PQ54572: PROBLEMS DEPLOYING SIGNED JAR FILE.

APAR status
Closed as program error.

Error description
A customer is experiencing a problem deploying signed jar
files, and
has an ear file that contains some third party helper classes
in a  signed jar file (log.jar). This jar file was signed using
Netscape's "signtool" and it creates a META-INF/manifest.mf
entry. When deploying this ear using the "Install Enterprise
Application wizard of
the WebSphere Application Server Advanced Edition(AE) 4.0.1
Admin Console, it will
create a second entry named META-INF/MANIFEST.MF in the jar
file.
But according to the JDK(TM) 1.2 documentation (docs guide jar
manif
est.html) it should recognize (and use) the existing manifest.
Local fix Problem summary
****************************************************************
* USERS AFFECTED: WebSphere Application Server users           *
*                 attempting to deploy EAR files               *
*                 containing signed jar files.                 *
****************************************************************
* PROBLEM DESCRIPTION: Signed jar files cause a security       *
*                      exception to be thrown.                 *
****************************************************************
* RECOMMENDATION:                                              *
****************************************************************
During install/deploy, common (utility) .jar files contained
within an EAR file were modified.  The MANIFEST.MF file in the
JARs was being reserialized, which could change the order of
the manifest entries and thus corrupt signed JARs.
Problem conclusion
The fix is to preserve the contents of the utility JARs
exactly during install.
*****************************************************
This APAR was originally closed as a suggestion, but it
was decided to make this fix available in 4.0.4.
Temporary fix Comments
APAR information
APAR number PQ54572
Reported component name WEBSPHERE AE AI
Reported component ID 5630A2200
Reported release 400
Status CLOSED PER
PE NoPE
HIPER NoHIPER
Submitted date 2001-11-09
Closed date 2002-05-23
Last modified date 2003-04-24

APAR is sysrouted FROM one or more of the following:

APAR is sysrouted TO one or more of the following:

Modules/Macros
WCCM          

Fix information
Fixed component name WEBSPHERE AE AI
Fixed component ID 5630A2200

Applicable component levels
R400 PSY    UP


Document Information


Product categories: Software > Application Servers > Distributed Application & Web Servers > WebSphere Application Server > General
Operating system(s):
Software version: 400
Software edition:
Reference #: PQ54572
IBM Group: Software Group
Modified date: Apr 24, 2003