[GERONIMO-3938] Geronimo must add Java2 security to run with security manager - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Open
Priority: Major
Resolution: Unresolved
Affects Version/s: 2.1
Fix Version/s: Wish List
Component/s: security
Security Level: public (Regular issues)
Labels:
None
Environment:

Windows XP, JDK 1.5

Description

Attempting to start or stop Geronimo server with a Java 2 security manager causes Geronimo to throw AccessControlExceptions. This indicates that there are some priviledged access to system resources within the Geronimo runtime that are not guarded by AccessController.doPriviledged blocks.

To recreate, switch to Geronimo target bin directory.
Turn on the Java default security manager (e.g. JAVA_OPTS=-Djava.security.manager -Xms512m -Xmx512m)
Start Geronimo, either geronimo start or gsh.
See exception:
Exception in thread "main" java.lang.ExceptionInInitializerError
Caused by: java.security.AccessControlException: access denied (java.util.Proper
tyPermission org.apache.geronimo.gshell.bootstrap.Launcher.debug read)
at java.security.AccessControlContext.checkPermission(Unknown Source)
at java.security.AccessController.checkPermission(Unknown Source)
at java.lang.SecurityManager.checkPermission(Unknown Source)
at java.lang.SecurityManager.checkPropertyAccess(Unknown Source)
at java.lang.System.getProperty(Unknown Source)
at java.lang.Boolean.getBoolean(Unknown Source)
at org.apache.geronimo.gshell.bootstrap.Launcher.<clinit>(Launcher.java:
32)

Some programming hints given at Tuscany wiki at http://incubator.apache.org/tuscany/security-aware-programming-in-tuscany.html

Attachments

Activity

People

Assignee:: Unassigned

Reporter:: Daniel O. Becker

Votes:: 0 Vote for this issue

Watchers:: 0 Start watching this issue

Dates

Created:: 25/Mar/08 15:32

Updated:: 25/Mar/08 15:32