Use WinSCP for Windows and SCP for Linux.
/etc/init.d/vco-server stop
/etc/init.d/vco-configurator stop
cp commons-collections-3.2.2.jar /var/lib/vco/app-server/deploy/vco/WEB-INF/lib/
rm /var/lib/vco/app-server/deploy/vco/WEB-INF/lib/commons-collections-3.2.1.jar
chown vco:vco /var/lib/vco/app-server/deploy/vco/WEB-INF/lib/commons-collections-3.2.2.jar
cp commons-collections-3.2.2.jar /var/lib/vco/configuration/lib/o11n/
rm /var/lib/vco/configuration/lib/o11n/commons-collections-3.2.1.jar
chown vco:vco /var/lib/vco/configuration/lib/o11n/commons-collections-3.2.2.jar
/etc/init.d/vco-server start
/etc/init.d/vco-configurator start
net stop vCOConfiguration
net stop VMwareOrchestrator
commons-collections-3.2.1.jar
with commons-collections-3.2.2.jar
in the following locations:orchestrator_install_folder\app-server\deploy\vco\WEB-INF\lib\
orchestrator_install_folder\configuration\lib\o11n\
net start vCOConfiguration
net start VMwareOrchestrator
Use WinSCP for Windows and SCP for Linux.
/etc/init.d/vcod stop
/etc/init.d/jettyd stop
cp /opt/vmo/app-server/server/vmo/lib/commons-collections.jar ./
rm /opt/vmo/app-server/server/vmo/lib/commons-collections.jar
cp commons-collections-3.2.2.jar /opt/vmo/app-server/server/vmo/lib/
chown vco:vco /opt/vmo/app-server/server/vmo/lib/commons-collections-3.2.2.jar
rm /opt/vmo/configuration/jetty/lib/ext/commons-collections.jar
cp commons-collections-3.2.2.jar /opt/vmo/configuration/jetty/lib/ext/
chown vco:vco /opt/vmo/configuration/jetty/lib/ext/commons-collections-3.2.2.jar
/etc/init.d/vcod start
/etc/init.d/jettyd start
net stop vCOConfiguration
net stop VMwareOrchestrator
commons-collections.jar
with commons-collections-3.2.2.jar
in the following locations:orchestrator_install_folder\app-server\server\vmo\lib\commons-collections.jar
orchestrator_install_folder\configuration\jetty\lib\ext\commons-collections.jar
net start vCOConfiguration
net start VMwareOrchestrator
You can revert the changes if you find a problem with Orchestrator, after you applied the JAR file.
$ /etc/init.d/vco-server stop
$ /etc/init.d/vco-configurator stop
-Dorg.apache.commons.collections.enableUnsafeSerialization=true
to the JVM_OPTS property files located in /var/lib/vco/app-server/bin/setenv.sh and /var/lib/vco/configuration/bin/setenv.sh. /etc/init.d/vco-server start
/etc/init.d/vco-configurator start
net stop vCOConfiguration
net stop VMwareOrchestrator
wrapper.java.additional.
[next number]="-Dorg.apache.commons.collections.enableUnsafeSerialization=true"
to the Java Additional Parameters section, located in the following files:orchestrator_install_folder\app-server\bin\wrapper.conf
orchestrator_install_folder\app-server\bin\wrapper-auto.conf
orchestrator_install_folder\configuration\bin\wrapper.conf
orchestrator_install_folder\configuration\bin\wrapper-auto.conf
net start vCOConfiguration
net start VMwareOrchestrator
/etc/init.d/vcod stop
/etc/init.d/jettyd stop
wrapper.java.additional.[next number]="-Dorg.apache.commons.collections.enableUnsafeSerialization=true"
to the property files located in /opt/vmo/app-server/bin/wrapper.conf and /opt/vmo/configuration/jetty/jetty-service.conf. /etc/init.d/vcod start
/etc/init.d/jettyd start
net stop vCOConfiguration
net stop VMwareOrchestrator
wrapper.java.additional.[next number]="-Dorg.apache.commons.collections.enableUnsafeSerialization=true"
to the Java Additional Parameters section, located in the following files:orchestrator_install_folder\app-server\bin\wrapper.conf
orchestrator_install_folder\configuration\jetty-service.conf
net start vCOConfiguration
net start VMwareOrchestrator
If something tries to use forbidden classes, a warning is saved in the Orchestrator log, which is similar to the following example:
WARN {} [Filter] Throwable thrown during doFilter on request with URI: /vco/webremoting/vcofactory.service and Query: nullSerialization support for org.apache.commons.collections.functors.InvokerTransformer is disabled for security reasons.
To reenable the support, you must set the org.apache.commons.collections.enableUnsafeSerialization
system property to true, but you must ensure that your application does not deserialize objects from untrusted sources.