You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@geronimo.apache.org by "Matt Hogstrom (JIRA)" <de...@geronimo.apache.org> on 2006/06/13 04:51:30 UTC

[jira] Updated: (GERONIMO-1791) LDAP Security Realm created via Console can fail deployment

     [ http://issues.apache.org/jira/browse/GERONIMO-1791?page=all ]

Matt Hogstrom updated GERONIMO-1791:
------------------------------------

    Fix Version: 1.1.1
                     (was: 1.1)

> LDAP Security Realm created via Console can fail deployment
> -----------------------------------------------------------
>
>          Key: GERONIMO-1791
>          URL: http://issues.apache.org/jira/browse/GERONIMO-1791
>      Project: Geronimo
>         Type: Bug
>     Security: public(Regular issues) 
>   Components: security
>     Versions: 1.0, 1.1, 1.2
>  Environment: Geronimo 1.0.0
>     Reporter: Donald Woods
>     Assignee: Donald Woods
>     Priority: Minor
>      Fix For: 1.1.1
>  Attachments: G1791.patch, Geronimo-1791.patch
>
> Creation of an LDAP Security Realm through the Console can fail at runtime, due to a NullPointerException being thrown by the LDAPLoginModule not checking that the optional connectionProtocl and authentication attributes have not been supplied, while other attributes are being checked for null and empty string.
>  655: 17:43:45,328 WARN [TomcatGeronimoRealm] Login exception authenticating username "system"
> 656: javax.security.auth.login.LoginException: Error filling callback list
> 657:  at org.apache.geronimo.security.jaas.client.ServerLoginProxy.login(ServerLoginProxy.java:78)
> 658:  at org.apache.geronimo.security.jaas.client.JaasLoginCoordinator.performLogin(JaasLoginCoordinator.java:189)
> 659:  at org.apache.geronimo.security.jaas.client.JaasLoginCoordinator.login(JaasLoginCoordinator.java:113)
> 660:  at sun.reflect.GeneratedMethodAccessor218.invoke(Unknown Source)
> 661:  at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java(Compiled Code))
> 662:  at java.lang.reflect.Method.invoke(Method.java(Compiled Code))
> 663:  at javax.security.auth.login.LoginContext.invoke(LoginContext.java:699)
> 664:  at javax.security.auth.login.LoginContext.access$000(LoginContext.java:151)
> 665:  at javax.security.auth.login.LoginContext$4.run(LoginContext.java:634)
> 666:  at java.security.AccessController.doPrivileged1(Native Method)
> 667:  at java.security.AccessController.doPrivileged(AccessController.java(Compiled Code))
> 668:  at javax.security.auth.login.LoginContext.invokeModule(LoginContext.java:631)
> 669:  at javax.security.auth.login.LoginContext.login(LoginContext.java:557)
> 670:  at org.apache.geronimo.tomcat.realm.TomcatGeronimoRealm.authenticate(TomcatGeronimoRealm.java:332)
> 671:  at org.apache.geronimo.tomcat.realm.TomcatGeronimoRealm.authenticate(TomcatGeronimoRealm.java:282)
> 672:  at org.apache.catalina.authenticator.FormAuthenticator.authenticate(FormAuthenticator.java:256)
> 673:  at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:391)
> 674:  at org.apache.geronimo.tomcat.GeronimoStandardContext$SystemMethodValve.invoke(GeronimoStandardContext.java:273)
> 675:  at org.apache.geronimo.tomcat.valve.GeronimoBeforeAfterValve.invoke(GeronimoBeforeAfterValve.java:31)
> 676:  at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:126)
> 677:  at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:105)
> 678:  at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:107)
> 679:  at org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:526)
> 680:  at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:148)
> 681:  at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:856)
> 682:  at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.processConnection(Http11Protocol.java:744)
> 683:  at org.apache.tomcat.util.net.PoolTcpEndpoint.processSocket(PoolTcpEndpoint.java:527)
> 684:  at org.apache.tomcat.util.net.LeaderFollowerWorkerThread.runIt(LeaderFollowerWorkerThread.java:80)
> 685:  at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:684)
> 686:  at java.lang.Thread.run(Thread.java:570)
> 687: Caused by: javax.security.auth.login.LoginException: LDAP Error
> 688:  at org.apache.geronimo.security.realm.providers.LDAPLoginModule.login(LDAPLoginModule.java:162)
> 689:  at org.apache.geronimo.security.jaas.server.JaasLoginService.performLogin(JaasLoginService.java:236)
> 690:  at org.apache.geronimo.security.jaas.server.JaasLoginService$$FastClassByCGLIB$$95b84fc9.invoke(<generated>)
> 691:  at net.sf.cglib.reflect.FastMethod.invoke(FastMethod.java(Inlined Compiled Code))
> 692:  at org.apache.geronimo.gbean.runtime.FastMethodInvoker.invoke(FastMethodInvoker.java(Compiled Code))
> 693:  at org.apache.geronimo.gbean.runtime.GBeanOperation.invoke(GBeanOperation.java(Inlined Compiled Code))
> 694:  at org.apache.geronimo.gbean.runtime.GBeanInstance.invoke(GBeanInstance.java(Compiled Code))
> 695:  at org.apache.geronimo.gbean.runtime.RawInvoker.invoke(RawInvoker.java(Inlined Compiled Code))
> 696:  at org.apache.geronimo.kernel.basic.RawOperationInvoker.invoke(RawOperationInvoker.java(Compiled Code))
> 697:  at org.apache.geronimo.kernel.basic.ProxyMethodInterceptor.intercept(ProxyMethodInterceptor.java(Compiled Code))
> 698:  at org.apache.geronimo.security.jaas.server.JaasLoginServiceMBean$$EnhancerByCGLIB$$4883447f.performLogin(<gene
> rated>)
> 699:  at org.apache.geronimo.security.jaas.client.ServerLoginProxy.login(ServerLoginProxy.java:74)
> 700:  ... 29 more
> 701: Caused by: java.lang.NullPointerException
> 702:  at java.util.Hashtable.put(Hashtable.java(Compiled Code))
> 703:  at org.apache.geronimo.security.realm.providers.LDAPLoginModule.open(LDAPLoginModule.java:422)
> 704:  at org.apache.geronimo.security.realm.providers.LDAPLoginModule.authenticate(LDAPLoginModule.java:200)
> 705:  at org.apache.geronimo.security.realm.providers.LDAPLoginModule.login(LDAPLoginModule.java:155)
> 706:  ... 40 more
> Thanks to VAMSAVARDHANA Vamsi for finding this problem.

-- 
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
   http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see:
   http://www.atlassian.com/software/jira