Uploaded image for project: 'JBoss Enterprise Application Platform'
  1. JBoss Enterprise Application Platform
  2. JBEAP-5901

(7.0.z) Some domain tests fail with security manager

XMLWordPrintable

      org.jboss.as.test.integration.domain.mixed.eap640.MixedDomainDeployment640TestCase#testJsfWorks

      ./integration-tests.sh -fae -Dmaven.test.failure.ignore=true -DfailIfNoTests=false -Dts.noSmoke -Dtest=MixedDomainDeployment640TestCase#testJsfWorks -Djboss.test.mixed.domain.dir=/home/okotek/test/ -Dsecurity.manager

      fails with:

      SEVERE [javax.enterprise.resource.webcontainer.jsf.application] (http-/10.16.95.147:8080-1) Error Rendering View[/home.xhtml]: javax.el.ELException: /home.xhtml: java.lang.RuntimeException: java.security.AccessControlException: access denied ("java.lang.reflect.ReflectPermission" "suppressAccessChecks")&amp#27;[0m
[Server:server-one] &amp#27;[31m	at com.sun.faces.facelets.compiler.TextInstruction.write(TextInstruction.java:88)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at com.sun.faces.facelets.compiler.UIInstructions.encodeBegin(UIInstructions.java:82)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at com.sun.faces.facelets.compiler.UILeaf.encodeAll(UILeaf.java:207)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at javax.faces.component.UIComponent.encodeAll(UIComponent.java:1822)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at com.sun.faces.application.view.FaceletViewHandlingStrategy.renderView(FaceletViewHandlingStrategy.java:447)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at com.sun.faces.application.view.MultiViewHandler.renderView(MultiViewHandler.java:125)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at javax.faces.application.ViewHandlerWrapper.renderView(ViewHandlerWrapper.java:286)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at com.sun.faces.lifecycle.RenderResponsePhase.execute(RenderResponsePhase.java:120)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at com.sun.faces.lifecycle.Phase.doPhase(Phase.java:101)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at com.sun.faces.lifecycle.LifecycleImpl.render(LifecycleImpl.java:139)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at javax.faces.webapp.FacesServlet.service(FacesServlet.java:594)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at java.lang.reflect.Method.invoke(Method.java:497)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at org.apache.catalina.security.SecurityUtil$1.run(SecurityUtil.java:264)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at org.apache.catalina.security.SecurityUtil$1.run(SecurityUtil.java:262)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at java.security.AccessController.doPrivileged(Native Method)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at javax.security.auth.Subject.doAsPrivileged(Subject.java:549)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at org.apache.catalina.security.SecurityUtil.execute(SecurityUtil.java:296)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at org.apache.catalina.security.SecurityUtil.doAsPrivilege(SecurityUtil.java:156)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:288)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at org.apache.catalina.core.ApplicationFilterChain.access$000(ApplicationFilterChain.java:59)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at org.apache.catalina.core.ApplicationFilterChain$1.run(ApplicationFilterChain.java:197)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at java.security.AccessController.doPrivileged(Native Method)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:193)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:231)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:149)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at org.jboss.modcluster.container.jbossweb.JBossWebContext$RequestListenerValve.event(JBossWebContext.java:91)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at org.jboss.modcluster.container.jbossweb.JBossWebContext$RequestListenerValve.invoke(JBossWebContext.java:72)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at org.jboss.as.web.security.SecurityContextAssociationValve.invoke(SecurityContextAssociationValve.java:169)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:150)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:97)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:102)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:344)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:854)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:653)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:926)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at java.lang.Thread.run(Thread.java:745)&amp#27;[0m
[Server:server-one] &amp#27;[31mCaused by: java.lang.RuntimeException: java.security.AccessControlException: access denied ("java.lang.reflect.ReflectPermission" "suppressAccessChecks")&amp#27;[0m
[Server:server-one] &amp#27;[31m	at org.jboss.weld.util.reflection.SecureReflectionAccess.runAndWrap(SecureReflectionAccess.java:65)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at org.jboss.weld.util.reflection.SecureReflections.ensureAccessible(SecureReflections.java:283)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at org.jboss.weld.introspector.jlr.WeldConstructorImpl.newInstance(WeldConstructorImpl.java:206)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at org.jboss.weld.injection.ConstructorInjectionPoint.newInstance(ConstructorInjectionPoint.java:117)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at org.jboss.weld.bean.ManagedBean.createInstance(ManagedBean.java:340)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at org.jboss.weld.bean.ManagedBean$ManagedBeanInjectionTarget.produce(ManagedBean.java:204)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at org.jboss.weld.bean.ManagedBean.create(ManagedBean.java:296)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at org.jboss.weld.context.AbstractContext.get(AbstractContext.java:103)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at org.jboss.weld.bean.proxy.ContextBeanInstance.getInstance(ContextBeanInstance.java:90)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at org.jboss.weld.bean.proxy.ProxyMethodHandler.invoke(ProxyMethodHandler.java:79)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at org.jboss.as.test.integration.domain.mixed.jsf.Bean$Proxy$_$$_WeldClientProxy.getMessage(Bean$Proxy$_$$_WeldClientProxy.java)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:62)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at java.lang.reflect.Method.invoke(Method.java:497)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at javax.el.BeanELResolver.getValue(BeanELResolver.java:304)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at com.sun.faces.el.DemuxCompositeELResolver._getValue(DemuxCompositeELResolver.java:176)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at com.sun.faces.el.DemuxCompositeELResolver.getValue(DemuxCompositeELResolver.java:203)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at org.apache.el.parser.AstValue.getValue(AstValue.java:166)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at org.apache.el.ValueExpressionImpl.getValue(ValueExpressionImpl.java:189)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at org.jboss.weld.el.WeldValueExpression.getValue(WeldValueExpression.java:50)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at com.sun.faces.facelets.el.ELText$ELTextVariable.writeText(ELText.java:227)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at com.sun.faces.facelets.el.ELText$ELTextComposite.writeText(ELText.java:150)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at com.sun.faces.facelets.compiler.TextInstruction.write(TextInstruction.java:85)&amp#27;[0m
[Server:server-one] &amp#27;[31m	... 38 more&amp#27;[0m
[Server:server-one] &amp#27;[31mCaused by: java.security.AccessControlException: access denied ("java.lang.reflect.ReflectPermission" "suppressAccessChecks")&amp#27;[0m
[Server:server-one] &amp#27;[31m	at java.security.AccessControlContext.checkPermission(AccessControlContext.java:472)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at java.security.AccessController.checkPermission(AccessController.java:884)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at java.lang.SecurityManager.checkPermission(SecurityManager.java:549)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at java.lang.reflect.AccessibleObject.setAccessible(AccessibleObject.java:128)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at org.jboss.weld.util.reflection.SecureReflections$14.work(SecureReflections.java:288)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at org.jboss.weld.util.reflection.SecureReflections$14.work(SecureReflections.java:283)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at org.jboss.weld.util.reflection.SecureReflectionAccess.run(SecureReflectionAccess.java:52)&amp#27;[0m
[Server:server-one] &amp#27;[31m	at org.jboss.weld.util.reflection.SecureReflectionAccess.runAndWrap(SecureReflectionAccess.java:63)&amp#27;[0m

      org.jboss.as.test.integration.domain.suites.ReadEnvironmentVariablesTestCase#testReadEnvironmentVariablesForServers

      ./integration-tests.sh -fae -Dmaven.test.failure.ignore=true -DfailIfNoTests=false -Dsecurity.manager -Dts.domain -Dts.noSmoke -Dtest=org.jboss.as.test.integration.domain.suites.ReadEnvironmentVariablesTestCase#testReadEnvironmentVariablesForServers

      fails with:

      ERROR [io.undertow.request] (default task-43) UT005023: Exception handling request to /env-test/env: java.security.Access
ControlException: WFSM000001: Permission check failed (permission "("java.lang.RuntimePermission" "getenv.*")" in code source "(vfs:/content/env-test.war/WEB-INF/classes <no signer certificates>)" of "null")
[Server:main-one] 	at org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:273)
[Server:main-one] 	at org.wildfly.security.manager.WildFlySecurityManager.checkPermission(WildFlySecurityManager.java:175)
[Server:main-one] 	at java.lang.System.getenv(System.java:944) [rt.jar:1.8.0_60]
[Server:main-one] 	at org.jboss.as.test.integration.domain.suites.EnvironmentTestServlet.doGet(EnvironmentTestServlet.java:44) [classes:]
[Server:main-one] 	at javax.servlet.http.HttpServlet.service(HttpServlet.java:687) [jboss-servlet-api_3.1_spec-1.0.0.Final-redhat-1.jar:1.0.0.Final-redhat-1]
[Server:main-one] 	at javax.servlet.http.HttpServlet.service(HttpServlet.java:790) [jboss-servlet-api_3.1_spec-1.0.0.Final-redhat-1.jar:1.0.0.Final-redhat-1]
[Server:main-one] 	at io.undertow.servlet.handlers.ServletHandler.handleRequest(ServletHandler.java:85) [undertow-servlet-1.3.7.Final-redhat-1.jar:1.3.7.Final-redhat-1]
[Server:main-one] 	at io.undertow.servlet.handlers.security.ServletSecurityRoleHandler.handleRequest(ServletSecurityRoleHandler.java:62) [undertow-servlet-1.3.7.Final-redhat-1.jar:1.3.7.Final-redhat-1]
[Server:main-one] 	at io.undertow.servlet.handlers.ServletDispatchingHandler.handleRequest(ServletDispatchingHandler.java:36) [undertow-servlet-1.3.7.Final-redhat-1.jar:1.3.7.Final-redhat-1]
[Server:main-one] 	at org.wildfly.extension.undertow.security.SecurityContextAssociationHandler.handleRequest(SecurityContextAssociationHandler.java:78)
[Server:main-one] 	at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43) [undertow-core-1.3.7.Final-redhat-1.jar:1.3.7.Final-redhat-1]
[Server:main-one] 	at io.undertow.servlet.handlers.security.SSLInformationAssociationHandler.handleRequest(SSLInformationAssociationHandler.java:131) [undertow-servlet-1.3.7.Final-redhat-1.jar:1.3.7.Final-redhat-1]
[Server:main-one] 	at io.undertow.servlet.handlers.security.ServletAuthenticationCallHandler.handleRequest(ServletAuthenticationCallHandler.java:57) [undertow-servlet-1.3.7.Final-redhat-1.jar:1.3.7.Final-redhat-1]
[Server:main-one] 	at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43) [undertow-core-1.3.7.Final-redhat-1.jar:1.3.7.Final-redhat-1]
[Server:main-one] 	at io.undertow.security.handlers.AbstractConfidentialityHandler.handleRequest(AbstractConfidentialityHandler.java:46) [undertow-core-1.3.7.Final-redhat-1.jar:1.3.7.Final-redhat-1]
[Server:main-one] 	at io.undertow.servlet.handlers.security.ServletConfidentialityConstraintHandler.handleRequest(ServletConfidentialityConstraintHandler.java:64) [undertow-servlet-1.3.7.Final-redhat-1.jar:1.3.7.Final-redhat-1]
[Server:main-one] 	at io.undertow.security.handlers.AuthenticationMechanismsHandler.handleRequest(AuthenticationMechanismsHandler.java:60) [undertow-core-1.3.7.Final-redhat-1.jar:1.3.7.Final-redhat-1]
[Server:main-one] 	at io.undertow.servlet.handlers.security.CachedAuthenticatedSessionHandler.handleRequest(CachedAuthenticatedSessionHandler.java:77) [undertow-servlet-1.3.7.Final-redhat-1.jar:1.3.7.Final-redhat-1]
[Server:main-one] 	at io.undertow.security.handlers.NotificationReceiverHandler.handleRequest(NotificationReceiverHandler.java:50) [undertow-core-1.3.7.Final-redhat-1.jar:1.3.7.Final-redhat-1]
[Server:main-one] 	at io.undertow.security.handlers.AbstractSecurityContextAssociationHandler.handleRequest(AbstractSecurityContextAssociationHandler.java:43) [undertow-core-1.3.7.Final-redhat-1.jar:1.3.7.Final-redhat-1]
[Server:main-one] 	at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43) [undertow-core-1.3.7.Final-redhat-1.jar:1.3.7.Final-redhat-1]
[Server:main-one] 	at org.wildfly.extension.undertow.security.jacc.JACCContextIdHandler.handleRequest(JACCContextIdHandler.java:61)
[Server:main-one] 	at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43) [undertow-core-1.3.7.Final-redhat-1.jar:1.3.7.Final-redhat-1]
[Server:main-one] 	at io.undertow.server.handlers.PredicateHandler.handleRequest(PredicateHandler.java:43) [undertow-core-1.3.7.Final-redhat-1.jar:1.3.7.Final-redhat-1]
[Server:main-one] 	at io.undertow.servlet.handlers.ServletInitialHandler.handleFirstRequest(ServletInitialHandler.java:284) [undertow-servlet-1.3.7.Final-redhat-1.jar:1.3.7.Final-redhat-1]
[Server:main-one] 	at io.undertow.servlet.handlers.ServletInitialHandler.dispatchRequest(ServletInitialHandler.java:263) [undertow-servlet-1.3.7.Final-redhat-1.jar:1.3.7.Final-redhat-1]
[Server:main-one] 	at io.undertow.servlet.handlers.ServletInitialHandler.access$000(ServletInitialHandler.java:81) [undertow-servlet-1.3.7.Final-redhat-1.jar:1.3.7.Final-redhat-1]
[Server:main-one] 	at io.undertow.servlet.handlers.ServletInitialHandler$1$1.run(ServletInitialHandler.java:180) [undertow-servlet-1.3.7.Final-redhat-1.jar:1.3.7.Final-redhat-1]
[Server:main-one] 	at java.security.AccessController.doPrivileged(Native Method) [rt.jar:1.8.0_60]
[Server:main-one] 	at io.undertow.servlet.handlers.ServletInitialHandler$1.handleRequest(ServletInitialHandler.java:177) [undertow-servlet-1.3.7.Final-redhat-1.jar:1.3.7.Final-redhat-1]
[Server:main-one] 	at io.undertow.server.Connectors.executeRootHandler(Connectors.java:202) [undertow-core-1.3.7.Final-redhat-1.jar:1.3.7.Final-redhat-1]
[Server:main-one] 	at io.undertow.server.HttpServerExchange$1.run(HttpServerExchange.java:793) [undertow-core-1.3.7.Final-redhat-1.jar:1.3.7.Final-redhat-1]
[Server:main-one] 	at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142) [rt.jar:1.8.0_60]
[Server:main-one] 	at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617) [rt.jar:1.8.0_60]
[Server:main-one] 	at java.lang.Thread.run(Thread.java:745) [rt.jar:1.8.0_60]

              okotek@redhat.com Ondrej Kotek
              hsvabek_jira Hynek Švábek (Inactive)
              Ondrej Kotek Ondrej Kotek
              Ondrej Kotek Ondrej Kotek
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Created:
                Updated:
                Resolved: