Fixes are available
Java SDK 1.5 SR8 Cumulative Fix for WebSphere Application Server
Java SDK 1.5 SR8 Cumulative Fix for WebSphere Application Server
Java SDK 1.5 SR10 Cumulative Fix for WebSphere Application Server
6.1.0.31: Java SDK 1.5 SR11 FP1 Cumulative Fix for WebSphere Application Server
6.1.0.33: Java SDK 1.5 SR12 FP1 Cumulative Fix for WebSphere
6.1.0.29: Java SDK 1.5 SR11 Cumulative Fix for WebSphere Application Server
6.1.0.35: Java SDK 1.5 SR12 FP2 Cumulative Fix for WebSphere
6.1.0.37: Java SDK 1.5 SR12 FP3 Cumulative Fix for WebSphere
6.1.0.39: Java SDK 1.5 SR12 FP4 Cumulative Fix for WebSphere Application Server
6.1.0.41: Java SDK 1.5 SR12 FP5 Cumulative Fix for WebSphere Application Server
6.1.0.43: Java SDK 1.5 SR13 Cumulative Fix for WebSphere Application Server
6.1.0.45: Java SDK 1.5 SR14 Cumulative Fix for WebSphere Application Server
6.1.0.47: WebSphere Application Server V6.1 Fix Pack 47
6.1.0.47: Java SDK 1.5 SR16 Cumulative Fix for WebSphere Application Server
6.1.0.9: WebSphere Application Server V6.1 Fix Pack 9 for Solaris
APAR status
Closed as program error.
Error description
Java 2 Security warning SEC0314W when an application in WebSphere Application Server attempts to read a system property. The was.policy file of the application may look like: ---------------------------------------------------------------- grant codeBase "file:${application}" { permission java.io.FilePermission "/tmp/class/-", "read"; permission java.io.FilePermission "/tmp/lib/-", "read"; permission java.io.FilePermission "/tmp/log/-", "read, write"; permission java.io.FilePermission "/tmp/fdss/-", "read"; permission java.io.FilePermission "/home/www/-", "read"; permission java.security.SecurityPermission "setProperty.*"; permission java.security.SecurityPermission "getProperty.*"; permission java.util.PropertyPermission "*", "read, write"; permission java.lang.RuntimePermission "getClassLoader"; }; ---------------------------------------------------------------- The error in the log may look like: ---------------------------------------------------------------- [06/11/27 20:21:47:430 JST] 0000001b SecurityManag W SECJ0314W: Current Java 2 Security policy reported a potential violation of Java 2 Security Permission. Please refer to InfoCenter for further information. Permission: ibm.was.enable.wsjar.connection.getcontexttype : Access denied (java.util.PropertyPermission ibm.was.enable.wsjar.connection.getcontexttype read) Code: org.eclipse.osgi.framework.internal.protocol.URLStreamHandlerPro xy in {file:/usr/IBM/WebSphere/AppServer/plugins/org.eclipse.osgi_3.1. 2.jar} Stack Trace: java.security.AccessControlException: Access denied (java.util.PropertyPermission ibm.was.enable.wsjar.connection.getcontexttype read) at java.security.AccessController.checkPermission(AccessController. java:104) at java.lang.SecurityManager.checkPermission(SecurityManager.java:5 47) at com.ibm.ws.security.core.SecurityManager.checkPermission(Securit yManager.java:189) at java.lang.SecurityManager.checkPropertyAccess(SecurityManager.ja va:1300) at java.lang.System.getProperty(System.java:368) at java.lang.System.getProperty(System.java:353) at java.lang.Boolean.getBoolean(Boolean.java:236) at com.ibm.ws.classloader.Handler$ClassLoaderURLConnection.<clinit> (Handler.java:166) at java.lang.J9VMInternals.initializeImpl(Native Method) at java.lang.J9VMInternals.initialize(J9VMInternals.java:177) at com.ibm.ws.classloader.Handler.openConnection(Handler.java:50) at org.eclipse.osgi.framework.internal.protocol.URLStreamHandlerPro xy.openConnection(URLStreamHandlerProxy.java:109) ----------------------------------------------------------------
Local fix
Remove the PropertyPermission from this file: WAS_USR_HOME/config/cells/CELL/nodes/NODE/app.policy
Problem summary
**************************************************************** * USERS AFFECTED: WebSphere Application Server users who use * * ClassLoader resource loading with Java 2 * * security enabled and who have removed the * * permission for reading system properties. * **************************************************************** * PROBLEM DESCRIPTION: A security exception occurs while * * initializing the class that implements * * URLConnection. * **************************************************************** * RECOMMENDATION: * **************************************************************** The subclass of URLConnection reads a system property when it is initialized. If the application does not have permission to read this system property, then a security exception will be thrown.
Problem conclusion
The system property is now read earlier during server startup while the executing code has the system security context. The fix for this APAR is currently targeted for inclusion in fixpaks 5.1.1.14, 6.0.2.19, and 6.1.0.9. Please refer to the recommended updates page for delivery information: http://www.ibm.com/support/docview.wss?rs=180&uid=swg27004980
Temporary fix
Comments
APAR Information
APAR number
PK39535
Reported component name
WEBS APP SERV N
Reported component ID
5724H8800
Reported release
61A
Status
CLOSED PER
PE
NoPE
HIPER
NoHIPER
Special Attention
NoSpecatt
Submitted date
2007-02-16
Closed date
2007-02-22
Last modified date
2007-02-22
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Modules/Macros
CLASSLDR
Fix information
Fixed component name
WEBS APP SERV N
Fixed component ID
5724H8800
Applicable component levels
R60A PSY
UP
R60H PSY
UP
R60I PSY
UP
R60P PSY
UP
R60S PSY
UP
R60W PSY
UP
R60Z PSY
UP
R61A PSY
UP
R61H PSY
UP
R61I PSY
UP
R61P PSY
UP
R61S PSY
UP
R61W PSY
UP
R61Z PSY
UP
Document Information
Modified date:
29 December 2021