You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@geronimo.apache.org by "David Jencks (JIRA)" <ji...@apache.org> on 2009/07/31 20:26:14 UTC
[jira] Created: (GERONIMO-4780) jsr88 client is too dependent on
too many plugins
jsr88 client is too dependent on too many plugins
-------------------------------------------------
Key: GERONIMO-4780
URL: https://issues.apache.org/jira/browse/GERONIMO-4780
Project: Geronimo
Issue Type: Bug
Security Level: public (Regular issues)
Components: deployment
Affects Versions: 2.2
Reporter: David Jencks
Assignee: David Jencks
Fix For: 2.2
We're seeing some problems with a jsr88 client that is running with a security manager. The jsr88 rar configurer plugin has a classes dependency on the connector-deployer plugin to get its classes. In the configuration in question, this involves loading but not starting a gbean with an encrypted attribute, which loads JCE which requires permission to create (but not install) a security manager.
The other jsr88 plugins don't use a plugin dependency to get classes, but rather a jar dependency. I think this will work OK for the rar configurer also. Also, its not like anyone uses this stuff.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
Re: [jira] Created: (GERONIMO-4780) jsr88 client is too dependent on too many plugins
Posted by Kevan Miller <ke...@gmail.com>.
> Also, its not like anyone uses this stuff.
:D
--kevan
Re: [jira] Commented: (GERONIMO-4780) jsr88 client is too dependent
on too many plugins
Posted by Ivan <xh...@gmail.com>.
I copied the error stack while creating the db pool in the portlet
2009-08-05 10:23:20,968 ERROR [DatabasePoolPortlet] Unable to render portlet
java.lang.LinkageError: Class org/apache/xmlbeans/XmlObject violates loader
constraints
at
org.apache.geronimo.deployment.tools.DDBeanRootImpl.<init>(DDBeanRootImpl.java:48)
at
org.apache.geronimo.deployment.tools.loader.AbstractDeployable.<init>(AbstractDeployable.java:60)
at
org.apache.geronimo.deployment.tools.loader.ConnectorDeployable.<init>(ConnectorDeployable.java:37)
at
org.apache.geronimo.console.databasemanager.wizard.DatabasePoolPortlet.loadConfigPropertiesByPath(DatabasePoolPortlet.java:566)
at
org.apache.geronimo.console.databasemanager.wizard.DatabasePoolPortlet.getRARConfiguration(DatabasePoolPortlet.java:281)
at
org.apache.geronimo.console.databasemanager.wizard.DatabasePoolPortlet.renderEdit(DatabasePoolPortlet.java:796)
at
org.apache.geronimo.console.databasemanager.wizard.DatabasePoolPortlet.doView(DatabasePoolPortlet.java:725)
at javax.portlet.GenericPortlet.doDispatch(GenericPortlet.java:247)
at javax.portlet.GenericPortlet.render(GenericPortlet.java:175)
at
org.apache.geronimo.console.BasePortlet.render(BasePortlet.java:153)
at
org.apache.pluto.core.PortletServlet.dispatch(PortletServlet.java:208)
at
org.apache.pluto.core.PortletServlet.doGet(PortletServlet.java:139)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:693)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:806)
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at
org.apache.catalina.core.ApplicationDispatcher.invoke(ApplicationDispatcher.java:646)
at
org.apache.catalina.core.ApplicationDispatcher.doInclude(ApplicationDispatcher.java:551)
at
org.apache.catalina.core.ApplicationDispatcher.include(ApplicationDispatcher.java:488)
at
org.apache.pluto.core.DefaultPortletInvokerService.invoke(DefaultPortletInvokerService.java:167)
at
org.apache.pluto.core.DefaultPortletInvokerService.render(DefaultPortletInvokerService.java:101)
at
org.apache.pluto.core.PortletContainerImpl.doRender(PortletContainerImpl.java:172)
at
org.apache.pluto.driver.tags.PortletTag.doStartTag(PortletTag.java:152)
at
jsp.WEB_002dINF.themes.portlet_002dskin_jsp._jspService(portlet_002dskin_jsp.java:102)
at
org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:806)
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at
org.apache.catalina.core.ApplicationDispatcher.invoke(ApplicationDispatcher.java:646)
at
org.apache.catalina.core.ApplicationDispatcher.doInclude(ApplicationDispatcher.java:551)
at
org.apache.catalina.core.ApplicationDispatcher.include(ApplicationDispatcher.java:488)
at
org.apache.jasper.runtime.JspRuntimeLibrary.include(JspRuntimeLibrary.java:968)
at
jsp.WEB_002dINF.themes.default_002dtheme_jsp._jspx_meth_c_005fforEach_005f0(default_002dtheme_jsp.java:215)
at
jsp.WEB_002dINF.themes.default_002dtheme_jsp._jspService(default_002dtheme_jsp.java:120)
at
org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:806)
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at
org.apache.catalina.core.ApplicationDispatcher.invoke(ApplicationDispatcher.java:646)
at
org.apache.catalina.core.ApplicationDispatcher.processRequest(ApplicationDispatcher.java:436)
at
org.apache.catalina.core.ApplicationDispatcher.doForward(ApplicationDispatcher.java:374)
at
org.apache.catalina.core.ApplicationDispatcher.forward(ApplicationDispatcher.java:302)
at
org.apache.pluto.driver.PortalDriverServlet.doGet(PortalDriverServlet.java:151)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:693)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:806)
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at
org.apache.geronimo.console.filter.PlutoURLRebuildFilter.doFilter(PlutoURLRebuildFilter.java:48)
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at
org.apache.geronimo.console.filter.XSSXSRFFilter.doFilter(XSSXSRFFilter.java:125)
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at
org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:233)
at
org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
at
org.apache.geronimo.tomcat.security.SecurityValve.invoke(SecurityValve.java:88)
at
org.apache.geronimo.tomcat.security.jacc.JACCSecurityValve.invoke(JACCSecurityValve.java:54)
at
org.apache.geronimo.tomcat.GeronimoStandardContext$SystemMethodValve.invoke(GeronimoStandardContext.java:420)
at
org.apache.geronimo.tomcat.valve.GeronimoBeforeAfterValve.invoke(GeronimoBeforeAfterValve.java:47)
at
org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:128)
at
org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
at
org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:567)
at
org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
at
org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:293)
at
org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:849)
at
org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:583)
at
org.apache.tomcat.util.net.JIoEndpoint$SocketProcessor.run(JIoEndpoint.java:361)
at org.apache.geronimo.pool.ThreadPool$1.run(ThreadPool.java:214)
at
org.apache.geronimo.pool.ThreadPool$ContextClassLoaderRunnable.run(ThreadPool.java:344)
at
java.util.concurrent.ThreadPoolExecutor$Worker.runTask(ThreadPoolExecutor.java:650)
at
java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:675)
at java.lang.Thread.run(Thread.java:595)
2009/8/5 David Jencks (JIRA) <ji...@apache.org>
>
> [
> https://issues.apache.org/jira/browse/GERONIMO-4780?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12739025#action_12739025]
>
> David Jencks commented on GERONIMO-4780:
> ----------------------------------------
>
> Could you please quote the problems you see and explain when they occur?
> They aren't obvious to me from building trunk.
>
> > jsr88 client is too dependent on too many plugins
> > -------------------------------------------------
> >
> > Key: GERONIMO-4780
> > URL: https://issues.apache.org/jira/browse/GERONIMO-4780
> > Project: Geronimo
> > Issue Type: Bug
> > Security Level: public(Regular issues)
> > Components: deployment
> > Affects Versions: 2.2
> > Reporter: David Jencks
> > Assignee: David Jencks
> > Fix For: 2.2
> >
> > Attachments: GERONIMO-4780-preliminary.patch
> >
> >
> > We're seeing some problems with a jsr88 client that is running with a
> security manager. The jsr88 rar configurer plugin has a classes dependency
> on the connector-deployer plugin to get its classes. In the configuration
> in question, this involves loading but not starting a gbean with an
> encrypted attribute, which loads JCE which requires permission to create
> (but not install) a security manager.
> > The other jsr88 plugins don't use a plugin dependency to get classes, but
> rather a jar dependency. I think this will work OK for the rar configurer
> also. Also, its not like anyone uses this stuff.
>
> --
> This message is automatically generated by JIRA.
> -
> You can reply to this email to add a comment to the issue online.
>
>
--
Ivan
[jira] Commented: (GERONIMO-4780) jsr88 client is too dependent on
too many plugins
Posted by "David Jencks (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/GERONIMO-4780?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12739025#action_12739025 ]
David Jencks commented on GERONIMO-4780:
----------------------------------------
Could you please quote the problems you see and explain when they occur? They aren't obvious to me from building trunk.
> jsr88 client is too dependent on too many plugins
> -------------------------------------------------
>
> Key: GERONIMO-4780
> URL: https://issues.apache.org/jira/browse/GERONIMO-4780
> Project: Geronimo
> Issue Type: Bug
> Security Level: public(Regular issues)
> Components: deployment
> Affects Versions: 2.2
> Reporter: David Jencks
> Assignee: David Jencks
> Fix For: 2.2
>
> Attachments: GERONIMO-4780-preliminary.patch
>
>
> We're seeing some problems with a jsr88 client that is running with a security manager. The jsr88 rar configurer plugin has a classes dependency on the connector-deployer plugin to get its classes. In the configuration in question, this involves loading but not starting a gbean with an encrypted attribute, which loads JCE which requires permission to create (but not install) a security manager.
> The other jsr88 plugins don't use a plugin dependency to get classes, but rather a jar dependency. I think this will work OK for the rar configurer also. Also, its not like anyone uses this stuff.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Commented: (GERONIMO-4780) jsr88 client is too dependent on
too many plugins
Posted by "David Jencks (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/GERONIMO-4780?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12742886#action_12742886 ]
David Jencks commented on GERONIMO-4780:
----------------------------------------
Patch looks good to me, I applied it rev 803943
> jsr88 client is too dependent on too many plugins
> -------------------------------------------------
>
> Key: GERONIMO-4780
> URL: https://issues.apache.org/jira/browse/GERONIMO-4780
> Project: Geronimo
> Issue Type: Bug
> Security Level: public(Regular issues)
> Components: deployment
> Affects Versions: 2.2
> Reporter: David Jencks
> Assignee: David Jencks
> Fix For: 2.2
>
> Attachments: GERONIMO-4780-preliminary.patch, GERONIMO-4780.patch
>
>
> We're seeing some problems with a jsr88 client that is running with a security manager. The jsr88 rar configurer plugin has a classes dependency on the connector-deployer plugin to get its classes. In the configuration in question, this involves loading but not starting a gbean with an encrypted attribute, which loads JCE which requires permission to create (but not install) a security manager.
> The other jsr88 plugins don't use a plugin dependency to get classes, but rather a jar dependency. I think this will work OK for the rar configurer also. Also, its not like anyone uses this stuff.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Commented: (GERONIMO-4780) jsr88 client is too dependent on
too many plugins
Posted by "Ivan (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/GERONIMO-4780?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12738883#action_12738883 ]
Ivan commented on GERONIMO-4780:
--------------------------------
>From the current build test logs, I think the current changes caused some LinkageException or ClassCastException
For the transitive dependecy funcation added in 2.2, in the jsr88-rar-configuration, many dependencies are added in the environment, and those dependencies could also seen by the connector-deployer, then in the deployment process, some classes are loaded twice by different classloaders.
Any comment ?
> jsr88 client is too dependent on too many plugins
> -------------------------------------------------
>
> Key: GERONIMO-4780
> URL: https://issues.apache.org/jira/browse/GERONIMO-4780
> Project: Geronimo
> Issue Type: Bug
> Security Level: public(Regular issues)
> Components: deployment
> Affects Versions: 2.2
> Reporter: David Jencks
> Assignee: David Jencks
> Fix For: 2.2
>
> Attachments: GERONIMO-4780-preliminary.patch
>
>
> We're seeing some problems with a jsr88 client that is running with a security manager. The jsr88 rar configurer plugin has a classes dependency on the connector-deployer plugin to get its classes. In the configuration in question, this involves loading but not starting a gbean with an encrypted attribute, which loads JCE which requires permission to create (but not install) a security manager.
> The other jsr88 plugins don't use a plugin dependency to get classes, but rather a jar dependency. I think this will work OK for the rar configurer also. Also, its not like anyone uses this stuff.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Updated: (GERONIMO-4780) jsr88 client is too dependent on
too many plugins
Posted by "David Jencks (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/GERONIMO-4780?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
David Jencks updated GERONIMO-4780:
-----------------------------------
Attachment: GERONIMO-4780-preliminary.patch
I think the attached patch solves the problem for jsr-88 clients but it causes other problems with at least cxf tools that I haven't solved yet.
> jsr88 client is too dependent on too many plugins
> -------------------------------------------------
>
> Key: GERONIMO-4780
> URL: https://issues.apache.org/jira/browse/GERONIMO-4780
> Project: Geronimo
> Issue Type: Bug
> Security Level: public(Regular issues)
> Components: deployment
> Affects Versions: 2.2
> Reporter: David Jencks
> Assignee: David Jencks
> Fix For: 2.2
>
> Attachments: GERONIMO-4780-preliminary.patch
>
>
> We're seeing some problems with a jsr88 client that is running with a security manager. The jsr88 rar configurer plugin has a classes dependency on the connector-deployer plugin to get its classes. In the configuration in question, this involves loading but not starting a gbean with an encrypted attribute, which loads JCE which requires permission to create (but not install) a security manager.
> The other jsr88 plugins don't use a plugin dependency to get classes, but rather a jar dependency. I think this will work OK for the rar configurer also. Also, its not like anyone uses this stuff.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Closed: (GERONIMO-4780) jsr88 client is too dependent on too
many plugins
Posted by "David Jencks (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/GERONIMO-4780?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
David Jencks closed GERONIMO-4780.
----------------------------------
Resolution: Fixed
I think this is fixed in rev 799922. Reopen if problems appear.
> jsr88 client is too dependent on too many plugins
> -------------------------------------------------
>
> Key: GERONIMO-4780
> URL: https://issues.apache.org/jira/browse/GERONIMO-4780
> Project: Geronimo
> Issue Type: Bug
> Security Level: public(Regular issues)
> Components: deployment
> Affects Versions: 2.2
> Reporter: David Jencks
> Assignee: David Jencks
> Fix For: 2.2
>
> Attachments: GERONIMO-4780-preliminary.patch
>
>
> We're seeing some problems with a jsr88 client that is running with a security manager. The jsr88 rar configurer plugin has a classes dependency on the connector-deployer plugin to get its classes. In the configuration in question, this involves loading but not starting a gbean with an encrypted attribute, which loads JCE which requires permission to create (but not install) a security manager.
> The other jsr88 plugins don't use a plugin dependency to get classes, but rather a jar dependency. I think this will work OK for the rar configurer also. Also, its not like anyone uses this stuff.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Commented: (GERONIMO-4780) jsr88 client is too dependent on
too many plugins
Posted by "Ivan (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/GERONIMO-4780?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12739404#action_12739404 ]
Ivan commented on GERONIMO-4780:
--------------------------------
I tried to add the schema-1.5 dependency, the xmlbean is good, but we still get the problem of geronimo-connector-builder is still an issue in the deployment process, maybe we need to create a classload plugin for it.
> jsr88 client is too dependent on too many plugins
> -------------------------------------------------
>
> Key: GERONIMO-4780
> URL: https://issues.apache.org/jira/browse/GERONIMO-4780
> Project: Geronimo
> Issue Type: Bug
> Security Level: public(Regular issues)
> Components: deployment
> Affects Versions: 2.2
> Reporter: David Jencks
> Assignee: David Jencks
> Fix For: 2.2
>
> Attachments: GERONIMO-4780-preliminary.patch
>
>
> We're seeing some problems with a jsr88 client that is running with a security manager. The jsr88 rar configurer plugin has a classes dependency on the connector-deployer plugin to get its classes. In the configuration in question, this involves loading but not starting a gbean with an encrypted attribute, which loads JCE which requires permission to create (but not install) a security manager.
> The other jsr88 plugins don't use a plugin dependency to get classes, but rather a jar dependency. I think this will work OK for the rar configurer also. Also, its not like anyone uses this stuff.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Updated: (GERONIMO-4780) jsr88 client is too dependent on
too many plugins
Posted by "Ivan (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/GERONIMO-4780?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Ivan updated GERONIMO-4780:
---------------------------
Attachment: GERONIMO-4780.patch
Hi, David
Please help to review the patch, it should fix the failures of the console testcases.
I added the rar configuration gbean in the connector-deployer, for jsr88-*-configuration should not be loaded in the server runtime, they are only needed while deploying the applications via command line. Actually, that is what we do for jsr88-war-configuration now.
Thanks !
> jsr88 client is too dependent on too many plugins
> -------------------------------------------------
>
> Key: GERONIMO-4780
> URL: https://issues.apache.org/jira/browse/GERONIMO-4780
> Project: Geronimo
> Issue Type: Bug
> Security Level: public(Regular issues)
> Components: deployment
> Affects Versions: 2.2
> Reporter: David Jencks
> Assignee: David Jencks
> Fix For: 2.2
>
> Attachments: GERONIMO-4780-preliminary.patch, GERONIMO-4780.patch
>
>
> We're seeing some problems with a jsr88 client that is running with a security manager. The jsr88 rar configurer plugin has a classes dependency on the connector-deployer plugin to get its classes. In the configuration in question, this involves loading but not starting a gbean with an encrypted attribute, which loads JCE which requires permission to create (but not install) a security manager.
> The other jsr88 plugins don't use a plugin dependency to get classes, but rather a jar dependency. I think this will work OK for the rar configurer also. Also, its not like anyone uses this stuff.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.