PQ57584: INTERNAL APAR FOR WEBSPHERE APPLICATION SERVER V4.0.1 FOR Z/OS AND OS/390 | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
![]() |
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
![]() APAR status Closed as program error. Error description This is an internal APAR to ship fixes for defects found during internal testing of WebSphere Application Server V4.0.1 for z/OS and OS/390 and to ship fixes in V4.0.1 for APARs fixed in versions 3.5 and 4.0 of the product.Local fix Problem summary **************************************************************** * USERS AFFECTED: All users of the WebSphere Application * * Server Version V4.0.1 for z/OS and OS/390. * **************************************************************** * PROBLEM DESCRIPTION: This APAR includes fixes for defects * * found during internal testing of * * WebSphere Application Server V4.0.1 for * * z/OS and OS/390. It also includes * * fixes for V3.5 and V4.0 APARs that * * also apply to the V4.0.1 product. * * * * Internal defect descriptions: * * 79353 - * * There is no support for specifying * * common JAR files that are used by * * all applications. * * 79490 - * * The webcontainer.conf sample file * * shipped with WebSphere Application * * Server Version V4.0.1 for z/OS and * * OS/390 does not contain all of the Web * * security related properties. * * 79595 - * * When a JSP is requested, the * * Application Server compares the * * timestamps between the JSP source * * file and its class file, if one * * exists. * * 79543 - * * The client's browser sometimes does * * not return the LoginToken cookie * * used in FORM Web security when * * Cryptographic Services Facility is * * used. When this happens, the client * * is re-directed to the login page * * again. This is especially true when * * the Microsoft IE browser is used. * * 79663 - * * Change V4.0.1 service level to 5 * * 79775 - * * When a *.servlet file is built using * * WebSphere Studio 3.5 and below, a * * NullPointerException is thrown by the * * Version V4.0.1 Application Server when * * the file is packaged in a .war file. * * * * V4.0 APARs included: * * PQ53834 * * * * V3.5 APARs included: * * PQ55341 * * PQ57515 * **************************************************************** * RECOMMENDATION: * **************************************************************** This APAR includes fixes for internal defects found when testing Version V4.0.1 of the WebSphere Application Server for z/OS and OS/390. It also includes fixes for Version 3.5 and Version 4.0 APARs that also apply to Version 4.0.1. Internal Defect Summary: 79353 - There are cases where there might be classes which are used by all Web applications in the WebSphere Application Server. There was no single place where these classes can be placed so that every application can find it. A new environment variable WS_EXT_DIRS has been added to the current.env file that can be used to list common JAR files and directories. 79490 - Security related values and descriptions need to be added to the default web container.conf file that ships with the product. 79543 - The expiration value used for the cookie that contains a login token in the case of a forms based login contained an incorrect value. The cookie itself should have had a maxage = -1, which indicates to the browser to maintain the cookie in its memory cache for the life of the browser. The value was incorrectly calculated and set using WebAuth.LoginToken.Expiration. The life of the login itself continues to be maintained within the content of the encrypted login token. The Web container is able to determine the validity of the login independent of the actual cookie expiration. 79595 - The web container is performing unnecessary processing while serving JSPs. In particular, overhead is incurred to check for changes in Java Server Page source files even though the only supported way to propogate a new version of the JSP in the server is via re-deploying of the application and refresh of the Server Region instance. The unnecessary processing needs to be eliminated to reduce file system access overhead. 79663 - The service level needs to be changed from 4 to 5. 79775 - A NullPointerException is thrown when a *.servlet file is packaged in the .war file. (A *.servlet file is produced by WebSphere Studio V3.5 and below.) Inside the PageListServlet code we are getting a Servlet Object using a name from a wccm model, and even though we get a null value, we drive a method on that Object, which causes the NullPointerException. A null value for the Servlet Object is acceptable but driving a method on that Object is not. The following Version 3.5 and 4.0 APAR fixes are added to Version 4.0.1 and shipped with this APAR. Refer to the closing text for individual APARs for more information about the reported problem. The APAR Abstract information is provided here. PQ53834 - (V4.0) 404 VIRTUAL HOST OR WEB APPLICATION NOT FOUND WHEN THERE ARE NO DEPLOYEDWEBAPPS DEFINED IN THE WAS CONF. RCVD SERVER STOPPED. PQ55341 - (V3.5) ILLEGALSTATEEXCEPTION METHOD ( GETVALUE ) INVOKED ON HTTPSESSION OBJECT THAT IS NOT VALID PQ57515 - (V3.5) UPDATES TO ENABLE INSTRUMENTATION WERE INCOMPLETE IN APARProblem conclusion Defect 79353 - There are cases where there might be classes which are used by all Web applications in the WebSphere Application Server. There was no single place where these classes can be placed so that every application can find it. A new environment variable WS_EXT_DIRS has been added to the current.env file that can be used to list common JAR files and directories. Documentation: The following description of the new environment variable will be added to Appendix A of WebSphere Application Server V4.0.1 for z/OS and OS/390: Installation and Customization and Appendix A of WebSphere Application Server V4.0.1 for z/OS and OS/390: Assembling J2EE Applications: WS_EXT_DIRS=name,..., Specifies the common JAR files and directories that will be accessed by multiple applications running in the J2EE server instance. For the most current version of these publications, see the product library page at URL: http://www-4.ibm.com/software/webservers/appserv/zos_os390 /library.html Defect 79490 - All Web security related properties have been added to the webcontainer.conf file. Whenever possible, default values are used for these Web security related properties. Defect 79543 - The correct life of the LoginToken cookie is set to the browser session. This is true whether or not Cryptographic Services Facility is used. Defect 79595 - The timestamp comparison and JSP reload are no longer supported. Any changed JSP should be reassembled thru AAT and redeployed thru SMEUI. Defect 79663 - The Product Service Level is changed from 4 to 5, and the Product Service Descriptor is changed from L00PTF04 to L00PTF05 for both the V3.5 runtime and the Web container. Defect 79775 - Made changes to PageListServlet.java to check for null value before calling a method on the Object which was throwing the NullPointerException. For the following Version 4.0 and 3.5 APARs, please refer to the closing text for the individual APARs for the changes that were made. PQ53834 (V4.0) PQ55341 (V3.5) PQ57515 (V3.5) The following COMPID is affected by these changes: 5655A9800 R401 for z/OS and OS/390 The code changes are stored in CMVC under defects 79353, 79490, 79543, 79595, 79663, PQ53834, PQ55341, 79703, and 79775. 401Y EJSCASIN EJSCCLAS EJSCCMSV EJSCCNFG EJSCJNUT EJSCJNWR EJSCLOAD EJSCLOGR EJSCOEUT EJSCOSUT EJSCPLUG EJSCPLUT EJSCPOOL EJSCPROP EJSCRULS EJSCSTUB EJSCSVHS EJSCVALD EJSCVERS EJSCWSUT EJSJSVJR EJSJWBJR EJSJWCSC EJSJWCWC EJSLNLS EJSPWCNF EJSTLDAT EJSXASIN EJSXJVMX * Cross Reference between External and Internal NamesTemporary fix Comments
APAR is sysrouted FROM one or more of the following: APAR is sysrouted TO one or more of the following: Modules/Macros
|
Document Information |
Product categories: Software > Application Servers >
Distributed Application & Web Servers > WebSphere Application
Server for z/OS
Operating system(s):
Software version: 401
Software edition:
Reference #: PQ57584
IBM Group: Software Group
Modified date: Apr 1, 2002
(C) Copyright IBM Corporation 2000, 2006. All Rights Reserved.