PQ52815: AFTER PQ58003 SSL ENABLED PLUGIN HAS A LIMITATION ON SOLARIS WITH THE IPLANET WEBSERVER

 A fix is available

PQ52815, 4.0.1: iPlanet/Domino Plugin with SSL on Solaris Doesn't Work



APAR status
Closed as program error.

Error description
Websphere Application Server V4.0.1 Advanced Edition
iPlanet webserver V4.1 SP7 on Solaris 8
Customer scenario:
 They have above environment. Webserver and AppServer are to be
  on separate machines and communication channel has to be SSL
  encrypted as required by the security standards.  iPlanet is
  a webserver standard for customer and cannot be changed to an
  other web server.
Websphere V4 AE System Handbook (SG246176 - redbook):
 We were unable to test any scenarios within this test
  environment that required SSL support by the iPlanet webserve
  plugin.
 ....
 The GSK (SSL toolkit used by the plugin) requires that all
  applications be compiled with Sun Workshop 5 in order for SSL
  to work on Solaris.  iPlanet on Solaris is compiled with Sun
  Workshop 4.2 causing exceptions not to be handled correctly i
  the GSK code.  There are no workarounds for this limitation,
  so the only webservers that support the plugin withSSL on
  Solaris are IHS and Apache (compiled with Sun Workshop 5).
 ......
 Similar information is in WSAS Release Notes:
   Defects 105995, 105995.RN, and 106012 - SSL enabled plugin
    support. The SSL enabled plugin is not supported on Solaris
    with iPlanet webserver.  Nor is the SSL enabled plugin
    supported on HP-UX with Apache HTTP Server or with iPlanet
    webserver Version 4.1 SP7.
Local fix
L3/Development Plugin:
 This limitation is a result of moving up to GSKIT 5.0
 In further analysis of the problem, we have found that this
  limitation is removed by backing off to GSKIT 4.0 along with
  some code changes.
 This is for the limitations specified above when using the
  plugin with SSL and iPlanet and Domino combinations.
 We are working on an efix to prevent this limitation.
.
Efix is on wasdoc0/apars/PQ52815; must be ftp'd to customers as
it is too big for most email systems.
Problem summary
****************************************************************
* USERS AFFECTED: All WebSphere Application Server on Solaris  *
*                 users who use the iPlanet plugin and wish    *
*                 to have the plugin communicate with          *
*                 WebSphere Application Server using SSL.      *
****************************************************************
* PROBLEM DESCRIPTION: The iPlanet plugin for WebSphere        *
*                      Application Server did not support      *
*                      SSL on Solaris.                         *
****************************************************************
* RECOMMENDATION:                                              *
****************************************************************
The iPlanet plugin did not support SSL because the toolkit
used for this functionality required iPlanet be compiled
with Sun Workshop 5.0 and it is not.
Problem conclusion
Changed the iPlanet plugin so that on Solaris we loaded a
different version of the SSL toolkit that is compatible with
the compiler used by iPlanet.
*************************************
Note, the ZE fixer flag has been set on this APAR.  The 4.0.2
fixpack didn't properly install the GSKit library, so the GSKit
part of this fix is still required for 4.0.2 users.
Temporary fix Comments
APAR information
APAR number PQ52815
Reported component name WEBSPHERE AE SO
Reported component ID 5630A2202
Reported release 400
Status CLOSED PER
PE NoPE
HIPER NoHIPER
Submitted date 2001-09-26
Closed date 2001-10-09
Last modified date 2002-11-01

APAR is sysrouted FROM one or more of the following:

APAR is sysrouted TO one or more of the following:

Modules/Macros
PLUGIN          

SRLS

Fix information
Fixed component name WEBSPHERE AE SO
Fixed component ID 5630A2202

Applicable component levels
R400 PSY    UP


Document Information


Product categories: Software > Application Servers > Distributed Application & Web Servers > WebSphere Application Server > General
Operating system(s):
Software version: 400
Software edition:
Reference #: PQ52815
IBM Group: Software Group
Modified date: Nov 1, 2002