[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]
RE: [equinox-dev] java.Security.AccessControlException because of org.osgi.service.event.TopicPermission is missing

Hi again,

 

I solved this problem by granting to my Service the next local permissions:

 

(org.osgi.service.event.TopicPermission "org/osgi/service/useradmin/UserAdmin/ROLE_REMOVED" "publish")

(org.osgi.service.event.TopicPermission "org/osgi/service/useradmin/UserAdmin/ROLE_CHANGED" "publish")

(org.osgi.service.event.TopicPermission "org/osgi/service/useradmin/UserAdmin/ROLE_CREATED" "publish")

 

Using version 4.1 Equninox

 

 

Thanks

 

David

 

De: equinox-dev-bounces@xxxxxxxxxxx [mailto:equinox-dev-bounces@xxxxxxxxxxx] En nombre de Thomas Watson
Enviado el: jueves, 10 de septiembre de 2009 15:20
Para: Equinox development mailing list
Asunto: Re: [equinox-dev] java.Security.AccessControlException because of org.osgi.service.event.TopicPermission is missing

 

Another posibility is that this could be related to bug https://bugs.eclipse.org/bugs/show_bug.cgi?id=287850

I just realized that bug was causing unexpected security issues on the event manager thread if event thread was created under the wrong AccessControlContext. That is possible with the UserAdmin implementation because calls to the UserAdmin API may cause the event thread to be constructed using the ACC of the caller which may not have the right permissions. Can you try using a build of 3.5.1?

Tom



Inactive hide details for "David Conde" ---09/10/2009 03:41:02 AM---Hi, I have launched Equinox 3.4 with security and I got the"David Conde" ---09/10/2009 03:41:02 AM---Hi, I have launched Equinox 3.4 with security and I got the next Exception:


From:


"David Conde" <dconde@xxxxxxxx>


To:


"'Equinox development mailing list'" <equinox-dev@xxxxxxxxxxx>


Date:


09/10/2009 03:41 AM


Subject:


[equinox-dev] java.Security.AccessControlException because of org.osgi.service.event.TopicPermission is missing





Hi, I have launched Equinox 3.4 with security and I got the next Exception:


2009-09-10 10:34:18.515 Log WarningA UserAdminListener threw an Exception
{org.osgi.service.useradmin.UserAdmin}={service.description=OSGi User Admin serv
ice - IBM Implementation, service.pid=org.eclipse.equinox.internal.useradmin.Act
ivator, service.vendor=IBM, service.id=32}
java.security.AccessControlException: access denied (org.osgi.service.event.Topi
cPermission org/osgi/service/useradmin/UserAdmin/ROLE_CHANGED publish)
at java.security.AccessControlContext.checkPermission(Unknown Source)
at org.eclipse.osgi.framework.internal.core.FrameworkSecurityManager.int
ernalCheckPermission(FrameworkSecurityManager.java:119)
at org.eclipse.osgi.framework.internal.core.FrameworkSecurityManager$Che
ckPermissionAction.run(FrameworkSecurityManager.java:84)
at java.security.AccessController.doPrivileged(Native Method)
at org.eclipse.osgi.framework.internal.core.FrameworkSecurityManager.che
ckPermission(FrameworkSecurityManager.java:90)
at org.eclipse.osgi.framework.internal.core.FrameworkSecurityManager.che
ckPermission(FrameworkSecurityManager.java:219)
at org.eclipse.equinox.internal.event.EventAdminImpl.checkTopicPermissio
nPublish(EventAdminImpl.java:153)
at org.eclipse.equinox.internal.event.EventAdminImpl.dispatchEvent(Event
AdminImpl.java:105)
at org.eclipse.equinox.internal.event.EventAdminImpl.postEvent(EventAdmi
nImpl.java:70)
at org.eclipse.equinox.internal.useradmin.UserAdminEventAdapter.roleChan
ged(UserAdminEventAdapter.java:106)
at org.eclipse.equinox.internal.useradmin.UserAdminEventProducer.dispatc
hEvent(UserAdminEventProducer.java:136)
at org.eclipse.osgi.framework.eventmgr.EventManager.dispatchEvent(EventM
anager.java:211)
at org.eclipse.osgi.framework.eventmgr.EventManager$EventThread.run(Even
tManager.java:321)
2009-09-10 10:34:18.562 Log WarningA UserAdminListener threw an Exception
{org.osgi.service.useradmin.UserAdmin}={service.description=OSGi User Admin serv
ice - IBM Implementation, service.pid=org.eclipse.equinox.internal.useradmin.Act
ivator, service.vendor=IBM, service.id=32}
java.security.AccessControlException: access denied (org.osgi.service.event.Topi
cPermission org/osgi/service/useradmin/UserAdmin/ROLE_CHANGED publish)
at java.security.AccessControlContext.checkPermission(Unknown Source)
at org.eclipse.osgi.framework.internal.core.FrameworkSecurityManager.int
ernalCheckPermission(FrameworkSecurityManager.java:119)
at org.eclipse.osgi.framework.internal.core.FrameworkSecurityManager$Che
ckPermissionAction.run(FrameworkSecurityManager.java:84)
at java.security.AccessController.doPrivileged(Native Method)
at org.eclipse.osgi.framework.internal.core.FrameworkSecurityManager.che
ckPermission(FrameworkSecurityManager.java:90)
at org.eclipse.osgi.framework.internal.core.FrameworkSecurityManager.che
ckPermission(FrameworkSecurityManager.java:219)
at org.eclipse.equinox.internal.event.EventAdminImpl.checkTopicPermissio
nPublish(EventAdminImpl.java:153)
at org.eclipse.equinox.internal.event.EventAdminImpl.dispatchEvent(Event
AdminImpl.java:105)
at org.eclipse.equinox.internal.event.EventAdminImpl.postEvent(EventAdmi
nImpl.java:70)
at org.eclipse.equinox.internal.useradmin.UserAdminEventAdapter.roleChan
ged(UserAdminEventAdapter.java:106)
at org.eclipse.equinox.internal.useradmin.UserAdminEventProducer.dispatc
hEvent(UserAdminEventProducer.java:136)
at org.eclipse.osgi.framework.eventmgr.EventManager.dispatchEvent(EventM
anager.java:211)
at org.eclipse.osgi.framework.eventmgr.EventManager$EventThread.run(Even
tManager.java:321)

I can continue running my bundles after this without any problem, but I would like to know why I am getting this Exception, or know if this is a bug.

Thanks_______________________________________________
equinox-dev mailing list
equinox-dev@xxxxxxxxxxx
https://dev.eclipse.org/mailman/listinfo/equinox-dev

GIF image

PNG image

PNG image