with Web Server 6.1. |
4970273 |
FastCGI beta libraries are in RTM Web Server packages. |
4976953 |
AIX 6.0 SP6: forbidden error to a GET for a file with correct group permissions. |
4976490 |
Log messages are truncated. |
4975675 |
Dynamic reconfiguration fails when server is under load. |
4976910 |
NSFC_GetEntryPrivateData() calls NSFC_ExitCacheMonitor() when no entry exists. |
4973079 |
The GUI retains dismissed invalid port entries and populates it when servername field validation fails. |
4975788 |
classpath edited using Internet Explorer is broken; server JVM can't start. |
4975798 |
Cannot add path to classpath suffix using web-admin. |
4975782 |
Cannot delete external JNDI reference. |
4970188 |
RPM can't locate system umask. |
4971298 |
pkgchk -n fails for Web Server package in JES. |
4986761 |
Web Server 6.0 migration fails. |
4989231 |
Server fails to start up on Linux platform. Wrong JDK path during build. |
4988104 |
Edit virtual servers page should update the connections value correctly. |
4986700 |
Last-modified and Etag are suppressed when Servlet filters are used. |
4991888 |
Storing the wrong file name for key file configuration. |
4992739 |
Cannot start Web Server instance, after modifying its classpath suffix. |
4995447 |
Web Server 6.1 SP2 RH Linux unable to access Administration GUI; throws error message after login. |
4995489 |
Solaris x86: distributed Administration cannot be enabled. |
4991775 |
Validation of cookie name in cookie example Servlet. |
5002905 |
Super User Access Control cannot be set even when Distributed Administration is not enabled. |
5012107 |
POST request body consumed twice when using bad plug-in. |
4962659 |
Search criteria is getting truncated to 100 characters. |
4967580 |
Search displays wrong links for the SSL enabled instance. |
4970181 |
Stellent filters need to be added to the Linux and Solaris x86 builds. |
4975327 |
indexMetatags of the nova search should be set automatically. |
4975367 |
Indexing for the meta tag should be case-insensitive. |
4997149 |
Remove documents with *.* pattern is not removing all the files when the excludeExtensions property is set. |
4997178 |
Server returns null pointer exception while indexing .sxg file when excludeExtensions is set. |
4997697 |
Page numbers are not displayed properly on the search results page. |
4844616 |
Misconfiguration of bswitch causes crash. |
4854698 |
Plug-in crashes with malformed request. |
4866965 |
ACLI: Failed authentication will be logged twice in the server errors log file. |
4880864 |
ACL: Web Server returns “404 Not found” errors when ACLs deny access. |
4915326 |
WEBC: granting signedBy permissions to jar files does not work. |
4918754 |
Web Server 6.1 cannot process HTTP URL GET parameter that is in 8-bit charset. |
4924921 |
Cannot set 800 MB of JVM maximum heap size on Windows 2000 using JDK 1.3.1. |
4926336 |
Using % in the value of JSP parameter corrupts the query string. |
4927770 |
Server aborts with SIGABRT from within libjvm. |
4928358 |
JSP errors are wrongly reported as “Not Found” errors. |
4930374 |
extra-class-path attribute in class-loader element in sun-web.xml doesn't work as expected. |
4932893 |
Dynamic reloading doesn't work for web application descriptor files, for example web.xml. |
4939370 |
Web container thread names are not unique. |
4934083 |
LDAP: Crash during LDAP authentication. |
4934562 |
WEBC: getRemoteUser() does not work for standalone JSPs. |
4935669 |
WEBC: request may not always contain client certificate data. |
4935570 |
Certificate data not always present even when available. |
4932547 |
Tomcat AuthenticatorBase returns 500 instead of 403. |
4946762 |
Out–of-box default realm should be native. |
4948123 |
Web Server 6.1 incorrectly reports client key size in certain situations. |
4949842 |
WEBC: isUserInRole() will not match when using core authentication. |
4957829 |
LDAP: user can enter wildcard `*' for UID in basic authentication. |
4960013 |
Cannot have more than one LDAP realm. |
4968857 |
htconvert not converting .nsconfig wildcard patterns correctly. |
4968882 |
htconvert does not work on 6.1 style server.xml. |
4960873 |
NPE encountered when a session is expired simultaneously by two (2) threads. |
4973927 |
EPIPE signal not caught as an IOException from OutputStream.write(). |
4976277 |
Using JDK 1.4.1 provided JNDI connection pool for LDAP pooling. |
4983707 |
Changing the log level to Security causes NullPointerException upon start. |
4981028 |
Distributable semantics in web.xml is not honoured by the web container. |
4993468 |
getResourcePaths returns paths that contain `//'. |
4996219 |
webservd leaks memory on RedHat Linux Advance Server 3.0. |
4997593 |
Poor integration between NSAPI srvhdrs and HttpServletResponse headers. |
4997756 |
LOCK-UNLOCK is not working properly and GUI does not show up lock information properly. |
4997838 |
Web Server does not start on RHL AS 3.0 with Security turned On. |
5003531 |
500 error when accessing web-app with transport-guarantee=CONFIDENTIAL from a non-SSL port. |
5004542 |
ASN.1 parsing bugs/brute forcer program can cause Web Server crash. |
5016494 |
NSS: Crash in DER_UTCTimeToTime with corrupt certificate. |
The following table lists the issues resolved in Sun Java System Web Server 6.1 SP1.
Table 10 Issues Resolved in Sun Java System Web Server 6.1 SP1
Problem ID |
Description |
---|---|
5060906 |
Authorization dialog pops up for an unprotected directory without index file. Additional information: As for 6.1 SP1, if a directory does not have an index file such as index.html, index.jsp, or home.html, then while turning on ACL authentication anyone with read and write permission are denied the list access even though this directory is unprotected. Workaround: To revert back to the previous behavior of 6.1, change the default ACL so that anonymous users are allowed list privileges. Make the changes as follows: allow (read, execute, info, list) user = "anyone" |
4642650 |
Option needed to disable appending of absolute URL in Servlet/JSP container. Fix details: New property added to sun-web.xml: relativeRedirectAllowed Default value: false Description: If true, allows the web application to send a relative URL to the client using the HttpServletResponse.sendRedirect() API (that is, it suppresses the container from translating a relative URL to a fully qualified URL). |
4793938 |
Enabling Remote File Manipulation from the Server Manager GUI allows any remote user to obtain a listing of any directory in the server's URI space. |
4904201 |
javahome path wrongly set when adding a server with no bundled JDK. |
4911580 |
Adding a new server instance may fail with a Server Error message. |
4928794 |
Server restarts when trying to create null resource by PUT. |
4929913 |
Search engine does not extract and index FTS information from PDF files. Fix details: This fix applies to all supported platforms except Linux. The Author, Subject, and Keywords meta tags are always indexed. Functionality has been added that now allows arbitrary meta tags to be indexed, including those produced when converting the FTS_* attributes from PDF files. Manual configuration of a new setting in server.xml is required, as described below.
Note – See issue 4956415 for details about displaying custom meta tag information in search results. |
4933935 |
On Solaris 9: reconfig does not work in package-based installs. |
4945089 |
ASN.1 parsing issue in SSL. A problem has been identified in the implementation of the SSL protocols used by the Web Server that may be exploited as a Denial of Service attack. Sun Java System Web Server 6.1 SP1 fixes this problem. If you use the Web Server to host sites that utilize SSL version 3 or TLS, you are strongly encouraged to install this service pack. |
4950388 |
The reconfig command does not work on Windows XP. |
4964069 |
The commit.exe utility crashes on Windows platforms. |
The following table lists the issues resolved in Sun Java System Web Server 6.1.
Table 11 Issues Resolved in Sun Java System Web Server 6.1
Problem ID |
Description |
---|---|
4869693 |
On Windows, the Web Server installation overwrites SunONE Directory Server .dll files due to cohabitation issues with Directory Server 5.x. |
4540254 |
Rotating log files shouldn't require server restart on UNIX. |
4727146 |
Logs filling with `connection reset' entries. |
4786735 |
Installer doesn't set proper JDK CLASSPATH/LIBPATH when the external JDK is used. |
4792721 |
Incorrect error messages when LDAP server is offline. |
4799452 |
sun.tools.javac.Main has been deprecated, exception stops valid JSPs. |
4801874 |
ACL_LDAPSessionAllocate always returns LAS_EVAL_FAIL. |
4811418 |
Digest authentication crashes. |
4819405 |
Memory growth/leak of slapd process with digestauth plug-in. |
4820513 |
digestauth plug-in code is not thread safe. |
4839875 |
When using cachefs/nfs as ClassCache and document-root, Sun Java System Web Server doesn’t always pick up the new JSP. |
4842190 |
Web Server crashes when receiving Accept-Language header larger than 15 languages. |
4842574 |
Server crash with malformed request. |
4842601 |
Accept-Language header security issue. |
4846832 |
CRL corrupts database. |
4848896 |
digestauth plug-in crashes for a particular type of request. |
4849914 |
Memory leak in digestauth plug-in for a particular type of request. |
4855546 |
Log analyzer vulnerability. |
4858026 |
JSP: crash in getParameter when posting large amounts of data. |
4867887 |
Basic authentication fails for users with user IDs that have spaces. |
4903319 |
When you create a collection, not all documents will be indexed and added to the collection. |
This section lists the more important known issues and limitations at the time of the Sun Java System Web Server 6.1 SP6 release. The issues are listed as follows:
The following table lists General known issues.
Table 12 General Known Issues
Problem ID |
Description |
---|---|
6198559 |
JES3: Patch upgrade of Web Server on Linux displays false `uninstall' notification. |
4988370 6413819 |
Contents does not get updated under a particular situation on HP-UX 11.0 platforms. HP-UX operating system has two cache spaces called Page Cache and Buffer Cache for accessing files. Normally, when the application performs the mmap function, the file is mapped to Page Cache. However, currently the operating system has no responsibility to synchronize the data between the Page Cache and Buffer Cache, if the mmap is performed as PRIVATE option. Even if you copy the file, the operating system refreshes the cached data only in the Buffer Cache. Workaround: Use the vi editor to update the contents each time. |
6404983 |
Searching of Users and Groups through LDAP server using Administration Graphical User Interface fails. Workaround: For this feature to work, install Red Hat Linux AS 3.0 update 1 — uname -r: 2.4.21-9.ELsmp. |
The following table lists the known issues in Administration.
Table 13 Known Issues in Administration
Problem ID |
Description |
|
---|---|---|
6301761 |
ACL applet might fail to load with Mozilla 1.4 and Firefox 1.0.6. |
|
6021151 |
Problem using HttpServerAdmin to create a JNDI resource containing an LDAP domain name containing commas. Workaround: For HttpServerAdmin to escape the `,' in the property use `\\' as escape character (and use `\' in Windows platforms). In the property java.naming.provider.url=ldap://localhost:389/ou=loggingQueues,ou=tms,ou=services,ou=abc the `,' are escaped as shown here: -property java.naming.provider.url=ldap://localhost:389/ou=loggingQueues\\,ou=tms\\,ou=services\\,ou=abc |
|
5007892 |
Distributed Administration: ACL deletion does not clean up obj.conf. Workaround: Comment out NameTrans for https-admserv:
|
|
5035129 |
Unable to manage Directory Server user/group/ou using Web Server 6.1 SP2 Administration on RHLAS 3.0. |
|
4650456 |
View Access and View Error doesn’t work properly with multi-byte characters. |
|
4652585 |
When Distributed Administration is enabled, the local Administration user is disabled Workaround: Create a user with the default Administration user name within the distributed Administration group. Note that the newly created LDAP Administration user must have the same password as the Web Server Administration user. |
|
4725683 |
The log file date stamp does not take the local time zone into account and shows the incorrect date. Workaround: If the date in the log file filename extension should match the date of the log entries, configure the server to rotate the log files at 23:59. |
|
4761960 |
Web Server 6.0 SP4: Cannot enable distributed Administration when using SASL and anonymous bind. Workaround: Do not use anonymous bind to SSL enabled directory server. |
|
4841310 |
Can't get REMOTE_USER variable when authenticated by .htaccess. Workaround: If you enable .htaccess files, the server checks for .htaccess files before serving resources. The server looks for .htaccess files in the same directory as the resource and in that directory's parent directories, up to and including the document root. For example, if the Primary Document Directory is set to /sun/server/docs and a client requests /sun/server/docs/reports/index.html, the server will check for .htaccess files at /sun/server/docs/reports/.htaccess and /sun/server/docs/.htaccess. Note that the server's Additional Document Directories and CGI Directory functionality allows an administrator to define alternate document roots. The existence of alternate document roots affects .htaccess file processing. For example, consider a server with the Primary Document Directory set to /sun/server/docs and a CGI program at /sun/server/docs/cgi-bin/program.cgi. If you enable CGI as a File Type, the server will evaluate the contents of both /sun/server/docs/.htaccess and /sun/server/docs/cgi-bin/.htaccess when a client issues a request for the CGI program. However, if you configure a CGI Directory at /sun/server/docs/cgi-bin, the server will inspect /sun/server/docs/cgi-bin/.htaccess but not /sun/server/docs/.htaccess. This occurs because specifying /sun/server/docs/cgi-bin as a CGI Directory marks it as an alternate document root. |
|
4865295 |
The End User Administration feature (under Distributed Administration in the Administration interface) is no longer supported. |
|
4882999 |
Inconsistent look and feel of the Administration GUI. |
|
4888696 |
The Add Server page in the Administration GUI disappears in Netscape 7.0 when insufficient information is entered. Workaround: Enter complete information on the Add Server page before clicking OK. If necessary, reload the page to restore the Add Server GUI, or click another page or another tab and then navigate back to the Add Server page. This problem occurs only in Netscape 7.0. |
|
4910309 |
The word `null' is incorrectly displayed on an alert message. This word displays when editing directory services in the Pick Directory for Virtual Server page in the Virtual Server Manager. |
|
4905808 |
Super users cannot access the Administration interface after enabling distributed administration. Workaround: After enabling distributed administration, create a user in LDAP with the same administration user name and password as that of super user. |
|
4908694 |
Default link not working for Logging Settings. The default link on the Logging Settings for Virtual Server page does not set the default path, but rather acts as a reset button. |
|
4910197 |
When editing a JDBC resource, the properties page retains values after they have been deleted. |
|
4911552 |
.shtml files are parsed even if you configure them to be un-parsed. |
|
No ID |
The sun-web.xml file bundled with the Web Server points to the wrong DTD location. Correction: The correct location is http://www.sun.com/software/dtd/webserver/sun-web-app_2_3-1.dtd. |
|
6284698 |
Web Server not operational when installed as non root user. Workaround: Start the Web Server instance from the command line instead of using the Web Administration console. |
|
6078104 |
JSP applications are not accessible from WS6.1 when passthrough plug-in is configured. Workaround: Change the line from the service directive of passthrough: From: Service type="magnus-internal/passthrough" fn="service-passthrough"servers="http://server:port" To: Service fn="service-passthrough" servers="http://server:port" |
|
4991278 |
No Administration GUI feature available to delete JSP ClassCache files. |
|
6316265 |
Administration GUI says Click Applyfor the changes to take affect but there is no Apply button for Administration Server. |
The following table lists the known issue in Core.
Table 14 Known Issues in Core
Problem ID |
Description |
---|---|
6363944 |
webservd child process orphaned when Solaris crypto softtoken (libpkcs11.so) is used in Web Server 6.1SP5 64-bit. Workaround: This problem occurs only when the server is explicitly configured to use the Solaris softtoken. If you have to use fork(), Runtime.exec(), or <!--#exec cmd="..."-->, do not configure the server to use the Solaris softtoken. |
6313832 |
Existing 32-bit plug-ins cannot be used with the 64-bit release. Attempting to load a 32-bit plug-in using the 64-bit Sun Java System Web Server release will result in an error message such as the following: Sun ONE Web Server 6.1SP5 (64-Bit) B10/28/2005 09:00 failure: CORE3170: Configuration initialization failed: Error running init function load-modules: dlopen of plugin.so failed (ld.so.1: webservd: fatal: plugin.so: wrong ELF class: ELFCLASS32) Workaround: Use the 32-bit release of Sun Java System Web Server or contact the plug-in vendor to obtain a 64-bit release of the affected plug-in. |
4939491 |
HP-UX: Executing the ./stop script gives an error message and kills the process group. |
The following table lists the known issues in Documentation and Online Help.
For a list of known issues in the localized versions of 6.1 documentation, see Issues Resolved in 6.1 SP6 Documentation.
Problem ID |
Description |
---|---|
6367812 |
Online help does not document steps to restart the schedulerd. Additional Information: To start schedulerd from a command line, set an environment variable ADMSERV_ROOT by following these steps:
|
4957123 |
Administrator's Guide does not document the Search Query operators. |
4964908 |
No documentation available regarding feature upgrades. |
5016571 |
Online Help page under Generic Thread Pools gives invalid information. |
5031366 |
Invalid links in the online version of Administrator's Guide. |
4968568 |
Administrator's Configuration File Reference guide's description on the ConnQueueSize directive is not clear. |
5043491 |
Incorrect online help content. |
5053339 |
Online Help — Directory Indexing information is missing in Administrator's Guide and online help. |
4928287 |
All documents do not inform the user the nonexistence of <instance>/lib directory. Additional Information:This directory is not created by the installer. Users have to create the directory if it does not exist. |
6308091 |
Administrator's Configuration File Reference — Wildcard pattern with tilde in ppath does not work as documented. Correction: Configure either of the followings: Config 1 <Object ppath="*~*.gif*">AddLog fn=flex-log name="access"</Object> Config 2 <Object ppath="*~*(.gif|.gif/)">AddLog fn=flex-log name="access" </Object> |
6237303 |
Release Notes for SUN ONE Web Server 6.1 does not list all patches that are required for Solaris SPARC. Additional Information: 109326-09 is a required patch for Web Server 6.1 on Solaris 8. |
The following table lists the known issues in Installation.
Table 16 Known Issues in Installation
Problem ID |
Description |
---|---|
5020317 |
JDK only upgrade results in disabling search (user receives an exception, and search page will not be accessible from GUI). Workaround: This exception does not happen if Web Server 6.1 SP2 core is also installed along with, or prior to installing JDK alone. In addition, if Web Server 6.1 SP2 core is installed on top of a JDK-upgraded Web Server 6.1 SP1, the exception does not show up. |
4855263 |
Sun Java System Web Server will not start if it is installed into a directory with spaces in the name, for instance, Program Files. You will not receive an error message about this during installation, but following installation the server will not start. Workaround: Do no install the Web Server into a directory with spaces in the name. |
4869238 |
On Windows, the Sun Java System Web Server installer will not take a long name as server_root. Workaround: Specify a path name for the Sun Java System Web Server installation directory that is no longer than 128 characters (even though the dialog allows you to enter up to 256 characters). |
4901205 |
On Solaris, ctrl+b does not work on screens that follow the Fully Qualified Domain Name screen in the installer (starting with the User and Group Name screen). Workaround: If you need to return to previous screens during the installation, quit the installer and start again. |
4937915 |
On AIX: ctrl-c makes the terminal screen hang during installation. This occurs on the computer name screen (the screen used to specify the name of the computer on which the Web Server will be installed). |
4960048 |
Some SNMP related files are overwritten when upgrading to Sun Java System Web Server 6.1 SP1. Workaround: Back up the following files before the upgrade: $server-root/plugins/snmp/ magt/CONFIG $server-root/plugins/snmp/ sagt/CONFIG |
The following table lists the known issues in Migration.
Table 17 Known Issues in Migration
Problem ID |
Description |
||||
---|---|---|---|---|---|
4790457 |
Can't change the document root of migrated server from 4.1. Workaround: Edit the migrated instance's obj.conf and server.xml manually. These files are located under <code><SERVER_ROOT>/<HTTPS-INSTANCE>/config directory. In obj.conf change the line:
to
In server.xml under the relevant VSCLASS change the line:
to
|
||||
6213097 |
ktsearch.jar is not getting migrated correctly on Sun Java Enterprise System 3 (JES3). Workaround: Manually edit the server.xml file of the migrated instance to point to the correct path. For Linux: /opt/sun/private/share/lib/ktsearch.jar For Solaris Sparc: /usr/share/lib/ktsearch.jar |
||||
5007081 |
Web-apps file status ignored during migration from 6.0 to 6.1 Web-apps status defined at the file level in the server.xml file is not getting migrated. If a user has switched off the status of the web-apps file to suppress them, upon migration these web-apps are exposed. Workaround: Edit the server.xml file of the migrated instance and turn off status for each web-app. |
||||
4988156 |
Installation of SP_2 patch on existing install (update) If you wish to upgrade the Sun Java System Web Server 6.1 that is installed as a part of Sun Java Enterprise System (JES), to the latest Service Pack, you will have to download and apply the relevant patches. For more details refer to the JES 3 Migration and Upgrade Guide. |
The following table lists the known issues in the sample applications. Note that none of these issues prevent the sample applications from functioning correctly.
Table 18 Known Issues in Samples
Problem ID |
Description |
---|---|
5014039 |
Simple JSPs throw exception due to distributable tag in web.xml Workaround:
|
No ID |
rmi-iiop sample is missing a step. In the Deploying the Sample Application section, after executing the command ant deploy (step 2), restart the Web Server instance. Note – ant is a Java-based build tool and must be downloaded from Apache at http://ant.apache.org Note: . Also see the information provided in <install_root>/plugins/java/samples/docs/ant.html. |
No ID |
jdbcrealm sample has the wrong Oracle driver name. In the `Compiling and Assembling the Sample Application' section, step 2b, change the following line from this: <PROPERTY name="dbdrivername" value="oracle.jdbc.pool.OracleDataSource"> To this: <PROPERTY name="dbdrivername" value="oracle.jdbc.driver.OracleDriver"> |
The following table lists the known issues in Search.
Table 19 Known Issues in Search
Problem ID |
Description |
---|---|
4977315 5038203 |
AIX-Search Engine of 6.1 should have the ability to change the sort order. Workaround: For changing default order add `+' as a first character of the sort string. Since `+' in URI is escaped use `%2B' to change the order. In this case change the URL to: http://host/search/index.jsp?si=1&ns;=10&c;=test&qt;=*&sb;=%2Bwriter. |
4684124 |
If the document root of an already indexed collection is changed, the document returned by the search throws a Document Not Found error. Workaround: Rebuild the entire collection. To do so:
|
4911725 |
Search doesn’t work when you search for a word using a different case pattern. Search results will not be displayed on the search page if you search using a word of mixed case (for example, typing jaVa instead of java or JAVA). |
4963236 |
On HP-UX: PDF files are not converted to HTML for inclusion in search collections. This occurs if the following patch is installed on the HP-UX 11i system: PHSS_28871 — ld/linker cumulative patch |
The following table lists the known issues in Security.
Table 20 Known Issues in Security
Problem ID |
Description |
---|---|
4671445 |
Sun Java System Web Server cannot connect to an LDAP server over SSL if LDAP client authentication is required. If Sun Java System Web Server contacts an LDAP server that requires client authentication (in this case, the Web Server is the client), the Web Server’s certificate cannot be sent and access will fail. |
4863599 |
Cannot use the same group name under different organizational units. If the same group name is used, and you try to restrict access with the group name, Sun Java System Web Server returns an error when clients try to access the site. Workaround: Use a different group name for each organizational unit. |
4963468 |
In some circumstances, the `list' right has no effect on directory listing. According to Chapter 9 of the Sun Java System Web Server 6.1 Administrator’s Guide, the `list' right is required to obtain directory listings from directories that do not contain an index file. However, in certain circumstances it is possible to obtain a directory listing, even if the applicable ACLs deny the list right. If you need to restrict directory indexing, it is recommended that you do so by disabling indexing, as discussed in Chapter 16 of the Sun Java System Web Server 6.1 Administrator’s Guide, instead of (or in addition to) denying the list right. |
6310956 6298215 |
When LDAP drops the connection because of inactivity (for example, timeout set on the LDAP), Web Server is unable to re-initialize the connection to LDAP. This only occurs when Web Server is installed as part of the JES3/JES4 install. The problem does not exists in standalone (file-based) installation. Workaround:
|
The following table lists the known issues in Tools.
Table 21 Known Issues in Tools
Problem ID |
Description |
---|---|
4905696 |
On Windows, deployment fails if the class file depth (along with the file name) exceeds 255 characters. |
4912181 |
On Linux, a null pointer exception is thrown when deploying an application using the wdeploy command-line utility. This happens at the end of deployment, and only if it succeeds. Workaround: The error occurs when wdeploy reads the stdout/stderr after executing reconfigure script following deployment. The reconfigure should go through, but you should check to see if the server did indeed reconfigure by looking in the errors log for the reconfigure message. If the message is not there, then run the reconfigure script manually. |
The following table lists the known issues in the Web Container.
Table 22 Known Issues in the Web Container
Problem ID |
Description |
---|---|
4903162 |
Issue on Windows related to the case of url-patterns. Per the Servlet specification, url-pattern elements in web.xml are treated in a case sensitive manner. This might lead to unexpected behavior for Windows users (for example, if a client makes a request for index.HTML, expecting this to match index.html). |
The following table lists the known issues in WebDAV.
Table 23 Known Issues in WebDAV
Problem ID |
Description |
---|---|
4892017 |
Unable to rename or move a resource if the parent directory is locked exclusively. This occurs when DAV clients send the incorrect If : header. For example, if you connect to the Web Server using Macromedia® Dreamweaver® or DAV Explorer, create a collection, and then lock the collection with depth infinity (which locks all of its resources as well), you will not be able to rename or move a resource. Adobe® GoLive® sends the correct If : header only if the lock’s owner href matches auth_user. In all other cases with GoLive, the wrong header will also be sent. |
4902651 |
Lock Management screen in the Virtual Server Manager does not display the lock information properly for hard links. Symbolic links (hard and soft) are not supported by the WebDAV implementation in Sun Java System Web Server. |
The following table lists the known issues in the localization.
Table 24 Known Issues in the Localization
Problem ID |
Description |
---|---|
4937055 |
The Administration Online Help of Web Server are not localized. The Administration online help has been localized only up to the 1st level. The initial help pages are localized but clicking the links on a page (for example, Removing a Server) displays help content in English language. |
6441984 |
The Administration Online Help is displayed in English even if the locale is set to zh-cn. For zh-cn locale, the Administration GUI Online Help is in English. If the browser locale is zh-cn, then the complete Administration GUI Online Help is displayed in English language. |
6315783 |
If the browser locale is French (fr), links to Online Help on the Search page leads to English documents though localized pages are available. Workaround: Modify the help URL by adding fr/ before the filename as follows: http://<host>:<port>/search/help/fr/basic-search.html. |
If you have problems with Sun Java System Web Server 6.1 SP6, contact Sun customer support using one of the following mechanisms:
Sun Software Support services online at http://www.sun.com/service/sunone/software.
The telephone dispatch number associated with your maintenance contract.
So that we can best assist you in resolving problems, please have the following information available when you contact support:
Description of the problem, including the situation where the problem occurs and its impact on your operation.
Machine type, operating system version, and product version, including any patches and other software that might be affecting the problem.
Detailed steps on the methods you have used to reproduce the problem.
Any error logs or core dumps.
Sun is interested in improving its documentation and welcomes your comments and suggestions. Send your comments to Sun using the `Send comments' link at http://docs.sun.com/.
Please include identifying information with your comments, such as the book’s part number and title.
Useful Sun Java Systems information can be found at the following locations:
Documentation for Sun Java System Web Server 6.1 and Service Packs
Sun Software Products and Service at http://www.sun.com/software
Sun Developer Information at http://developers.sun.com/
Sun Developer Support Services at http://developers.sun.com/services/index.jsp
Software Support Services at http://www.sun.com/service/support/software/
Sun Support and Training Services at http://www.sun.com/training
Sun Consulting and Professional Services at http://www.sun.com/service/sunjavasystem/sjsservicessuite.html