sample policy file troubles (cont...)

10: I run with "-Djava.security.debug=access,failure" in my
CATALINA_OPTS.  The output from tomcat tells me:

access: access denied (java.lang.RuntimePermission
accessClassInPackage.org.apache.catalina.loader)
java.lang.Exception: Stack trace
        at java.lang.Thread.dumpStack(Thread.java:1158)
        at java.security.AccessControlContext.checkPermission(AccessControlContext.java:253)
        at java.security.AccessController.checkPermission(AccessController.java:427)
        at java.lang.SecurityManager.checkPermission(SecurityManager.java:532)
        at java.lang.SecurityManager.checkPackageAccess(SecurityManager.java:1512)
        at java.lang.Class.checkMemberAccess(Class.java:2132)
        at java.lang.Class.getMethod(Class.java:1578)
        at org.orbeon.oxf.xml.TomcatClasspathFix.processManifest(TomcatClasspathFix.java:34)
        at org.orbeon.oxf.xml.TomcatClasspathFix.<clinit>(TomcatClasspathFix.java:98)
        at org.orbeon.oxf.xml.XercesSAXParserFactoryImpl.<clinit>(XercesSAXParserFactoryImpl.java:39)

This appears to be fixed by adding the following to the grant for ops.jar:
   permission java.lang.RuntimePermission
     "accessClassInPackage.org.apache.catalina.loader";

11: Having fixed everything so far, I get:
access: access denied (java.lang.reflect.ReflectPermission suppressAccessChecks)
java.lang.Exception: Stack trace
        at java.lang.Thread.dumpStack(Thread.java:1158)
        at java.security.AccessControlContext.checkPermission(AccessControlContext.java:253)
        at java.security.AccessController.checkPermission(AccessController.java:427)
        at java.lang.SecurityManager.checkPermission(SecurityManager.java:532)
        at java.lang.reflect.AccessibleObject.setAccessible(AccessibleObject.java:107)
        at org.apache.commons.beanutils.MethodUtils.getMatchingAccessibleMethod(MethodUtils.java:578)
        at org.apache.commons.beanutils.MethodUtils.invokeMethod(MethodUtils.java:243)
        at org.apache.commons.digester.CallMethodRule.end(CallMethodRule.java:505)
        at org.apache.commons.digester.Rule.end(Rule.java:276)
        at org.apache.commons.digester.Digester.endElement(Digester.java:1058)
        at orbeon.apache.xerces.parsers.AbstractSAXParser.endElement(AbstractSAXParser.java:585)
        at orbeon.apache.xerces.xinclude.XIncludeHandler.endElement(XIncludeHandler.java:766)

I've tried to fixed this by adding

permission java.lang.reflect.ReflectPermission "suppressAccessChecks";

to the grant for commons-beanutils-1_5.jar and private/xercesImpl_2_6_2_orbeon.jar and neither clears up the problem.

12: xerces.properties is being hit as well.  I've tried adding a permission entry to ops.jar, but this does not clear up the error.


Thoughts?

Bob





--
You receive this message as a subscriber of the [hidden email] mailing list.
To unsubscribe: mailto:[hidden email]
For general help: mailto:[hidden email]?subject=help
ObjectWeb mailing lists service home page: http://www.objectweb.org/wws

Robert Bateman wrote: Sorry for the delay. I don't have any particular though, except that
policy files are, obviously, hell.

-Erik




--
You receive this message as a subscriber of the [hidden email] mailing list.
To unsubscribe: mailto:[hidden email]
For general help: mailto:[hidden email]?subject=help
ObjectWeb mailing lists service home page: http://www.objectweb.org/wws