Marten Lehmann wrote:

> Hello,
>
> I was setting fine grained permissions to my webapp, but always an
> exception was thrown. So I tried to use
>
> grant {
>   permission java.security.AllPermission;
> };
>
> but even with that, my application doesn't run (which it does without
> -security). When calling the site, I get:
>
> javax.servlet.ServletException: Servlet.init() for servlet action
> threw exception
> org.apache.catalina.authenticator.AuthenticatorBase.invoke (AuthenticatorBase.java:509)
>
> org.apache.catalina.valves.ErrorReportValve.invoke (ErrorReportValve.java:164)
>
> org.apache.coyote.tomcat5.CoyoteAdapter.service (CoyoteAdapter.java:211)
> org.apache.coyote.http11.Http11Processor.process (Http11Processor.java:805)
>
> org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.processConnection(Http11Protocol.java:696)
>
> org.apache.tomcat.util.net.TcpWorkerThread.runIt(PoolTcpEndpoint.java:605)
>
> org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:677)
>
>   java.lang.Thread.run (Thread.java:568)
>
> root cause
>
> java.lang.SecurityException: java.lang.reflect.InvocationTargetException
>   javax.security.auth.Subject$5.run(Subject.java:733)
>   java.security.AccessController.doPrivileged(Native Method)
>   javax.security.auth.Subject.createContext (Subject.java:717)
>   javax.security.auth.Subject.doAsPrivileged (Subject.java:708)
>   org.apache.catalina.security.SecurityUtil.execute (SecurityUtil.java:306)
>
> org.apache.catalina.security.SecurityUtil.doAsPrivilege (SecurityUtil.java:200)
>
> org.apache.catalina.security.SecurityUtil.doAsPrivilege (SecurityUtil.java:153)
>
> org.apache.catalina.authenticator.AuthenticatorBase.invoke (AuthenticatorBase.java:509)
>
> org.apache.catalina.valves.ErrorReportValve.invoke (ErrorReportValve.java:164)
>
> org.apache.coyote.tomcat5.CoyoteAdapter.service (CoyoteAdapter.java:211)
> org.apache.coyote.http11.Http11Processor.process (Http11Processor.java:805)
>
> org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.processConnection(Http11Protocol.java:696)
>
> org.apache.tomcat.util.net.TcpWorkerThread.runIt(PoolTcpEndpoint.java:605)
>
> org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:677)
>
>   java.lang.Thread.run (Thread.java:568)
>
> catalina.log says:
>
> INFO: Server startup in 8985 ms
> StandardWrapperValve[action]: Allocate exception for servlet action
> javax.servlet.ServletException: Servlet.init() for servlet action
> threw exception
> javax.servlet.ServletException: Servlet.init() for servlet action
> threw exception
>      at
> org.apache.catalina.core.StandardWrapper.loadServlet (StandardWrapper.java:1086)
>
>      at
> org.apache.catalina.core.StandardWrapper.allocate (StandardWrapper.java:712)
>
>      at
> org.apache.catalina.core.StandardWrapperValve.invoke (StandardWrapperValve.java:186)
>
>      at
> org.apache.catalina.core.StandardValveContext.invokeNext (StandardValveContext.java:151)
>
>      at
> org.apache.catalina.core.StandardPipeline.invoke (StandardPipeline.java:564)
>
>      at
> org.apache.catalina.core.StandardContextValve.invokeInternal (StandardContextValve.java:245)
>
>      at
> org.apache.catalina.core.StandardContextValve.invoke (StandardContextValve.java:199)
>
>      at
> org.apache.catalina.core.StandardValveContext.invokeNext (StandardValveContext.java:151)
>
>      at
> org.apache.catalina.authenticator.AuthenticatorBase.invoke (AuthenticatorBase.java:509)
>
>      at
> org.apache.catalina.core.StandardValveContext.invokeNext (StandardValveContext.java:149)
>
>      at
> org.apache.catalina.core.StandardPipeline.invoke (StandardPipeline.java:564)
>
>      at
> org.apache.catalina.core.StandardHostValve.invoke (StandardHostValve.java:195)
>
>      at
> org.apache.catalina.core.StandardValveContext.invokeNext (StandardValveContext.java:151)
>
>      at
> org.apache.catalina.valves.ErrorReportValve.invoke (ErrorReportValve.java:164)
>
>      at
> org.apache.catalina.core.StandardValveContext.invokeNext (StandardValveContext.java:149)
>
>      at
> org.apache.catalina.core.StandardPipeline.invoke (StandardPipeline.java:564)
>
>      at
> org.apache.catalina.core.StandardEngineValve.invoke (StandardEngineValve.java:156)
>
>      at
> org.apache.catalina.core.StandardValveContext.invokeNext (StandardValveContext.java:151)
>
>      at
> org.apache.catalina.core.StandardPipeline.invoke (StandardPipeline.java:564)
>
>      at
> org.apache.catalina.core.ContainerBase.invoke (ContainerBase.java:972)
>      at
> org.apache.coyote.tomcat5.CoyoteAdapter.service (CoyoteAdapter.java:211)
>      at
> org.apache.coyote.http11.Http11Processor.process (Http11Processor.java:805)
>
>      at
> org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.processConnection(Http11Protocol.java:696)
>
>      at
> org.apache.tomcat.util.net.TcpWorkerThread.runIt(PoolTcpEndpoint.java:605)
>
>      at
> org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:677)
>
>      at java.lang.Thread.run (Thread.java:568)
>
> I really don't have an idea what's going on. Since the jsvc-daemon
> doesn't work with redhat enterprise linux 3 (maybe it doesn't work
> with the new glibc or gcc), I at least need to use -security to have a
> slight feeling of security.

What you servlet trying to do? Are you trying to access some classes
from org.apache.catalina.*? Can you create a test case and sent it
directly to me? I will tell you very fast what's wrong (if it is a
Tomcat bug or not). The real exception is probably hidden (I will fix
Tomcat if you can give me a test case)

Thanks

-- Jeanfrancois



>
> Regards
> Marten
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: tomcat-user-unsubscribe@(protected)
> For additional commands, e-mail: tomcat-user-help@(protected)
>
>


---------------------------------------------------------------------
To unsubscribe, e-mail: tomcat-user-unsubscribe@(protected)
For additional commands, e-mail: tomcat-user-help@(protected)