These release notes contain important information available at the time of the version 4.1 SP9 release of iPlanet Web Server, Enterprise Edition. New features and enhancements, installation notes, known problems, and other late-breaking issues are addressed here. Read this document before you begin using iPlanet Web Server, Enterprise Edition.
An electronic version of these release notes can be found at the iPlanet documentation web site: http://docs.iplanet.com/docs/manuals/
These release notes contain the following sections:
For additional details see the Fixed Problems section of these Release Notes.
iPlanet Web Server, Enterprise Edition version 4.1, includes enhancements described in the following sections:
For a complete list of the iPlanet Web Server version 4.1 fixed problems, see Fixed Problems.
iPlanet Web Server 4.1 supports custom JSP tags. This section explains how to create a custom tag library using a working example. The example includes the following directories and files under the document root directory:
/dtds/
web-jsptaglib_1_1.dtd
/jsps/
test-tags.jar
test-tags.jsp
To create the test-tags.jar file, you must create a work area in which you build the tag library and its associated handler classes. This work area contains the following directories and files:
workarea/taglibs/
./META-INF:
taglib.tld
./examples:
ExampleTagBase.class
ExampleTagBase.java
FooTag.class
FooTag.java
FooTagExtraInfo.class
FooTagExtraInfo.java
LogTag.class
LogTag.java
Both sets of example files are provided with iPlanet Web Server 4.1 in the following directory:
server_root/plugins/samples/servlets/taglibs
You first need to write a tag library definition (TLD) file outlining the custom tags and their associated handler classes. This TLD file is an XML 1.0 file.
The TLD file must reference an associated DTD file, which has to be named web-jsptaglib_1_1.dtd. This file is available at the iPlanet Web Server website for download. You must make it accessible via a URL in the TLD file (for example http://server:port/dtds/web-jsptaglib_1_1.dtd). An incorrect URL for the DTD file, or a corrupt DTD file will result in failure to open JSPs that contain custom tags.
The tag library must be named taglib.tld and must reside under the META-INF subdirectory in the taglib.jar file you will create in step 4.
Here is an example of a taglib.tld file:
<?xml version="1.0" encoding="ISO-8859-1" ?>
<!DOCTYPE taglib
PUBLIC "-//Sun Microsystems, Inc.//DTD JSP Tag Library 1.2//EN"
"http://server:port/dtds/web-jsptaglib_1_1.dtd">
<!-- a tag library descriptor -->
<taglib>
<!-- after this the default space is
"http://java.sun.com/j2ee/dtds/jsptaglibrary_1_2.dtd"
-->
<tlibversion>1.0</tlibversion>
<jspversion>1.1</jspversion>
<prefix>simple</prefix>
<urn></urn>
<info>
A simple tab library for the examples
</info>
<!-- A simple Tag -->
<!-- foo tag -->
<tag>
<name>foo</name>
<tagclass>examples.FooTag</tagclass>
<teiclass>examples.FooTagExtraInfo</teiclass>
<bodycontent>JSP</bodycontent>
<info>
Perform a server side action; uses 3 mandatory attributes
</info>
<attribute>
<name>att1</name>
<required>true</required>
</attribute>
<attribute>
<name>att2</name>
<required>true</required>
</attribute>
<attribute>
<name>att3</name>
<required>true</required>
</attribute>
</tag>
<!-- Another simple tag -->
<!-- log tag -->
<tag>
<name>log</name>
<tagclass>examples.LogTag</tagclass>
<bodycontent>TAGDEPENDENT</bodycontent>
<info>
Perform a server side action; Log the message.
</info>
<attribute>
<name>toBrowser</name>
<required>false</required>
</attribute>
</tag>
</taglib>
If you do not include the DOCTYPE in your taglib.tld file, the JSP compiler throws an exception:
Unable to open taglibrary /jsps/test-tags.jar : com.sun.xml.tree.TextNode
Here is the ExampleTagBase.java file:
package examples;
import javax.servlet.jsp.*;
import javax.servlet.jsp.tagext.*;
public abstract class ExampleTagBase implements Tag {
public void setParent(Tag parent) {
this.parent = parent;
}
public void setBodyContent(BodyContent bodyOut) {
this.bodyOut = bodyOut;
}
public void setPageContext(PageContext pageContext) {
this.pageContext = pageContext;
}
public Tag getParent() {
return this.parent;
}
public int doStartTag() throws JspException {
return SKIP_BODY;
}
public int doEndTag() throws JspException {
return EVAL_PAGE;
}
// Default implementations for BodyTag methods as well
// just in case a tag decides to implement BodyTag.
public void doInitBody() throws JspException {
}
public int doAfterBody() throws JspException {
return SKIP_BODY;
}
public void release() {
bodyOut = null;
pageContext = null;
parent = null;
}
protected BodyContent bodyOut;
protected PageContext pageContext;
protected Tag parent;
}
package examples;
import javax.servlet.jsp.*;
import javax.servlet.jsp.tagext.*;
import java.util.Hashtable;
import java.io.Writer;
import java.io.IOException;
/**
* Example1: the simplest tag
* Collect attributes and call into some actions
*
* <foo att1="..." att2="...." att3="...." />
*/
public class FooTag
extends ExampleTagBase
implements BodyTag
{
private String atts[] = new String[3];
int i = 0;
private final void setAtt(int index, String value) {
atts[index] = value;
}
public void setAtt1(String value) {
setAtt(0, value);
}
public void setAtt2(String value) {
setAtt(1, value);
}
public void setAtt3(String value) {
setAtt(2, value);
}
/**
* Process start tag
*
* @return EVAL_BODY_INCLUDE
*/
public int doStartTag() {
return EVAL_BODY_TAG;
}
public void doInitBody() throws JspException {
pageContext.setAttribute("member", atts[i]);
i++;
}
public int doAfterBody() throws JspException {
try {
if (i == 3) {
bodyOut.writeOut(bodyOut.getEnclosingWriter());
return SKIP_BODY;
} else
pageContext.setAttribute("member", atts[i]);
i++;
return EVAL_BODY_TAG;
} catch (IOException ex) {
throw new JspException(ex.toString());
}
}
}
Here is the FooTagExtraInfo.java file:
package examples;
import javax.servlet.jsp.tagext.*;
public class FooTagExtraInfo extends TagExtraInfo {
public VariableInfo[] getVariableInfo(TagData data) {
return new VariableInfo[]
{
new VariableInfo("member",
"String",
true,
VariableInfo.NESTED)
};
}
}
package examples;
import javax.servlet.jsp.*;
import javax.servlet.jsp.tagext.*;
import java.io.IOException;
/**
* Log the contents of the body. Could be used to handle errors etc.
*/
public class LogTag
extends ExampleTagBase
implements BodyTag
{
boolean toBrowser = false;
public void setToBrowser(String value) {
if (value == null)
toBrowser = false;
else if (value.equalsIgnoreCase("true"))
toBrowser = true;
else
toBrowser = false;
}
public int doStartTag() {
return EVAL_BODY_TAG;
}
public int doAfterBody() throws JspException {
try {
String s = bodyOut.getString();
System.err.println(s);
if (toBrowser)
bodyOut.writeOut(bodyOut.getEnclosingWriter());
return SKIP_BODY;
} catch (IOException ex) {
throw new JspException(ex.toString());
}
}
}
Change to your work directory for the java classes (for example workarea/taglibs/examples) and compile the classes, setting the appropriate classpaths. The following command must be all on one line:
/usr/java1.2/bin/javac -classpath
java_home/jre/lib/rt.jar:server_root/bin/https/jar/servlets.jar:server_root/bin/http
s/jar/jspengine.jar *.java
From your work directory (for example workarea/taglibs), create a JAR file that contains your taglib.tld file and the class files. Use the following command:
You should see the following output on the screen:
When this is complete, you should see the test-tags.jar file in the workarea directory. Enter the following command to verify this:
You should see something like the following output on the screen:
-rw-r--r-- 1 joe staff 7009 May 18 02:37 test-tags.jar
Copy the file to your JSP directory:
cp test-tags.jar jsp_location/jsps
Edit the jvm.classpath option in the server_root/https-server_id/config/jvm12.conf file to include the path to the custom tag library file. The following example must be all on one line in the file:
jvm.classpath=java_home/jre/lib/rt.jar:java_home/lib/tools.jar:jsp_location/jsps/test-ta gs.jar
In addition, make sure that your custom tag library file is added to the server classpath along with the regular Java runtime and tools.
Also make sure that the web-jsptaglib_1_1.dtd file is accessible at the URL you specified in the taglib.tld file. Failure to locate this DTD URL results in errors like this in your log files:
Unable to open taglibrary /jsps/test-tags.jar : Unable to open the tag library descriptor: Stream closed.
The following example shows a JSP file that uses the custom tags. A custom prefix, tt, indicates which tags are handed off to the custom tag library (the foo and log tags).
Enter the following URL in your browser:
http://server:port/jsps/test-tags.jsp
Your browser should show the following:
To store multiple server certificates on hardware tokens, perform the following steps:
The default limit for request headers is now 32 entries, and can be adjusted higher as needed by using the MaxRqHeaders nn directive in the magnus.conf file. Note that the request headers cannot be set below 32.
iPlanet Web Server, Enterprise Edition version 4.1 now runs on Linux platforms (with kernel 2.2.12 or later, and glibc-2.1.2 or later).
iPlanet Web Server, Enterprise Edition 4.1, contains the following JavaScript and Java enhancements:
Note: iPlanet Web Server, Enterprise Edition 4.1, does not support Java server-side applets (also called HttpApplets). Use Java servlets instead.
To set up iPlanet Web Server, Enterprise Edition 4.1 so you can use the Forte for Java debugger, follow these steps:
jvm.enableDebug=1
java.compiler=NONE
jvm.printErrors=1
If you installed the JPDA, add the following lines:
jvm.enableDebug=1
java.compiler=NONE
jvm.printErrors=1
jvm.option=-classic
jvm.option=-Xnoagent
jvm.option=-Xrunjdwp:transport=dt_socket,server=y,suspend=n
You are now ready to debug your servlet.
The following information no longer appears in the perfdump output:
SessionCreationInfo:
------------------
Total Sessions Created 48/1224
Sessions In Free List 0
Active Sessions From Free List 0
The Sessions In Free List and Active Sessions From Free List entries have been removed because the way threads are reclaimed in the server has been changed. The entry has been moved to the following section of the perfdump output:
ListenSocket #0:
------------------
Address https:\\INADDR_ANY:80
ActiveThreads 48
WaitingThreads 47
BusyThreads 1
Thread limits 48/512
Total Sessions 48/712
The ActiveThreads, WaitingThreads, BusyThreads, and Thread limits entries have not changed.
The Total Sessions entry used to be Total Sessions Created. The maximum value is now much lower (RqThrottle + KAPool). The way iPlanet Web Server, Enterprise Edition version 4.1 frees threads has been streamlined to improve server performance, especially on heavily loaded sites (>12K hits per minute).
When the server hits its RqThrottle + KAPool limits (712 in this case), an error is entered into the errors log as follows:
[date][pid] The server has created it configured maximum number of threads, %d.
This error is generated once in the lifetime of a process, and is generated for each child process if MaxProcs is greater than 1.
Reaching the maximum number of configured threads is not necessarily undesirable, and you need not automatically increase the number of threads in the server. More does not always mean better. Reaching this limit only means that the server needed this many threads at some moment (at peak load), but as long as it was able to serve requests in a timely manner, the server is adequately tuned. If you check your perfdump output on a regular basis and notice that BusyThreads is often near the RqThrottle maximum, you should consider increasing your thread limits.
iPlanet Web Server, Enterprise Edition 4.1, includes security enhancements described in the following sections:
The way Microsoft Internet Explorer (MSIE) handles SSL version 3 (SSLv3) and Transport Layer Security (TLS) keep-alive connections causes interoperability problems with non-Microsoft web servers such as iPlanet Web Server. When accessing a web server over SSL (https://) connections, Internet Explorer may inappropriately display error messages or blank pages.
iPlanet Web Server 4.1 SP9 (iWS41sp9) introduces new functionality to work around this problem. Four remedies are possible:
AuthTrans fn="match-browser" browser="*MSIE*" ssl-unclean-shutdown="true"
This line instructs iWS41sp9 to not send a close_notify alert when SSLv3 connections from MSIE are closed. The close_notify packet is a required component of the SSLv3 and TLS specifications, but it is misinterpreted by MSIE.
Note that the close_notify packet is used in SSLv3 and TLS connections to inform the other party in the transaction that the connection is being closed. Instructing iWS41sp9 to not send the close_notify packet may make MSIE vulnerable to a truncation attack.
MaxKeepAliveConnections 0
KeepAliveTimeout 0
Note that disabling keep-alive connections will reduce the performance of your web server, and that these configuration changes are often necessary only for SSL (https://) web server instances that are accessed by MSIE.
iPlanet Web Server, Enterprise Edition 4.1, includes FORTEZZA encryption support.
By default, the web server prompts the administrator for the key database password before starting up. If you want the web server to be able to restart unattended, you need to save the password in a password.conf file. Be sure that your system is adequately protected so that this file and the key databases are not compromised.
To configure the password, create a new password.conf file in the configuration subdirectory of the server instance. If you are using the internal PKCS#11 software encryption module that comes with the server, enter in the following information:
Communicator Certificate DB : yourpassword
If you are using a different PKCS#11 module, for example for hardware encryption or hardware accelerators, you will need to specify the name of the PKCS#11 module, followed with the password. For example:
When you modify a packaged servlet, the new version is not reloaded automatically.
To reload the new version automatically, set the following property in the contexts.properties file:
context.global.isModifiedCheckAggressive=true
The iPlanet Web Server, Enterprise Edition 4.1 is now compiled using the n32 Application Binary Interface. This ABI was introduced on IRIX 6.2 and is the recommended ABI for high-performance 32-bit applications.
If you are using a third-party application or plug-in to a previous version of Netscape Enterprise Server, you must obtain n32 versions of these binaries and DSOs from your application vendor.
To verify that you are using a n32 binary, simply issue the file(1) command against it. It should return a message as follows:
filename: ELF N32 MSB mips-3 dynamic lib MIPS - version 1
filename: ELF N32 MSB mips-4 dynamic lib MIPS - version 1
For more information on n32 please consult the ABI(5) manual page.
Required patches are listed for the following platforms:
The following patches are recommended for Solaris users of iPlanet Web Server, Enterprise Edition version 4.1. In addition, you should have the patches in Sun's recommended patch list. For Sun's recommended patch list, see http://sunsolve.sun.com/pubpatch. To get Sun patches, see your Sun service provider.
For each patch, use the listed revision or a higher revision. For example, if you need patch 111111-01, the later revision 111111-03 will also work.
Note that if you are using a JDK, you may need additional patches.
The following patches are the recommended patches for users running iPlanet Web Server, Enterprise Edition 4.1, on Solaris 2.6:
The following patches are recommended for users running iPlanet Web Server, Enterprise Edition 4.1 on Solaris 7:
The following Solaris patches are recommended for people using compilers:
The following patches are recommended for HP users of iPlanet Web Server, Enterprise Edition 4.1. In addition, you should have the patches in HP's recommended patch list. For HP's recommended patch list, see http://us-support.external.hp.com/index.html/.
The following patches are recommended for Compaq Tru64 users of iPlanet Web Server, Enterprise Edition version 4.1:
Requires Windows NT 4.0, with Service Pack 6.
This section includes information for installing, upgrading, and migrating your iPlanet Web Server. For additional information about system requirements and installing the product, see the Installation and Migration Guide.
The following table summarizes the supported platforms for iPlanet Web Server. All platforms require 64 MB memory and 150 MB disk space.
Vendor
Architecture
Operating System
* Supported via binary compatibility
** SGI does their own port and makes the Web Server available separately.
In addition, this section includes the following information:
If you want to install several iPlanet Web Servers, you can use silent installation to create a file of responses to the setup program's prompts. You can then edit the file, install.inf, and use it to install future iPlanet Web Server installations. Silent installation works best when you use the Typical installation and your installations are all similar.
Silent installation does not work on Windows NT.
Note
To use silent installation, follow these steps:
The following is an example of an install.inf file.
[General]
FullMachineName= austen.iplanet.com
SuiteSpotUserID= annh
SuitespotGroup= staff
SecurityCheck= False
RequireDomain= False
ServerRoot= /usr/netscape/server4
Components= WebServer
[WebServer]
Upgrade= False
Reinstall= False
AdminPort= 8888
HttpPort= 1888
HttpDocRoot= /usr/netscape/server4/docs
AdminSysUser= annh
AdminName= admin
AdminPassword= password
UgLdapUse= Yes
UgLdapUrl= ldap://test:389/o=siroe.com
UgLdapName= cn=Directory Manager
UgLdapPassword= password
JRE_DIR= /usr/netscape/server4/bin/https/jre
USE_JDK= No
CompVersions= 2:2:1:2:0:0:0:0:0:
Components= nescore,JRE,java,cleanup
[cleanup]
Archive= cleanup.zip
The following table shows some useful install.inf parameters to edit. For best results, do not edit any parameters except those listed in the table.
If you do not install all subcomponents when you initially install the server, then later install them, the following situations occur:
If you install another 4.x server (for example, Netscape Directory Server or Messaging Server) in the same directory as iPlanet Web Server, follow these steps when uninstalling:
If you install both Netscape Directory or Messaging Server and iPlanet Web Server on the same machine, during the web server installation when you are asked which version of libraries to install, always select those which have the most recent release dates, except for system32\libplc.dll. If you install both servers in the same directory, you should have no problems uninstalling any server.
If you install the servers in different directories, you need to uninstall iPlanet Web Server first, and preserve a copy of a DLL file before uninstalling, as shown in the following steps:
The default encryption settings on the Encryption Preferences page may not accurately reflect the actual settings in magnus.conf.
To correct this, go to the Encryption Preferences page, select the ciphers you want to use, and click Save and Apply to update the settings in magnus.conf.
Problem 388306. Installation of iPlanet Web Server 4.1 Subcomponents
If you do not install all subcomponents when you initially install the server, then install a subcomponent that depends upon other subcomponents, then run the installer again, the subcomponents on which the installed subcomponent depends may be shown as not installed, when they are in fact installed.
For example, if you install the JRE and Server-Side JavaScript Database components, the next time you run the installer the Java, Servlets, and Server-Side JavaScript subcomponents are shown as not installed. These subcomponents were installed previously, however, because the Server-Side JavaScript Database component depends on them.
Problem 409342. Installation of ES 4.1sp2 on NT over an old instance of server gives error message
When trying to install ES4.1sp2 over an old instance of the server on NT, the installation program says that the user must first remove the old configuration directories.
After uninstalling the web server on NT, an error appears: "Can't delete some files." Certain files are not removed from the system.
Problem 385770 (Unix). Obsolete 4.0 Server Files Not Deleted During Uninstall After Upgrade to Version 4.1
On Unix, when you upgrade the iPlanet Web Server from version 4.0 to 4.1, and then uninstall the upgraded server, files present in version 4.0 only are not uninstalled. This problem occurs only for upgrading and uninstalling the iPlanet Web Server, not for installing and uninstalling it.
After uninstalling the upgraded server, manually delete the following files if they are present:
/bin/https/admin/html/index.lst
/bin/https/admin/html/rmhttp.html
/bin/https/admin/html/sec-activate.properties
/bin/https/admin/html/sec-mgcrt.html
/bin/https/admin/html/status.html
/bin/https/httpadmin/bin/nsesvars
/bin/https/httpadmin/html/index.lst
/bin/https/httpadmin/html/nsesvars.html
/bin/https/httpadmin/html/sec-mgcrt.html
/bin/https/httpadmin/html/sitemon.html
/bin/https/install/misc/de/index.def
/bin/https/install/misc/es/index.def
/bin/https/install/misc/fr/index.def
/bin/https/install/misc/ja/inxex.def
/bin/https/jar/jsp.jar
/bin/https/jar/NSServletTools.jar
/bin/https/jar/swingall.jar
/bin/https/jar/xm14j_1_1_9.jar
/bin/https/lib/libadminutil.so
/manual/https/nsapi/00-prefa.htm
/manual/https/nsapi/bklast.htm
/manual/https/pg/bklast.htm
/manual/https/servlets/2-examp.htm
/manual/https/servlets/bklast.htm
/manual/https/servlets/g-apifix.htm
/manual/https/servlets/jsp092/images/banner.gif
/manual/https/servlets/jsp092/images/beancycle.jpg
/manual/https/servlets/jsp092/images/beans.jpg
/manual/https/servlets/jsp092/images/constructor-index.gif
/manual/https/servlets/jsp092/images/contructors.gif
/manual/https/servlets/jsp092/images/method-index.gif
/manual/https/servlets/jsp092/images/methods.gif
/manual/https/servlets/jsp092/images/pagecycle2.jpg
/manual/https/servlets/jsp092/images/red-ball-small.gif
/manual/https/servlets/jsp092/images/red-ball.gif
/manual/https/servlets/jsp092/images/scenario2.jpg
/manual/https/servlets/jsp092/images/smi.logo.gif
/manual/https/servlets/jsp092/images/yellow-ball-small.gif
/manual/https/servlets/jsp092/images/yellow-ball.gif
/manual/https/servlets/jsp092/jsp092.html
/plugins/lib/libnsrwdb.so
/plugins/lib/libnsrwdb2.so
/plugins/lib/libnsrwifx.so
/plugins/lib/libnsrwora.so
/plugins/lib/libnsrwsyb.so
/plugins/samples/js/oldvideo/*
/plugins/samples/servlets/edemo/*
/plugins/samples/servlets/jsp/*
/wai/*
By default on NT only. the core component is selected when installing in an existing server_root.
Select the all the components needed when doing an upgrade.
Problem 524885. Installing an iPlanet Web Server 4.1 SP release disables WebPublishing.
When you install an iPlanet Web Server 4.1 SP release over an existing iPlanet Web Server 4.1 installation, WebPublishing is disabled.
If you are upgrading from iPlanet Web Server 4.0 and using your own JDK, you need to edit the start-jvm file, which is in server_root/https-admserv. Add the following information (note that you need to add the second line of code on a single line in start-jvm):
NSES_JDK=path_to_jdk; export NSES_JDK
NSES_JDK_RUNTIME_CLASSPATH=${NSES_JRE}/lib/ext/iiimp.jar:${NSES_JRE}/lib/i18n.jar :${NSES_JRE}/lib/rt.jar:${NSES_JRE}/lib/tools.jar:${NSES_JDK}/lib/dt.jar;export NSES_JDK_RUNTIME_CLASSPATH
Problem 384875. Upgrading WAI Component from 4.0 to 4.1
If you upgrade the iPlanet Web Server from version 4.0 to 4.1 and you have WAI installed, you see the following error message when the WAI component is upgraded:
ERROR: ORB directory not specified in installation script [/var/tmp/aaasuaW9b] ERROR. Failure installing WAI support. Do you want to continue [n]?
Enter y to continue. The WAI component will be installed properly despite the error message.
Problem 387718. Upgrading to iPlanet Web Server 4.1 Server Fails to Add res Directory and cjava.properties and sjava.properties Files
When you upgrade iPlanet Web Server on NT, the res directory and its contents are missing in the server instances.
Create the server_root/https-instance/config/res directory, then create ASCII files named cjava.properties and sjava.properties. The contents of these files must be as follows:
# C++ messages
servlets.src.nsapi.ERR_JVM_LOAD = Failure to load JVM (check your JRE)
servlets.src.nsapi.ERR_UTILITY_CLASSES = Internal error: Unable to initialize
utility classes
servlets.src.nsapi.ERR_CLASS_LOOKUP = Internal error: Unable to locate
class: %s
servlets.src.nsapi.ERR_METHODS_LOOKUP = Internal error: Unable to find
required methods in Java classes
servlets.src.nsapi.ERR_REGISTER_METHODS = Internal error: Failure registering
native methods for the JVM
servlets.src.nsapi.ERR_OBJECT_CREATE = Internal error: Unable to create
Java object: %s
servlets.src.nsapi.ERR_OBJECTS_CREATE = Internal error: Unable to create one
or more Java objects (possibly running out of heap)
servlets.src.nsapi.ERR_NATIVE_THREAD = One or more NSServlet functions were
not configured to be running on a native thread (check your obj.conf)
servlets.src.nsapi.ERR_NAMETRANS = Object name is missing in NameTrans
(check your obj.conf)
servlets.src.nsapi.ERR_SERVLETS_MKDIR = Unable to create directory %s
(required by the servlet subsystem)
servlets.src.nsapi.ERR_JSPCACHE_CLEANUP = Unable to create/cleanup jsp class
cache
servlets.src.nsapi.ERR_OUTOFMEMORY = Internal error: unable to allocate
space from pool (%s)
servlets.src.nsapi.ERR_SEMCREATE = Internal error: failure to create
semaphores
servlets.src.nsapi.ERR_SESSIONCACHE_CLEANUP = Unable to create/cleanup persistent
session data cache
util.src.ERR_EXCEPTION = Internal error: Unexpected Java
exception thrown (%s,%s), stack: %s
util.src.ERR_FINDTHROWABLE = Internal error: unable to locate: %s
jvm.src.ERR_JVM_ATTACH = Internal error: Unable to attach to the JVM
jvm.src.ERR_JVM_DETACH = Internal error: Unable to detach from the JVM
jvm.src.ERR_JVM_READCFGFILE = Error reading JVM config file (%s)
jvm.src.ERR_JVM_EXITING = Exiting JVM
jvm.src.ERR_JVM_ABORTING = Aborting JVM
jvm.src.ERR_JVM_EXITING_ON_ABORT = Exiting JVM due to: jvm_abort () and
jvm.exitOnAbort > 0
jvm.src.ERR_JVM_EXITING_ON_LOOP = Exiting JVM due to: infinite loop detected
in the JVM signal handler
jvm.src.ERR_JVM_CLASSPATH = JVM ClassPath=%s
jvm.src.ERR_JVM_BADPROFILER = Unknown profiler: %s
jvm.src.ERR_JVM_BADPARAM = JVM config: unrecognized parameter (%s)
jvm.src.ERR_JVM_SINGLEPROCESS = No profiling or debugging is allowed in
multi-process mode (disabled)
jvm.src.ERR_JVM_PROFILERCLASS = Unable to locate OptimizeIT Audit class
jvm.src.ERR_JVM_PROFILERMETHODS = Unable to locate OptimizeIT Audit class
methods
jvm.src.ERR_JVM_PROFILERSTART = Attempt to start OptimizeIT failed
(exception: %s,%s)
jvm.src.ERR_JVM_PROFILERSTARTED = OptimizeIT profiler lanched
jvm.src.ERR_JVM_DIFFCONFIG = JVM config: Use configuration file
properties to specify this parameter (%s)
jvm.src.ERR_JVM_CREATE = Internal error: unable to create JVM
jvm.src.ERR_JVM_EXISTS = JVM instance has already been created within
the process, numVMs=%d
jvm.src.ERR_JVM_EXIT_STATISTICS = JVM exit statistics:
AttachedThreads/Max=%u/%u, ActiveThreads/Max=%u/%u
# Server-side Java properties (primarely may be used for internationalization)
servlet.NSServletEntity.msg_unable2findClass = Unable to locate class: %1
(%2)
servlet.NSServletEntity.msg_exceptionInitFunc = Internal error: unexpected
exception thrown from the servlet init function (servlet class=%1): %2, Stack: %3
servlet.NSServletEntity.msg_exceptionNewInstance = Internal error: newInstance
failed (servlet class=%1): %2
servlet.NSServletEntity.msg_exceptionInitThrown = Internal error: servlet init
function had trown ServletException (servlet class=%1): %2
servlet.NSServletEntity.msg_jspCompileFailed = JSP compilation error: %1,
stack: %2
servlet.NSServletEntity.msg_recompilingJSPFile = recompiling JSP file: %1
servlet.NSServletWrapper.msg_exceptionDestroyFunc = Internal error: unexpected
exception thrown from the servlet destroy function (servlet class=%1): %2, Stack:
%3
servlet.NSServletRunner.msg_wrongSeviceFuncParam = Internal error: service
function recieved wrong parameters
servlet.NSServletRunner.msg_exceptionServiceFunc = Internal error: exception
thrown from the servlet service function (uri=%1): %2, Stack: %3
servlet.NSServletRunner.msg_missingObjectType = Internal error: ObjectType
is missing
servlet.NSServletRunner.msg_wrongObjectType = Internal error: ObjectType
has incorrect value - magnus-internal/servlet|jsp expected
servlet.NSServletRunner.msg_infoLoadServet = Internal Info: loading
servlet %1
servlet.NSServletRunner.msg_exceptionInitFunc = Internal error: exception
thrown from the servlet init function (servlet=%1): %2
servlet.NSServletRunner.msg_exceptionClassNotFound = Internal error: Class %1
not found (servlet=%2):
servlet.NSServletRunner.msg_exceptionLoadServletFailed = Internal error: Failed
to load servlet (servlet=%1)
servlet.NSServletRunner.msg_exceptionFindClassName = Internal error: Could not
figure out the class name (uri=%1, SCRIPT_NAME=%2)
servlet.NSServletRunner.msg_exceptionFindContext = Internal error: Could not
find specifed servlet context (context=%1)
servlet.NSServletRunner.msg_exceptionGetServlet = Internal error: Failed to
get GenericServlet. (uri=%1,SCRIPT_NAME=%2)
servlet.NSServletRunner.msg_unable2findServlet = Internal error: unable to
locate servlet (%1) by name (probably a configuration error)
servlet.NSServletRunner.msg_fileNotFound = requested file not found
(uri=%1, filename=%2)
servlet.NSServletRunner.msg_regexpMarkError = Bad regular expression: %1
servlet.NSServletRunner.msg_sessionMgrNotFound = SessionManager class not
found (%1): loading default one
servlet.NSServletRunner.msg_sessionMgrFailure = Unable to instatiate
SessionManager class (%1, exception=%2): initializing default one
servlet.NSServletLoader.msg_classSecurity = NSServletLoader: security
violation loading class (%1)
session.MMapSession.mgs_unable2Retrieve = Session Manager: unable to
retrieve the object (%1)
session.MMapSession.mgs_unable2Store = Session Manager: unable to
store the object (%1)
session.MMapSessionManager.msg_sessionType = MMapSessionManager: can
manage only MMapSessions
session.SimpleSessionManager.msg_limitReached = SimpleSessionManager:
cannot create a new session as the limit on maximum number of sessions has already
been reached: (%1)
session.SimpleSessionManager.msg_sessionType = SimpleSessionManager: can
manage only SimpleSessions
session.SimpleSessionManager.msg_maxSessionsNotValid = SimpleSessionManager:
maximum number of sessions should be an integral number; using a default value
(%1)
session.SimpleSessionManager.msg_timeoutNotValid = SimpleSessionManager:
session timeout value should be an integral number; using a default value (%1)
session.SimpleSessionManager.msg_simpleSessionManagerDefaultInit =
SimpleSessionManager: Default values for maximum number of sessions is %1 with a
time out value of %2 seconds
session.SimpleSessionManager.msg_simpleSessionManagerUnbindError =
SimpleSessionManager: Failed to call unbind method on an object bound to the
session by name (%1) due to %2
session.SimpleSessionManager.msg_simpleSessionManagerInit =
SimpleSessionManager: Maximum number of sessions (%1) with a time out value of
(%2) seconds
session.JdbcSessionManager.msg_sessionType = JdbcSessionManager: can
manage only JdbcSessions
session.JdbcSessionManager.msg_timeoutNotValid = JdbcSessionManager:
session timeout value should be an integral number; using a default value (%1)
session.JdbcSessionManager.msg_poolNotValid = JdbcSessionManager:
specified pool (%1) size is not valid, will using default value
session.JdbcSessionManager.msg_jdbcSessionManagerInit = JdbcSessionManager:
initialized with timeOut=%1, url=%2, driver=%3
session.JdbcSessionManager.msg_jdbcSessionManagerFailed = JdbcSessionManager:
initialization failed: %1
session.JdbcSessionManager.msg_sessionsReaped = JdbcSessionManager: %1
session(s) had expired and removed
session.JdbcSessionManager.msg_unable2Store = JdbcSessionManager:
unable to serialize the object (%1)
session.JdbcSessionManager.msg_unable2Retrieve = JdbcSessionManager:
unable to retrieve the object (%1)
session.JdbcSessionManager.msg_exceptionThrown = JdbcSessionManager:
exception occured while %1: session id=%2, exception: %3
servlet.NSRequestDispatcher.msg_invalidReqResClass = ServletRequest/Response
classes passed into RequestDispatcher must be NSHttpRequest/Response classes
servlet.NSRequestDispatcher.msg_includeFailed = RequestDispatcher: include
call failed
servlet.NSRequestDispatcher.msg_forwardFailed = RequestDispatcher: forward
call failed
servlet.NSServletAdmin.msg_badServlet = Config: servlet entry is
incorrect or incomplete (%1)
servlet.NSServletAdmin.msg_uknownServlet = Config: on-startup loaded
servlet does not exist (%1)
servlet.NSServletAdmin.msg_badAlias = Config: alias entry is
incomplete or refers to a non-existing servlet (%1)
jsp.JSPCompiler.msg_noSuchBuffer = Internal error: unable to find JSP buffer %1
jsp.JSPCompiler.msg_compileError = Java/JSP compile error: %1
jsp.JSPCompiler.msg_javacNotThere = Java compiler or classpath is not set up
properly
jsp.JSP.msg_badScriptletTag = JSP parse error (line %1) - Incomplete
scriptlet tag
jsp.JSP.msg_badTagEnding = JSP parse error (line %1) - Incomplete tag
ending of %2
jsp.JSP.msg_compileError = Unknown compile error %1
jsp.JSP.msg_badLanguage = JSP parse error (line %1) - unknown language
jsp.JSPTree.msg_badTag = JSP parse error - %1 tag is invalid
jsp.JSPTree.msg_badSetterType = JSP parse error - invalid bean setter type
jsp.JSPTree.msg_unknownSSI = JSP parse error - unrecognized command in SSI
statement: %1
jsp.JSPTree.msg_unknownTagValue = JSP parse error - unrecognized value for %1
tag: %2
jsp.JSPTokenizer.msg_unexpectedEOF = JSP parse error - unexpected end of file
servlet.admin.Sam.msg_noNSHOME = NS_SERVER_HOME property must be defined!
servlet.admin.Sam.msg_badNSHOME = NS_SERVER_HOME is invalid!
servlet.admin.Sam.msg_noServers = No Enterprise Server instances found!
servlet.admin.Sam.msg_serverNotFound= Server not found (%1)
servlet.admin.Sam.msg_badParam = Bad or insufficient parameters to perform
command (%1)
servlet.admin.Sam.msg_notExists = Servlet was not found (%1)
servlet.admin.Sam.msg_alreadyExists = Servlet already exists (%1)
servlet.admin.Sam.msg_cannotCreate = Unable to create servlet (%1)
servlet.admin.Sam.msg_listServers = Available server instances:
servlet.admin.SamPanel.HEIGHT = 500
servlet.admin.SamPanel.WIDTH = 700
servlet.admin.SamPanel.title = Servlet Application Manager
servlet.admin.SamPanel.logoIcon = icons/enterprise.gif
servlet.admin.SamPanel.quitTitleMessage = Quiting Sam?
servlet.admin.SamPanel.quitMessage = Changes have been made\nSave?
servlet.admin.SamPanel.menu_File = File
servlet.admin.SamPanel.menu_FileKeey= f
servlet.admin.SamPanel.mb_About = About Sam ...
servlet.admin.SamPanel.mb_Exit = Exit
servlet.admin.SamPanel.mb_ExitKey = e
servlet.admin.ObjDirPanel.l_nsapiFunc = NSAPI function
servlet.admin.ObjDirPanel.b_apply = Apply
servlet.admin.ObjDirPanel.b_restore = Restore
servlet.admin.ObjDirPanel.b_remove = Remove
servlet.admin.ObjDirPanel.t_border = Arguments
servlet.admin.ServletPanel.l_servlet = Servlet
servlet.admin.ServletPanel.l_className = ClassName
servlet.admin.ServletPanel.l_classPath = ClassPath
servlet.admin.ServletPanel.cb_startup = load on startup
servlet.admin.ServletPanel.b_apply = Apply
servlet.admin.ServletPanel.b_restore = Restore
servlet.admin.ServletPanel.b_remove = Remove
servlet.admin.ServletPanel.b_browse = Browse
servlet.admin.ServletPanel.t_border = Initial Arguments
servlet.admin.ServletPanel.l_border = Aliases
servlet.admin.ServletPanel.fc_title = Choose ClassPath directory
servlet.admin.ServletConfigPanel.l_docRoot = Servlets docRoot
servlet.admin.ServletConfigPanel.l_reloadInterval = Reload Interval
servlet.admin.ServletConfigPanel.b_apply = Apply
servlet.admin.ServletConfigPanel.b_restore = Restore
Problem 388075. Upgrade to iPlanet Web Server 4.1 Does Not Update the obj.conf admin-check-admpw Setting
When you upgrade the iPlanet Web Server to version 4.1, the admin-check-admpw function in the Administration Server's obj.conf file includes the parameter final=false, when it should include final=true. This problem occurs only for upgrading the iPlanet Web Server, not for installing it.
After upgrading, edit the admin-check-admpw function in the server_root/https-admserv/config/obj.conf file to change final=false to final=true.
Problem 388076. Upgrade to iPlanet Web Server 4.1 Fails to Update mime.types File Correctly
When you upgrade the iPlanet Web Server to version 4.1, the mime.types files for the Administration Server and the server instances have missing or incorrect information. This problem occurs only for upgrading the iPlanet Web Server, not for installing it.
After upgrading, edit the mime.types files in server_root/https-admserv/config and server_root/https-instance/config to change the following line:
type=application/x-pointplus exts=css
type=text/css exts=css
type=image/x-icon exts=ico
Problem 387908. Upgrade Does Not Modify magnus.conf File
When you upgrade the iPlanet Web Server to version 4.1, information is missing from the Administration Server's magnus.conf file. This problem occurs only for upgrading the iPlanet Web Server, not for installing it.
After upgrading, verify that the following line is present in the server_root/https-admserv/config/magnus.conf file, and that it includes the ${NSES_JRE_RUNTIME_LIBPATH} part:
ExtraPath server_root/bin/https/bin;${NSES_JRE_RUNTIME_LIBPATH}
The following line is optional but recommended. It limits the number of threads used by the Administration Server.
If you migrate the server with encryption turned on and then click the View Server Settings button on the Preferences tab, you see the following message:
Internal Error. The administration server was unable to fulfil your request.
Migrate the server with encryption turned off.
Problem 393221. Configuration Styles May Not Migrate Correctly
Configuration styles may not migrate correctly from Netscape Enterprise Server 3.6 to iPlanet Web Server 4.1. Double-check your configuration style settings after migration. Change this line:
ObjectType fn=type-by-exp exp="*.(class|jar)" type=magnus-internal/servlet
ObjectType fn="force-type" type="magnus-internal/servlet"
This section describes the problems that have been fixed in service pack releases.
iPlanet Web Server, Enterprise Edition 4.1 SP9 includes the following bug fixes:
iPlanet Web Server, Enterprise Edition 4.1 SP8 includes the following bug fixes:
iPlanet Web Server, Enterprise Edition 4.1 SP7 includes the following bug fixes:
iPlanet Web Server, Enterprise Edition 4.1 SP6 includes the following bug fixes:
iPlanet Web Server, Enterprise Edition 4.1 SP5 includes the following bug fixes:
iPlanet Web Server, Enterprise Edition 4.1 SP4 includes the following bug fixes:
iPlanet Web Server, Enterprise Edition 4.1 SP3 includes the following bug fixes:
iPlanet Web Server, Enterprise Edition 4.1 SP2 includes the following bug fixes:
iPlanet Web Server, Enterprise Edition 4.1 SP1 includes the following bug fixes:
context.global.realPathFromRequest=true
(Note: in a future release, setting this flag will not be needed).
This section lists known problems with this release of iPlanet Web Server, Enterprise Edition 4.1. Information is organized into the following areas:
iPlanet Web Server does not provide statistics needed for the Windows NT Performance Monitor to chart specific performance characteristics of the process.
Invoking Netscape browser from the Directory Console
The Installation Guide does not specify that you must include Netscape Browser in your $PATH or Path. Consequently, the Web Admin Application is not launched.
Add Netscape Browser to your $PATH or Path.
Do not run CGIs using Perl 5.6.x with the -w flag
If you run a CGI using perl 5.6.x with the -w flag, the Web Server returns an error message, such as:
cgieng_scan_headers reports: the CGI program foo.pl did not produce a valid header (name without value: got line "can't ignore signal chld, forcing to default.")
Instead, include the following code in the file:
Bug in the Tru64 Unix 4.0d Kernel Causes the Kernel to Crash
There is a bug in the Tru64 Unix Unix 4.0d kernel which causes the kernel to crash under some stressed conditions with file cache in the Web Server. Currently, the patch kit 6 is the latest one for 4.0d kernel. A future OS patch kit will correct this problem.
Meanwhile, to avoid this problem, add the following entry to the /etc/sysconfigtab file and reboot the system:
Problem 44812 (Windows NT only). Windows NT iPlanet Web Server Cannot Find Files on Remote-Mounted Drives
If you mount a remote Novell Netware or Windows NT drive on your local NT system and assign a drive letter to it, the iPlanet web server always returns a "Not Found" error if you try to access any files from that drive through your web server. This happens even if you set up your document root or URL mappings to point to the remote drive.
The iPlanet web servers on Windows NT don't directly support handling document directories on remote-mounted volumes, but this generally seems to work, as long as you are aware of some known issues with it.
UNC ("universal naming convention", such as \\servername\path\) paths are not supported. You must map a drive letter to the remote volume you want to use before your iPlanet web server can serve files from it. Here is how to set up a drive mapping for your iPlanet web server:
net use X: \\servername\path\directoryname /persistent:yes
where X: is the drive letter you want to use (anything that's not currently in use), and \\servername\path\directoryname is the complete UNC path to the directory you want to mount as that drive letter. You can also set up this mapping from File Manager or Windows Explorer as long as you check the Reconnect at Login checkbox in the drive mapping dialog. You can log out from that user's account after you set this up.
Now, if you set up a drive mapping for X:, you should be able to tell your iPlanet web server to use its primary document directory on X:\, for example.
This may not work in all situations. If it doesn't, try upgrading to the latest copy of the client networking software for your computer. In particular, we have seen this fail if you're using the Microsoft networking software to connect to a Novell Netware file server; installing Novell Netware client software instead seems to fix the problem. Using drives mounted by Windows Networking and PC-NFS seems to work fine.
As noted above, using network volumes isn't directly supported by the iPlanet web server, and this may not work reliably.
Problem 338917. Cannot get environment variables configured for cmd scripts
The obj.conf file allows the configuration of environment variables for CGIs that run from the URL or via Parsed HTML. However, server-side includes for commands do not receive these environment variables.
Add addCgiInitVars="yes" to your obj.conf file to get these variables subsequently passed to shtml-init. For example, if you add the following code to your obj.conf file:
Init fn="init-cgi" LateInit="yes" var1="xy" var2="ab"
Init fn="shtml_init" addCgiInitVars="yes"
Then any command executed from shtml via the use of the cmd directive will see var1="xy" and var2="ab" in its environment.
Problem 385142. Security Tab Cannot Be Delegated
You cannot delegate the Security tab. Only the primary administrator can change the security settings.
Problem 381644. Administration Server UI cannot handle variable font sizes
The Administration Server UI tabbed header hard-codes the font to be a particular size (roughly 12-18 points on various browsers). If the font is too small or too large, elements of the UI do not always expand or shrink in proportion. If the font is too large, the right arrow that displays the right most tabs may not be visible.
Problem 382458 (Unix only). Database Libraries Need to Be Set in LD_LIBRARY_PATH
On Linux, to connect to any database using iPlanet Web Server 4.1, you must point the LD_LIBRARY_PATH environment variable to the client library directory. For example (the following must be all on one line):
setenv LD_LIBRARY_PATH ${DB2PATH}/lib:${ORACLE_HOME}/lib:${INFORMIXDIR}/lib:
${INFORMIXDIR}/lib/esql:${SYBASE}/lib
Problem 387590 (Linux, Solaris and NT platforms only). Encryption Ciphers/Settings Reset to Default Values
Changes you make to the cipher settings (in the Encryption Preferences page of the Administration Server interface) are not saved when you select the OK button and then restart the server.
Change the cipher settings by editing the magnus.conf file. For more information, see the Security section of the magnus.conf appendix in the NSAPI Programmer's Guide.
Problem 388625. Example Server Pages Still Use Netscape URL Links
Some sample pages installed in the docs directory still have URLs with references to Netscape and Netscape locations, such as home.netscape.com instead of iPlanet and iplanet.com/docs. Please use the following URL in place of the Netscape URL:
http://docs.iplanet.com/docs/manuals/enterprise.html
Problem 360250. Quality Feedback Agent (Talkback) Feature Not Operational
The required libraries from FullSoft, Inc. are not yet available. This feature will be re-enabled in a future Web Server release.
Problem 386805. Installer and Administration Server Do Not Recognize Errors in Base DN
Do not use illegal characters, such as colons (:), in the base DN when enabling LDAP. Web Server 4.1 Installer and the Administration Server do not check for illegal syntax or characters in the base DN.
Problem 384779. Advanced Search Applet Cuts Off Readable Text
The advanced search applet cuts off readable text if no collections are available. The actual message should be "No search collections available."
Problem 385149. Delegating Users & Groups Tab Causes Display Problems
All the information after "Users & Groups" in the upper frame is lost when you exit and re-enter the Restrict Access page without updating anything. However, information saved in the generated.https-admserv.acl file is not changed.
Problem 390064. Home Page Field in Document Preferences Page Cannot Recognize URL
The Home Page field in the Document Preferences page on the Content Mgmt tab of the Server Manager does not accept a URL. Instead, you must provide an absolute path or a relative path from the primary document directory.
Problem 394322 (HP-UX only). Poor SSL performance in single process mode
If there is a problem with poor SSL performance we recommend adding RqThrottleMinPerSocket 512 and MaxProcs X to the magnus.conf file, where X in the MaxProcs statement is greater than the number of CPUs in the system.
Problem 400714. Web Publisher Applet and SSL
The Web Publisher Java applet is not supported in SSL mode.
Problem 410728. Server shutdown appears to fail after creating IP addresses for multiple virtual servers
The first time the server is shut down after adding IP addresses for multiple virtual servers, the server may exceed the expected shutdown time. By default, an error message will appear, claiming server shutdown has failed. This message should be ignored as the server is actually in the process of shutting down. Subsequent shutdown attempts will not experience a prolonged shutdown time.
Problem 416848. MaxProcs + LDAP SSL + hardware accelerator does not work
Setting MaxProcs and LDAP SSL with a hardware accelerator enabled does not allow the hardware accelerator to work with child processes.
Problem. iPlanet Web Server SNMP Master Agent won't start on ports other than 161with the user interface.
Workaround
Though you cannot start the Master Agent through the user interface, you can start it by hand.
Edit /server_root/plugins/snmp/magt/CONFIG to specify the desired port.
Run the start script as follows:
./start -shell /server_root/plugins/snmp/magt/magt
/server_root/plugins/snmp/magt/CONFIG
/server_root/plugins/snmp/magt/INIT
The master agent will then start on the desired port. However, the user interface will be able to detect that the master agent is running.
If close is called on a ServletInputStream that still has data which is unread, a delay equal to the operating system's TCP time-out can result at the end of the servlet service. This typically would happen when ServletInputStream would have unread data is a POST request where getParameter*() is not called and content-length bytes are not read from the ServletInputStream by the servlet.
To avoid the delay, don't close the ServletInputStream unless getParameter*() is called or content-length bytes are read from the ServletInputStream by the servlet. The ServletInputStream is automatically closed by the servlet container at the end of the servlet service function.
Servlet Error Information Not Available in iPlanet Web Server 4.1 Error Log
Due to the way the Servlets are "external" to the iPlanet Web Server, the output is not directed to the web server's error log. Instead, the output goes directly to standard output file of the web server process. Note that output from servlets goes to the STDERR of the process that started the web server if you use system.out.println() (or anything that uses the system.out object). In addition, note that the provided out object is in fact properly written to the server's error log.
So, for example, if you start the web server from a terminal window, you should see the output there. Use standard Unix file redirection to pipe the standard output into a file (that is, modify your server_root/https-instance/start file). You can use the ServletContext.log method to write to the error log file.
Multiple Headers and Servlets calling getHeaders
iPlanet Web Server 4.1 collapses multiple headers that came in on a request with the same name into a single header, with values comma separated. As a result of this, a servlet calling getHeaders always gets back an enumeration containing one string that has all the values separated by commas.
Session ID generator, which is used for Servlet sessions, employs cryptographically-strong unique random number generation algorithms. This may present a performance problem on older, slow machines. The Session Manager API (see the SimpleSessionManager.java example) allows you to redefine the random ID generation method and customize it to your particular needs.
Problem 387702. Content Length Set to 0 After a Servlet Sets It
If a servlet uses the HttpServletResponse.setContentLength method to convey the length of data that would be sent to the client but does not actually send the data over, the web server resets the content length to 0.
Problem 390226. Unable to Set the Expiration for a Session
Sessions are not getting invalidated when the setMaxInactiveInterval method is used.
Set the session expiration in the servlets.properties configuration file. For example:
servlets.sessionmgr=com.netscape.server.http.session.YourSesMgr
servlets.sessionmgr.initArgs=maxSessions=20,timeOut=300,reapInterval=150
Problem 395924. Using Regular expressions in rules.properties to redirect all URIs ending in an extension to a named servlet doesn't effectively work
Web Server supports regular expressions in the rules.properties file to run a given servlet when the incoming URL matches with a regular expression:
# Servlet rules properties (autogenerated)
# This file specifies the translation rules for invoking servlets.
# The syntax is:
#
# <virtual-path>=<servlet-name>
# or
# @regular_expression=<servlet-name> (use double back-slashes)
#
# Example:
#
# /simple=SimpleServlet\n
# @.*\\.foo=wasp
Where those "\\" characters are supposed to escape the "." extension. The intent is to run the example wasp servlet whenever there is a request for urls like /my/xxx.foo. Web Server 4.1 has a defect whereby it would replace the "/" characters or "\" characters with "/", subsequently changing the whole semantics.
Specify the regular expression without those "/" or "\" characters:
Problem 398424 (Windows NT only). The sdk_test.bat/sdk_test.sh Examples May Fail to Compile
Compiling the examples on Windows NT platforms using sdk_test.bat may not work correctly. Follow the instructions in readme.html to compile the code manually using javac.
Problem 450189. Server not able to start when chrooted and servlets are active
With servlets active in the default configuration, the web server is not able to start once chrooted. Removing servlets allows the server to start and begin serving pages.
Problem 398234. The JVM does not take the system environment variables from the jvm.option settings
If you define JVM environment variables using the jvm.option setting in the jvm12.conf file or the Administration Server, servlets do not recognize them.
When you are running a standalone command line java program, use the following option to pass system properties into the java program:
java -Dorg.omg.CORBA.ORBClass=com.inprise.vbroker.orb.ORB myprogram
In the myprogram.java file, the following line retrieves the system property set above:
System.out.println("org.omg.CORBA.ORBClass="+System.getProperty("org.omg.CORBA.ORBClass"));
If you want to do the same thing for servlets in iPlanet Web Server, you need to put the following line in the jvm12.conf file:
org.omg.CORBA.ORBClass=com.inprise.vbroker.orb.ORB
Do not use jvm.option settings such as the following:
jvm.option=-Dorg.omg.CORBA.ORBClass=com.inprise.vbroker.orb.ORB
jvm.option=org.omg.CORBA.ORBClass=com.inprise.vbroker.orb.ORB
In the servlet or JSP, you can use the following line to retrieve the system property set above:
out.println("org.omg.CORBA.ORBClass="+System.getProperty("org.omg.CORBA.ORBClass"));
If you disable AcceptLanguage in the magnus.conf and enable the NSAPI cache in the obj.conf, an ACL protects CGI output only on the first request, but subsequent requests to the CGI are not protected.
Do not use the NSAPI cache. This cache can interfere with the proper functioning of the ACL subsystem.
Problem 343875. URL Forwarding
A new PathCheck function called set-virtual-index specifies a virtual index for a directory, which determines the URL forwarding. The index can refer to a LiveWire application, a servlet in its own namespace, a Netscape Application Server applogic, and so on.
REQ_NOACTION is returned if none of the URIs listed in the from parameter match the current URI. REQ_ABORTED is returned if the file specified by the virtual-index parameter is missing or if the current URI cannot be found. REQ_RESTART is returned if the current URI matches any one of the URIs mentioned in the from parameter or if there is no from parameter.
Problem 385457 (Windows NT). Multi-Process Mode Not Supported
On Windows NT, multi-process mode is not supported. This means that the MaxProcs directive in the magnus.conf file can not have a value greater that 1. For more information, see the magnus.conf appendix in the NSAPI Programmer's Guide.
Problem 524191. Multi-Threaded NSAPI SAFs Crash
Workaround: When writing multi-threaded NSAPI SAFs for iPlanet Web Server 4.1 and greater, you must call the function prepare_nsapi_thread(rq, sn). This should be the first call of any new thread. This replaces the need to do systhread_setdata(getThreadMallocKey(), sn->pool), which was used in earlier server versions.
The function may need to be forward declared when compiling with early service packs of 4.1. The declaration should look like this:
NSAPI_PUBLIC void prepare_nsapi_thread (Request * rq, Session * sn);
A defect in the way Microsoft Internet Explorer 5.5 SP1 and higher handles SSL keep-alive connections causes interoperability problems with non-Microsoft web servers such as iPlanet Web Server. When accessing a non-Microsoft web server over SSL (https://) connections, Internet Explorer may inappropriately display error messages or blank pages.
For SSL functionality enhancement in iPlanet Web Server 4.1 SP9 to work around this Internet Explorer defect, please see SSL Protocol Enhancement.
Problem 526797 Admin Server cannot connect to secure LDAP server with Use SSL selected if Admin Server (or https instance) is not SSL enabled
The listener processes must be able to establish a trust relationship with the LDAP server they must be able to open their Certificate Databases to examine the trust chain of the received LDAP certificate. If the instance (Admin Server or individual instances) is not SSL enabled then it is unable to open the certificate database and appears "hung" while attempting to open the database.
iPlanet Web Server 4.1 SP9 introduces functionality to work around this Internet Explorer defect. password.conf as documented at:
("Restarting an SSL Server"). Sample format is:
This must be provided for each instance that needs to communicate with the SSL enabled LDAP server.
Problem 383530 (Windows NT only). Encryption Error
The following error message may appear when you turn Encryption on with the default settings (in the Encryption On/Off page on the Preferences tab of either the Administration Server or the Server Manager), select Save and Apply, and enter your password:
Commit.exe Application error
the instruction at "0x780001146" referenced memory at "0x00661006d".
The memory could not be "written".
Click OK to terminate the application.
Select OK, and the following message appears:
Success! Your changes have been saved.
After you see this message, you should verify that the server has been restarted by going to the Shut Down or Server On/Off page on the Preferences tab or to the Services Control Panel.
Problem 389276 (Solaris). Adding Server Certificates to Hardware Tokens Causes Server to Prompt for Internal Certificate DB Password
If you create a new server instance with SSL and store your certificate on a hardware token, you may be prompted to enter both the nCipher password and the internal software password when you start up the server instance. No matter which password you enter, the server does not start. The error log shows the following lines:
test-kra# ./start
test-kra# [22/Mar/2000:15:26:03] info ( 2614): successful server startup
[22/Mar/2000:15:26:03] info ( 2614): iPlanet-WebServer-Enterprise/4.1
BB1-03/06/2000 00:55
[22/Mar/2000:15:26:03] failure ( 2614): NSS initialization failed: -8174
Follow these guidelines to avoid this problem:
If you try to request a certificate with a regular expression in it, such as (test|production).acme.com, your certificate may be rejected by the CA. Many CAs will not issue certificates that contain regular expressions.
Problem 386677 (Linux, Solaris and Windows NT only). Typo in Pop-Up When Turning on Server Encryption
When you install a new server certificate and enable encryption via the Administration Server "enable encryption: yes" settings, the Web Server displays the following information:
Warning: Security changes require shutdown
In order for your changes to take effect, you will need to shutdown the
HTTP server, and then start it up again from the console in order to enter
the keyfile password. After you have started up the server again, your
server's url will be http://nocturne.netscape.com:9000 instead of
http://nocturne.netscape.com:9000
Problem 387226. Session Cache Problem with Client Authentication
Note the following information regarding the magnus.conf file SSLCacheEntries directive:
If SSL is enabled on the server and you change any configuration on Windows NT platforms, and then click on "save and apply", the Web Server displays the "System error: Password did not match" error message.
Click "Save" and then click "Apply" buttons at the right top of the Administration Server.
Problem. Microsoft Internet Explorer 4.x and 5.0 Unable to Perform 128-bit Step-Up
The export releases of Internet Explorer 4.x and 5.0 do not properly request a cipher change from 40/56-bit to 128-bit encryption when they encounter a step-up certificate. Internet Explorer does not perform the step-up and continues communicating with iPlanet Web Server using a 40/56-bit cipher. This issue has been reported to Microsoft.
Microsoft recommends upgrading to a 128-bit capable browser.
On Linux, if you connect to a Sybase server using LiveWire and the connection fails, the web server crashes. The server crashes because the LANG and LC_ALL environment variable values do not match values in the locales.dat file.
Workaround: Modify the ${SYBASE}/locales/locales.dat file so that it has an entry for the locale that you want. For example, if you set LANG=en_US or LC_ALL=en_US or both, add the following entry to the [linux] section in locales.dat:
locale = en_US, us_english, iso_1
Problem 385237 (Linux only). Unstable Databases
LiveWire may exhibit problems on Linux platforms with all databases (except Informix) when running under stress conditions.
Problem 394712. Users can't access CGI variables from within a servlet
You can not access the internal getCgiVariable() functionality from the servlet HttpServletRequest interface. If you try, the server displays the following compilation error:
WASPServlet.java:269: Method getCgiVariable(java.lang.String) not found in
interface javax.servlet.http.HttpServletRequest.
String cgiVar = req.getCgiVariable("PATH_TRANSLATED");
^
Note: WASPServlet.java uses or overrides a deprecated API. Recompile with
"-deprecation" for details.
1 error, 1 warning
This section describes platform-specific known problems and workarounds for the following platforms:
iPlanet Web Server, Enterprise Edition 4.1, does not support the Web Publisher or Search features on Linux platforms.
Support for Multithreaded Database Applications on Linux
Oracle Client SDK version 8.0.5 and DB2 Client SDK version 6.1 support multithreaded database applications.
Problem 382457. Web Server Crashes When Sybase Connection Fails
On Linux, if you connect to a Sybase server using LiveWire and the connection fails, the web server crashes. The server crashes because the LANG and LC_ALL environment variable values do not match values in the locales.dat file.
Modify the ${SYBASE}/locales/locales.dat file so that it has an entry for the locale that you want. For example, if you set LANG=en_US or LC_ALL=en_US or both, add the following entry to the [linux] section in locales.dat:
locale = en_US, us_english, iso_1
Problem 382458. Database Libraries Need to Be Set in LD_LIBRARY_PATH
On Linux, to connect to any database using iPlanet Web Server 4.1, you must point the LD_LIBRARY_PATH environment variable to the client library directory. For example (the following must be all on one line):
setenv LD_LIBRARY_PATH ${DB2PATH}/lib:${ORACLE_HOME}/lib:${INFORMIXDIR}
/lib:${INFORMIXDIR}/lib/esql:${SYBASE}/lib
Problem 385237. Unstable Databases
LiveWire may exhibit problems on Linux platforms with all databases (except Informix) when running under stress conditions.
Problem 391820. Perl scripts fail with .pl extensions
Perl scripts fail with .pl extensions when the .pl extension has a specific mime.type x application.
The problem can be resolved by commenting out the x application mime.type extension for .pl.
If you use Solaris 7 you may see instability within the server if you are not using the correct patch cluster.
Install Solaris patch cluster 106541-12.
If you enable only SSL2 on the Administration server, then stop and start the Administration Server, you can no longer access it. The server seems to come up fine and leaves no errors in the error log, but it is not accessible.
Problem 394322 (HP-UX only). Poor SSL performance in single process mode
If there is a problem with poor SSL performance we recommend adding RqThrottleMinPerSocket 512 and MaxProcs X to the magnus.conf file, where X in the MaxProcs statement is greater than the number of CPUs in the system.
If you are using a JDK, download version 1.2.2, update ca122-20000726 or later from http://www.ibm.com/java/jdk/aix/index.html. Java support should work fine as installed. However, if your server hangs when processing servlets and JSPs, check that the following line is set properly:
in server_root/https-admserv/config/jvm12.conf.
If you mount a remote Novell Netware or Windows NT drive on your local NT system and assign a drive letter to it, the iPlanet web server always returns a "Not Found" error if you try to access any files from that drive through your web server. This happens even if you set up your document root or URL mappings to point to the remote drive.
See the workaround under General Known Problems and Solutions.
Problem 385457. Multi-Process Mode Not Supported
On Windows NT, multi-process mode is not supported. This means that the MaxProcs directive in the magnus.conf file cannot have a value greater than 1. For more information, see the magnus.conf appendix in the NSAPI Programmer's Guide.
This section includes information regarding internationalization issues.
Note that the English version of iWS4.1sp7 can be safely installed over an existing Internationalized/Localized build of an earlier version of iWS.
Problem 381384, 396154. Internationalization in Parameters
Sometimes problems occur when a user includes non-ASCII characters in a parameter passed to a servlet.
Set the context.global.parameterEncoding property in the contexts.properties file properly. If a servlet uses the ServletRequest.getParameter method, set parameterEncoding to auto and follow the instructions below.
The context.global.parameterEncoding property allows you determine the character encoding of servlet parameters. It has the following options:
Option
Description
Any supported encoding, as listed at http://java.sun.com/j2se/1.3/docs/guide/intl/encoding.doc.html
Uses the system default encoding. Set this option if the encoding of the servlet parameter data is the same as the system default encoding.
Use this option if you wish the response content-type (set using response.setContentType()) to be used for the servlet parameter data.
(Default) Tries to figure out the proper encoding from the charset if it is set in the Content-Type header. Otherwise, the system default encoding is used. Set this option to prevent misinterpretation of non-ASCII characters in servlet parameters.
When this property is set to auto, the server has to convert native characters into a java byte array before transforming them into the requested encoding. Therefore, performance is slightly better for a supported java character encoding or none.
If this option is specified, the servlet container looks for some hints for the character encoding to be used. The hint can be specified in two ways:
If a servlet uses the ServletRequest.getParameter method to retrieve values in form fields having something other than a supported Java character encoding, the parameterEncoding property must be set to auto (the default) in the contexts.properties file. Otherwise, the values extracted by the getParameter method are zeros or are undefined.
Because the original encoding used to enter data into form fields is lost when the data is URL-encoded, you must do the following:
res.setContentType("text/plain; charset=Shift_JIS");
For JSPs, set the response content type using a page directive, for example:
<%@ page contentType="text/html; charset=gb2312"%>
The ValiCert Web Server Validator is an NSAPI plug-in that adds automatic certificate validation, including CRL checking, to the iPlanet Web Server, Enterprise Edition. The product plugs into the iPlanet Web Server, Enterprise Edition, enabling you to check the revocation status of digital certificates issued by all major CAs. This added capability helps to protect you against exposure to liability and fraud that can occur if a user's certificate is lost or stolen. Specific benefits of the ValiCert Web Server Validator for iPlanet Web Server, Enterprise Edition include the following:
The ValiCert Web Server Validator is available for download from the iPlanet Web Server, Enterprise Edition 4.1 CD-ROM, under the directory labeled /valicert. For additional information about the Web Server Validator, and to download the latest version, please go to http://www.valicert.net/netscape.
If you have any questions, please contact ValiCert technical support at support@valicert.com.
This plug-in is allows the server to execute a program when certain thread load conditions are met so a load distribution product on the front-end can redistribute the load.
There are two methods that you can use to trigger the load balancer to increase or decrease load:
Standard: Base load decisions on the number of queued requests. This is a passive approach. By letting the queue fill up you are already delaying some requests. In this case you want the HighThreshold to be a low value and LowThreshold to be a high value.
Aggressive: Base load decisions on the number of active threads in the pool. This is designed to more tightly control the requests so that you would reduce the load before requests get queued.
For Unix platforms, you need to set up a specific thread pool for the plug-in to monitor. You can do this from the Admin screen by selecting your instance and choosing Thread Pools.
Create a new thread pool with the settings that you want, the Administrator's Guide has a good description of how to do this and what each setting means. You are probably okay with just setting the minimum and maximum threads.
Configuring thread pools will add something like the following example into your server_root/https-instance/config/obj.conf file:
Init name="sleep" MinThreads="1" MaxThreads="10" EarlyInit="yes" fn="thread-pool-init"
In order to enable the plug-in, you need to modify obj.conf manually. This should look something like this:
Init fn="load-modules" funcs="init-resonate" shlib="server_root/bin/https/lib/libresonate.so"
Init fn="init-resonate" ThreadPool="sleep" EventExePath="/tools/ns/bin/perl5" LateInit="yes" CmdLow="/usr/netscape/ent41/plugins/loadbal/CmdLow.pl" CmdHigh="/usr/netscape/ent41/plugins/loadbal/CmdHigh.pl"
The init-resonate function can take the following parameters:
You must specify LateInit="yes" when loading this module. This is because the module creates a monitoring thread and this monitoring thread needs to start after ns-httpd has started.
Note
Setting LogVerbose on in magnus.conf will cause the server to print a lot of information to the error log on how the plug-in is configured and when it is invoked.
A sample of this is shown below:
[12/Jun/2000:09:36:35] verbose (20685): Resonate plugin watching thread pool sleep
[12/Jun/2000:09:36:35] verbose (20685): Resonate plugin aggressive setting is
FALSE
[12/Jun/2000:09:36:35] verbose (20685): Resonate plugin poll time set to 2000
[12/Jun/2000:09:36:35] verbose (20685): Resonate plugin HighThreshold set to 5
[12/Jun/2000:09:36:35] verbose (20685): Resonate plugin LowThreshold set to 1
[12/Jun/2000:09:36:35] verbose (20685): Resonate plugin event executable path set
to /tools/ns/bin/perl5
[12/Jun/2000:09:36:35] verbose (20685): Resonate plugin low command set to
/usr/netscape/ent41/plugins/loadbal/CmdLow.pl
[12/Jun/2000:09:36:35] verbose (20685): Resonate plugin high command set to
/usr/netscape/ent41/plugins/loadbal/CmdHigh.pl
This is what will the log entries will look like when LogVerbose on is set and the plugin is activated:
[12/Jun/2000:09:40:12] verbose (20699): Resonate plugin reducing load.
[12/Jun/2000:09:40:14] verbose (20699): Resonate plugin reducing load.
[12/Jun/2000:09:40:16] verbose (20699): Resonate plugin reducing load.
[12/Jun/2000:09:40:18] verbose (20699): Resonate plugin reducing load.
[12/Jun/2000:09:40:20] verbose (20699): Resonate plugin reducing load.
[12/Jun/2000:09:40:30] verbose (20699): Resonate plugin increasing load.
A simple way to test the load balancer is to use an NSAPI that prints a little HTML page and then calls sleep() for a period to simulate execution time. This way one can build up a simulated load on the server and ensure that the load balancer commands are working properly.
To configure the sample program, first we want to add a new MIME type so this isn't run for every request. Modify config/mime.types and add a line like this:
type=magnus-internal/sleep exts=sleep
Then create a file in your document-root directory with the extension of .sleep. It doesn't matter if anything is in this file, it is used as a placeholder only.
To load the module into the server, add a line like this to your obj.conf, changing shlib to the location of the library. You also have to set pool to the name of the thread pool you defined earlier:
Init fn="load-modules" funcs="dosleep" shlib="/usr/netscape/ent41/plugins/nsapi/examples/dosleep.so" pool="sleep"
Then add this Service line where the others are found (note that order is not important):
Service method="(GET|HEAD)" fn="dosleep" duration="10" type="magnus-internal/sleep"
The argument duration tells the server how long to sleep for each request in seconds.
Now start your server and you should be ready to go to test the load balancer plug-in. The NSAPI will keep the threads busy long enough to similar whatever load you want. The plug-in is tested by retrieving the .sleep file you created earlier.
Nothing special needs to be done in magnus.conf. The only setting that will affect the plug-in is LogVerbose on. Below is a sample obj.conf.
# Sun Netscape Alliance - obj.conf
# You can edit this file, but comments and formatting changes
# might be lost when the admin server makes changes.
Init fn="flex-init" access="/usr/netscape/ent41/https-resonate/logs/access"
format.access="%Ses->client.ip% - %Req->vars.auth-user% [%SYSDATE%]
\"%Req->reqpb.clf-request%\" %Req->srvhdrs.clf-status%
%Req->srvhdrs.content-length%"
Init fn="load-types" mime-types="mime.types"
Init fn="load-modules" funcs="init-resonate"
shlib="/usr/netscape/ent41/bin/https/lib/libresonate.so"
Init name="sleep" MinThreads="1" MaxThreads="10" EarlyInit="yes"
fn="thread-pool-init"
Init fn="init-resonate" ThreadPool="sleep" EventExePath="/tools/ns/bin/perl5"
LateInit="yes" CmdLow="/usr/netscape/ent41/plugins/loadbal/CmdLow.pl"
CmdHigh="/usr/netscape/ent41/plugins/loadbal/CmdHigh.pl" HighThreshold="2"
LowThreshold="5"
Init fn="load-modules" funcs="dosleep"
shlib="/usr/netscape/ent41/plugins/nsapi/examples/dosleep.so" pool="sleep"
Init fn="load-modules"
shlib="/usr/netscape/ent41/bin/https/lib/libNSServletPlugin.so"
funcs="NSServletEarlyInit,NSServletLateInit,NSServletNameTrans,NSServletService"
shlib_flags="(global|now)"
Init fn="NSServletEarlyInit" EarlyInit="yes"
Init fn="NSServletLateInit" LateInit="yes"
<Object name="default">
NameTrans fn="NSServletNameTrans" name="servlet"
NameTrans fn="pfx2dir" from="/servlet" dir="/usr/netscape/ent41/docs/servlet"
name="ServletByExt"
NameTrans fn="pfx2dir" from="/ns-icons" dir="/usr/netscape/ent41/ns-icons"
name="es-internal"
NameTrans fn="pfx2dir" from="/mc-icons" dir="/usr/netscape/ent41/ns-icons"
name="es-internal"
NameTrans fn="pfx2dir" from="/help" dir="/usr/netscape/ent41/manual/https/ug"
name="es-internal"
NameTrans fn="pfx2dir" from="/manual" dir="/usr/netscape/ent41/manual/https"
name="es-internal"
NameTrans fn="document-root" root="/usr/netscape/ent41/docs"
PathCheck fn="unix-uri-clean"
PathCheck fn="check-acl" acl="default"
PathCheck fn="find-pathinfo"
PathCheck fn="find-index" index-names="index.html,home.html"
ObjectType fn="type-by-extension"
ObjectType fn="force-type" type="text/plain"
Service method="(GET|HEAD)" fn="dosleep" duration="10"
type="magnus-internal/sleep"
Service method="(GET|HEAD)" type="magnus-internal/imagemap" fn="imagemap"
Service method="(GET|HEAD)" type="magnus-internal/directory" fn="index-common"
Service method="(GET|HEAD|POST)" type="*~magnus-internal/*" fn="send-file"
AddLog fn="flex-log" name="access"
</Object>
<Object name="cgi">
ObjectType fn="force-type" type="magnus-internal/cgi"
Service fn="send-cgi"
</Object>
<Object name="servlet">
ObjectType fn="force-type" type="text/html"
Service fn="NSServletService"
</Object>
<Object name="jsp092">
ObjectType fn="type-by-extension"
ObjectType fn="change-type" type="magnus-internal/jsp092"
if-type="magnus-internal/jsp"
Service fn="NSServletService" type="magnus-internal/jsp092"
</Object>
<Object name="ServletByExt">
ObjectType fn="force-type" type="magnus-internal/servlet"
Service type="magnus-internal/servlet" fn="NSServletService"
</Object>
<Object name="es-internal">
PathCheck fn="check-acl" acl="es-internal"
</Object>
<Object ppath="/usr/netscape/ent41/docs/.perf" 2=">">
Service fn="service-dump"
</Object>
#ifdef XP_WIN32
#define NSAPI_PUBLIC __declspec(dllexport)
#else /* !XP_WIN32 */
#define NSAPI_PUBLIC
#endif /* !XP_WIN32 */
#include "nsapi.h"
#define BUFFER_SIZE 1024
#ifdef __cplusplus
extern "C"
#endif
NSAPI_PUBLIC int dosleep(pblock *pb, Session *sn, Request *rq)
{
char buf[BUFFER_SIZE];
int length, duration;
char *dur = pblock_findval("duration", pb);
if (!dur) {
log_error(LOG_WARN, "dosleep", sn, rq, "Value for duration is not set.");
return REQ_ABORTED;
}
duration = atoi(dur);
/* We need to get rid of the internal content type. */
param_free(pblock_remove("content-type", rq->srvhdrs));
pblock_nvinsert("content-type", "text/html", rq->srvhdrs);
protocol_status(sn, rq, PROTOCOL_OK, NULL);
/* get ready to send page */
protocol_start_response(sn, rq);
/* fill the buffer with our message */
length = util_snprintf(buf, BUFFER_SIZE, "<title>%s</title><h1>%s</h1>\n",
"Sleeping", "Sleeping");
length += util_snprintf(&buf[length], BUFFER_SIZE - length, "Sample NSAPI that
is sleeping for %d seconds...\n", duration);
/* write the message to the client */
if (net_write(sn->csd, buf, length) == IO_ERROR)
{
return REQ_EXIT;
}
sleep(duration);
return REQ_PROCEED;
}
The following sections lists the database vendor client libraries supported on Linux and Solaris 8 by iPlanet Web Server, Enterprise Edition 4.1.
The following table lists the database vendor client libraries supported on Linux by iPlanet Web Server, Enterprise Edition 4.1:
Database
Library Supported
Note that LiveWire may exhibit problems on Linux platforms with all databases (except Informix) when running under stress conditions.
Support for Multithreaded Database Applications on Linux
Oracle Client SDK version 8.0.5 and DB2 Client SDK version 6.1 support multithreaded database applications.
The following table lists the database vendor client libraries supported on Solaris 8 by iPlanet Web Server, Enterprise Edition 4.1:
Database
Library Supported
Note that this is a Solaris 8 limitation since the ISVs are committed to certifying their databases at a later date.
Please note the following changes to the iPlanet Web Server, Enterprise Edition 4.1 documentation.
Problem 551796. <Client> Tag Incorrectly Documented.
The NSAPI Programmer's Guide on page 30 refers twice to host in <Client> tag description; this should read urlhost.
Problem 549629. MaxValuesSize Incorrectly Documented in Servlets Guide.
The iPlanet Web Server 4.1 Programmer's Guide to Servlets incorrectly refers on page 57 to MaxValuesSize, which does not exist. The correct parameter is MaxValueSize.
Problem 542720. KeepAliveTimeout When SSL Is Enabled.
The documentation in iPlanet Web Server 4.1 Performance Tuning, Sizing, and Scaling incorrectly states on page 9 that KeepAliveTimeout defaults to 0 when SSL in enabled. KeepAliveTimeout always defaults to 30 seconds.
Problem 543893. Administration Guide Gives Wrong Configuration for Multiple HW Virtual Servers
The documentation in the Administration Guide for iWs 4.1 incorrectly states that you can configure multiple hardware virtual servers on the same IP address by assigning a unique port number for each hardware virtual server through the user interface. The port option cannot be specified via the user interface, but is a valid option. The user interface correctly creates the address= option.
The correct syntax to assign a unique port number for each hardware virtual server using the same IP address is:
Also, The NSAPI Programmer's Guide does not completely document address= or port= for the NameTrans directive.
Problem 534978. MMapSessionManager Incorrect in Programmer's Guide to Servlets (Appendix A)
The documentation in the Programmer's Guide to Servlets for iWs 4.1 incorrectly states that MMapSessionManager can be used for sharing session information across multiple processes possibly running on different machines. MMapSessionManager should not be used across different machines.
Problem 540048. Incorrect Separator for JRE/JDK Path
The Administrator's Guide states that the path in the start-jvm file should be separated with semicolons, which is true for NT; but the path should be separated by colons for Unix.
Problem 545084. Default Mode for Init Is Not LateInit.
The NSAPI Programmer's Guide incorrectly states that the default mode for Init is LateInit=yes. The default behavior is EarlyInit.
Problem with UseOutputStreamSize in NSAPI Programmer's Guide (Appendix B & G)
The NSAPI Programmer's Guide describes UseOutputStreamSize as a magnus.conf directive. UseOutputStreamSize is recognized in both magnus.conf and obj.conf. However, UseOutputStreamSize=0 only has meaning in obj.conf.
The functions that do not work in the magnus.conf, but do work in obj.conf are:
The NSAPI Programmer's Guide has incorrect syntax in the Logging Options section. Under flex-rotate-init, the manual describes a parameter of rotate-interval, but the example shows rotate-intervals. If you use the plural string, the server will not start and complains it cannot init that line as it does not see rotate-interval & rotate-start.
To correct this problem, change the syntax to rotate-interval, and the server starts and the access log is rotated.
Problem 307321. NSAPI Specification Verification
In Table 4.1 of Chapter 4, "Creating Custom SAFs," in the NSAPI Programmer's Guide, the NSAPI functions that retrieve the CONTENT_LENGTH and CONTENT_TYPE CGI variables should be as follows:
New password.conf Configuration File Information
Chapter 7, "Configuring Server Preferences," in the iPlanet Web Server Administrator's Guide has been updated to include the new password.conf configuration file. See the online version in the product, or see Starting and Stopping the Server.
In "Miscellaneous obj.conf Parameters" in Chapter 10, "Configuring the Server for Performance," in the iPlanet Web Server Administrator's Guide, the section that describes the nostat parameter should read as follows:
The on-line help states that the default value for the size of the DNS cache is 1024 entries. However, when you enable the DNS cache from the Performance Tuning page under the Preferences tab, you see 512 displayed in the Size of DNS Cache field.
Error in RqThrottle Description
In the Performance, Tuning, Sizing, and Scaling Guide and in the "Tuning Your Server for Performance" section of the Administrator's Guide, in the section called "About RqThrottle," it says that you can set the timeout period in obj.conf. That is not correct. Use the AcceptTimout parameter in magnus.conf to adjust this period.
In the Performance, Tuning, Sizing, and Scaling Guide and in the "Tuning Your Server for Performance" section of the Administrator's Guide, the instructions for enabling perfdump are incorrect. They say to add the following object to your obj.conf file after the default object:
<Object ppath="/usr/netscape/server4/docs/.perf">
Service fn = "service-dump"
</Object>
However, the line Service fn = "service-dump" is incorrect. There shouldn't be any spaces around the equals sign. The correct example is:
<Object ppath="/usr/netscape/server4/docs/.perf">
Service fn="service-dump"
</Object>
Obsolete Security Directives in magnus.conf
In Appendix B of the NSAPI Programmer's Guide, the ServerCert and ServerKey directives are listed, but they are obsolete in iPlanet Web Server 4.x.
Undocumented Security Directive in magnus.conf: CERTDefaultNickname
Appendix B of the NSAPI Programmer's Guide, omitted the CERTDefaultNickname directive. Here is the description:
In the "Configuring Server Preferences" chapter of the Administrator's Guide, in the section called "Restarting the Server Manually (Unix/Linux)," it says that you can use the -p option. This option is no longer valid.
In addition, you must use the -start option, and it must be the first option. The syntax should read as follows:
server_root/https-server_id/start -start [-option1 -option2 ... ]
In the manuals, the server instance directory is sometimes called https-server_id and sometimes called type-identifier. Both of these mean the same thing.
Problem 523053. Hardware Virtual Server Example Clarification
In the "Administering iPlanet Web Servers" chapter of the Administrator's Guide, an example is shown in the section called "Configuring Multiple Hardware Virtual Servers on the Same IP Address with Different Ports." For the example to work, you must include the full path to the document root of each virtual server in the dir parameter.
Problem 526592. Access Control API Changes
Access control API changes for iPlanet Web Server 4.x are summarized in the file server_root/plugins/nsacl/api-notes.html.
Problem 400510. Buffered Streams Parameters
In the NSAPI Programmer's Guide, flushTimer was incorrectly documented as a magnus.conf directive; it is an obj.conf parameter common to all Service SAFs, like the type, method, and query parameters. UseOutputStreamSize, ChunkedRequestBufferSize, and ChunkedRequestTimeout are both magnus.conf directives and obj.conf parameters common to all Service SAFs. The example at the end of Appendix G is correct.
In the NSAPI Programmer's Guide, one of the parameters of the deny-existence SAF is listed as bong-msg. This should be bong-file instead.
If you have problems with iPlanet Web Server, contact iPlanet customer support using one of the following mechanisms:
So that we can best assist you in resolving problems, please have the following information available when you contact support:
You may also find it useful to subscribe to the following interest groups, where iPlanet Web Server topics are discussed:
Useful iPlanet information can be found at the following Internet locations:
For iPlanet Web Server, Enterprise Edition 4.1 installation instructions, see the Installation and Migration Guide.
For iPlanet Web Server, Enterprise Edition 4.1 administrator documentation, see the online help that accompanies the product. The Administrator's Guide and related documents are also posted at: http://developer.iplanet.com/docs/manuals/enterprise.html.
If you can't find the information you need, please contact: http://iplanet.com/support/support_services_10_0.html.
Last Updated December 19, 2001