APAR status
Closed as program error.
Error description
Client has application that is trying to authenticate the same
user concurrently with two applications and sees the following
error.
9/1/04 12:12:30:022 EDT] 630fc5fa JaasLoginHelp <
jaas_login(realm,user,password, auth_mech)
[9/1/04 12:12:30:022 EDT] 630fc5fa JaasLoginHelp <
jaas_login(realm,user,password)
[9/1/04 12:12:29:989 EDT] 694145fb LdapRegistryI E SECJ0336E:
Authentication failed for user AdminUser because of the
following
exception java.lang.NullPointerException
at com.sun.jndi.ldap.LdapCtx.<init>(LdapCtx.java:328)
at com.sun.jndi.ldap.LdapCtx.c_lookup(LdapCtx.java:1036)
at
com.sun.jndi.toolkit.ctx.ComponentContext.p_lookup(ComponentCont
ext.java
:541)
at
com.sun.jndi.toolkit.ctx.PartialCompositeContext.lookup(PartialC
omposite
Conte
Local fix Problem summary
****************************************************************
* USERS AFFECTED: WebSphere Application Server security *
* users with LDAP registry *
****************************************************************
* PROBLEM DESCRIPTION: Authentication may fail for concurrent *
* logins. *
****************************************************************
* RECOMMENDATION: *
****************************************************************
During security initialization at server startup, if
multiple applications attempt to login at the same time, an
authentication error may occur.
This failure can occur at the bind operation used to
authenticate the user ID and password, or subsequent search
requests to obtian user specificinformation.
Problem conclusion
Code was modified to ensure that the rootDSE is thread safe,
so two threads do not attempt to concurrnently initialize a
rootDSE and store it in the same object reference.
Code was also added to prevent a rootDSE from being
destroyed while it is used by another thread.
Temporary fix
provided test fix
Comments
APAR information |
APAR number |
PQ93671 |
Reported component name |
WAS BASE 5.0 |
Reported component ID |
5630A3600 |
Reported release |
10A |
Status |
CLOSED PER |
PE |
NoPE |
HIPER |
NoHIPER |
Special Attention |
NoSpecatt |
Submitted date |
2004-09-01 |
Closed date |
2004-10-05 |
Last modified date |
2004-10-05 |
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Modules/Macros
Publications Referenced
Applicable component levels |
R00A PSY |
UP |
R00H PSY |
UP |
R00I PSY |
UP |
R00P PSY |
UP |
R00S PSY |
UP |
R00W PSY |
UP |
R10A PSY |
UP |
R10H PSY |
UP |
R10I PSY |
UP |
R10P PSY |
UP |
R10S PSY |
UP |
R10W PSY |
UP |
|