APAR status
Closed as program error.
Error description
When using WSIF inside WebSphere Application Server with Java 2
Security enabled, the following exceptions may be seen:
[10/29/03 12:49:29:078 CET] 34f417ed SecurityManag W SECJ0314W:
Current Java 2 Security policy reported a potential violation of
Java 2 Security Permission. Please refer to Problem
Determination Guide for further information.
Permission:
accessDeclaredMembers : access denied
(java.lang.RuntimePermission accessDeclaredMembers)
Code:
org.apache.wsif.providers.ejb.WSIFPort_EJB in
{file:/C:/WebSphere/AppServer/lib/wsif.jar}
Stack Trace:
java.security.AccessControlException: access denied
(java.lang.RuntimePermission accessDeclaredMembers)
at
java.security.AccessControlContext.checkPermission(AccessControl
Context.java(Compiled Code))
at
java.security.AccessController.checkPermission(AccessController.
java(Compiled Code))
at
java.lang.SecurityManager.checkPermission(SecurityManager.java(C
ompiled Code))
at
com.ibm.ws.security.core.SecurityManager.checkPermission(Securit
yManager.java(Compiled Code))
at
java.lang.SecurityManager.checkMemberAccess(SecurityManager.java
(Compiled Code))
at java.lang.Class.checkMemberAccess(Class.java(Compiled Code))
at java.lang.Class.getDeclaredMethod(Class.java:1346)
at
org.apache.wsif.providers.ejb.WSIFPort_EJB.getEjbObjectClass(WSI
FPort_EJB.java:281)
at
org.apache.wsif.providers.ejb.WSIFPort_EJB.getEjbObjectMethods(W
SIFPort_EJB.java:318)
at
org.apache.wsif.providers.ejb.WSIFOperation_EJB.<init>(WSIFOpera
tion_EJB.java:191)
at
org.apache.wsif.providers.ejb.WSIFPort_EJB.getDynamicWSIFOperati
on(WSIFPort_EJB.java:152)
at
org.apache.wsif.providers.ejb.WSIFPort_EJB.createOperation(WSIFP
ort_EJB.java:385)
...
Other Java 2 Security Exceptions may also occur.
Local fix
Disable Java 2 Security on the Application Server.
Problem summary
****************************************************************
* USERS AFFECTED: Users of WebSphere Application Server and *
* WSIF when Java 2 Security is enabled. *
****************************************************************
* PROBLEM DESCRIPTION: WSIF makes several method calls which *
* are protected by the WebSphere Java 2 *
* security manager. If Java 2 security *
* is enforced on the Application *
* Server, WSIF may cause a *
* SecurityException to be thrown. This *
* is known to occur when using the EJB *
* and Java providers. An example *
* exception is: *
* *
* java.security.AccessControlException: *
* access denied *
* (java.lang.RuntimePermission *
* accessDeclaredMembers) *
****************************************************************
* RECOMMENDATION: *
****************************************************************
Java 2 doPrivilege code blocks were missing in the WSIF code
which grant sufficient privileges to pass the security checks
Problem conclusion
It is recommended that customers encountering this problem
should install WebSphere Application Server V5.1.0 with
cumulative fix 2, WebSphere Application Server V5.0.2 with
cumulative fix 5.
Temporary fix Comments
APAR information |
APAR number |
PQ84953 |
Reported component name |
WAS ENTERPRISE |
Reported component ID |
5630A3700 |
Reported release |
00W |
Status |
CLOSED PER |
PE |
NoPE |
HIPER |
NoHIPER |
Special Attention |
NoSpecatt |
Submitted date |
2004-02-19 |
Closed date |
2004-03-04 |
Last modified date |
2004-03-04 |
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Modules/Macros
Publications Referenced
|
Fix information |
Fixed component name |
WAS BASE 5.0 |
Fixed component ID |
5630A3600 |
Applicable component levels |
R003 PSY |
UP |
R00A PSY |
UP |
R00H PSY |
UP |
R00I PSY |
UP |
R00P PSY |
UP |
R00S PSY |
UP |
R00W PSY |
UP |
R103 PSY |
UP |
R10A PSY |
UP |
R10H PSY |
UP |
R10I PSY |
UP |
R10P PSY |
UP |
R10S PSY |
UP |
R10W PSY |
UP |
|