[jira] [Commented] (KARAF-7111) Karaf 4.3.1 Display Errors When Framework Security is enabled
[
https://issues.apache.org/jira/browse/KARAF-7111?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17486255#comment-17486255
]
Junghyun Lee commented on KARAF-7111:
-
Hello,
As Wael Megdich said,
I also identified it as a problem caused by not allowing permission related to
logging in the protection domain of {*}org.apache.felix.configadmin{*}.
!bundle-12.png|width=459,height=94!
Therefore, I found karaf's system bundle configadmin (bundle id 12)
!permission.PNG|width=471,height=308!
_\data\cache\bundle12\version0.1\bundle.jar_
And I found the jar file path where the system bundle(12) is located and
modified the {*}local permission{*}.
It's a temporary measure, but we solved the problem by adding permission.
However, I have not yet checked the problem caused by the addition of the
permission.
I hope it helped you.
Thank you.
> Karaf 4.3.1 Display Errors When Framework Security is enabled
> -
>
> Key: KARAF-7111
> URL: https://issues.apache.org/jira/browse/KARAF-7111
> Project: Karaf
> Issue Type: Bug
> Components: karaf
>Affects Versions: 4.3.1
>Reporter: Wael Megdich
>Assignee: Jean-Baptiste Onofré
>Priority: Major
> Attachments: bundle-12.png, image-2021-04-29-09-41-59-693.png,
> image-2021-04-29-14-33-22-207.png, permission.PNG
>
>
> Dears,
>
> When enabling Karaf framework-security some errors will be displayed in the
> container log.
> Configuration:
> * Java Version: 11
> * Karaf Version: 4.3.1
> * etc/system.properties is configured as follows:
> _java.security.policy==*${karaf.etc}/all.policy*_
> _org.osgi.framework.security=osgi_
>
> When using Felix as OSGI framework I get this error:
> _*ERROR* [FelixStartLevel] Unexpected problem calling configuration plugin
> [org.osgi.service.cm.ConfigurationPlugin, id=31,
> bundle=26/mvn:org.apache.karaf.config/org.apache.karaf.config.core/4.3.1]_
> _java.security.AccessControlException: access denied
> ("java.lang.RuntimePermission"
> "getenv.ORG_APACHE_KARAF_COMMAND_ACL_SHELL_EXEC")_
>
> When switching to Equinox, I get this one:
> _*ERROR* [pipe-log:tail] Unexpected problem calling configuration plugin
> [org.osgi.service.cm.ConfigurationPlugin, id=108,
> bundle=26/mvn:org.apache.karaf.config/org.apache.karaf.config.core/4.3.1]_
> _java.security.AccessControlException: access denied
> ("java.lang.RuntimePermission" "getenv.ORG_OPS4J_PAX_LOGGING_COLOR_DEBUG")_
>
> Please note that such configuration is working with Karaf 4.1.0 and I get
> this error when upgrading to Java 11 and Karaf 4.3.1
>
> Do you have any idea about the origin of the issue ?
>
> Thank you in advance.
> Best Regards.
>
> Wael
>
--
This message was sent by Atlassian Jira
(v8.20.1#820001)
[jira] [Updated] (KARAF-7111) Karaf 4.3.1 Display Errors When Framework Security is enabled
[
https://issues.apache.org/jira/browse/KARAF-7111?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Junghyun Lee updated KARAF-7111:
Attachment: permission.PNG
> Karaf 4.3.1 Display Errors When Framework Security is enabled
> -
>
> Key: KARAF-7111
> URL: https://issues.apache.org/jira/browse/KARAF-7111
> Project: Karaf
> Issue Type: Bug
> Components: karaf
>Affects Versions: 4.3.1
>Reporter: Wael Megdich
>Assignee: Jean-Baptiste Onofré
>Priority: Major
> Attachments: bundle-12.png, image-2021-04-29-09-41-59-693.png,
> image-2021-04-29-14-33-22-207.png, permission.PNG
>
>
> Dears,
>
> When enabling Karaf framework-security some errors will be displayed in the
> container log.
> Configuration:
> * Java Version: 11
> * Karaf Version: 4.3.1
> * etc/system.properties is configured as follows:
> _java.security.policy==*${karaf.etc}/all.policy*_
> _org.osgi.framework.security=osgi_
>
> When using Felix as OSGI framework I get this error:
> _*ERROR* [FelixStartLevel] Unexpected problem calling configuration plugin
> [org.osgi.service.cm.ConfigurationPlugin, id=31,
> bundle=26/mvn:org.apache.karaf.config/org.apache.karaf.config.core/4.3.1]_
> _java.security.AccessControlException: access denied
> ("java.lang.RuntimePermission"
> "getenv.ORG_APACHE_KARAF_COMMAND_ACL_SHELL_EXEC")_
>
> When switching to Equinox, I get this one:
> _*ERROR* [pipe-log:tail] Unexpected problem calling configuration plugin
> [org.osgi.service.cm.ConfigurationPlugin, id=108,
> bundle=26/mvn:org.apache.karaf.config/org.apache.karaf.config.core/4.3.1]_
> _java.security.AccessControlException: access denied
> ("java.lang.RuntimePermission" "getenv.ORG_OPS4J_PAX_LOGGING_COLOR_DEBUG")_
>
> Please note that such configuration is working with Karaf 4.1.0 and I get
> this error when upgrading to Java 11 and Karaf 4.3.1
>
> Do you have any idea about the origin of the issue ?
>
> Thank you in advance.
> Best Regards.
>
> Wael
>
--
This message was sent by Atlassian Jira
(v8.20.1#820001)
[jira] [Updated] (KARAF-7111) Karaf 4.3.1 Display Errors When Framework Security is enabled
[
https://issues.apache.org/jira/browse/KARAF-7111?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Junghyun Lee updated KARAF-7111:
Attachment: bundle-12.png
> Karaf 4.3.1 Display Errors When Framework Security is enabled
> -
>
> Key: KARAF-7111
> URL: https://issues.apache.org/jira/browse/KARAF-7111
> Project: Karaf
> Issue Type: Bug
> Components: karaf
>Affects Versions: 4.3.1
>Reporter: Wael Megdich
>Assignee: Jean-Baptiste Onofré
>Priority: Major
> Attachments: bundle-12.png, image-2021-04-29-09-41-59-693.png,
> image-2021-04-29-14-33-22-207.png
>
>
> Dears,
>
> When enabling Karaf framework-security some errors will be displayed in the
> container log.
> Configuration:
> * Java Version: 11
> * Karaf Version: 4.3.1
> * etc/system.properties is configured as follows:
> _java.security.policy==*${karaf.etc}/all.policy*_
> _org.osgi.framework.security=osgi_
>
> When using Felix as OSGI framework I get this error:
> _*ERROR* [FelixStartLevel] Unexpected problem calling configuration plugin
> [org.osgi.service.cm.ConfigurationPlugin, id=31,
> bundle=26/mvn:org.apache.karaf.config/org.apache.karaf.config.core/4.3.1]_
> _java.security.AccessControlException: access denied
> ("java.lang.RuntimePermission"
> "getenv.ORG_APACHE_KARAF_COMMAND_ACL_SHELL_EXEC")_
>
> When switching to Equinox, I get this one:
> _*ERROR* [pipe-log:tail] Unexpected problem calling configuration plugin
> [org.osgi.service.cm.ConfigurationPlugin, id=108,
> bundle=26/mvn:org.apache.karaf.config/org.apache.karaf.config.core/4.3.1]_
> _java.security.AccessControlException: access denied
> ("java.lang.RuntimePermission" "getenv.ORG_OPS4J_PAX_LOGGING_COLOR_DEBUG")_
>
> Please note that such configuration is working with Karaf 4.1.0 and I get
> this error when upgrading to Java 11 and Karaf 4.3.1
>
> Do you have any idea about the origin of the issue ?
>
> Thank you in advance.
> Best Regards.
>
> Wael
>
--
This message was sent by Atlassian Jira
(v8.20.1#820001)
[jira] [Commented] (KARAF-7314) AccessControlException after enable framework-security
[
https://issues.apache.org/jira/browse/KARAF-7314?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel=17478372#comment-17478372
]
Junghyun Lee commented on KARAF-7314:
-
I also have the same Issue.
It works normally in the karaf 4.2x version, but the problem occurs from the
karaf 4.3x version.
https://issues.apache.org/jira/browse/KARAF-7111
It's the same problem as the issue.
Is there a way to downgrade the version of the "org.apache.karaf.log.core"
bundle like the questioner's opinion?
JDK1.8/11 versions all have the same problem.
Thank you for your answer in advance.
> AccessControlException after enable framework-security
> --
>
> Key: KARAF-7314
> URL: https://issues.apache.org/jira/browse/KARAF-7314
> Project: Karaf
> Issue Type: Bug
> Components: karaf
>Affects Versions: 4.2.8, 4.3.2, 4.3.5
>Reporter: Johnson Hsu
>Assignee: Jean-Baptiste Onofré
>Priority: Major
>
> etc/system.properties unmark
> {code:java}
> java.security.policy=${karaf.etc}/all.policy
> org.osgi.framework.security=osgi {code}
> and karaf log appear ERROR
> {code:java}
> 2022-01-02T23:04:35,436 | ERROR | CM Configuration Updater (ManagedService
> Update: pid=[org.apache.karaf.log]) | configadmin | 15 -
> org.apache.felix.configadmin - 1.9.22 | Unexpected problem calling
> configuration plugin [org.osgi.service.cm.ConfigurationPlugin, id=52,
> bundle=30/mvn:org.apache.karaf.config/org.apache.karaf.config.core/4.3.5]
> java.security.AccessControlException: access denied
> ("java.lang.RuntimePermission" "getenv.ORG_APACHE_KARAF_LOG_COLOR_DEBUG")
> at
> java.security.AccessControlContext.checkPermission(AccessControlContext.java:472)
> ~[?:?]
> at
> java.security.AccessController.checkPermission(AccessController.java:897)
> ~[?:?]
> at java.lang.SecurityManager.checkPermission(SecurityManager.java:322)
> ~[?:?]
> at java.lang.System.getenv(System.java:997) ~[?:?]
> at
> org.apache.karaf.config.core.impl.KarafConfigurationPlugin.modifyConfiguration(KarafConfigurationPlugin.java:39)
> ~[?:?]
> at
> org.apache.felix.cm.impl.ConfigurationManager.callPlugins(ConfigurationManager.java:928)
> ~[?:?]
> at
> org.apache.felix.cm.impl.helper.BaseTracker.getProperties(BaseTracker.java:221)
> ~[?:?]
> at
> org.apache.felix.cm.impl.helper.ManagedServiceTracker.updateService(ManagedServiceTracker.java:138)
> ~[?:?]
> at
> org.apache.felix.cm.impl.helper.ManagedServiceTracker.provideConfiguration(ManagedServiceTracker.java:85)
> ~[?:?]
> at
> org.apache.felix.cm.impl.ConfigurationManager$ManagedServiceUpdate.provide(ConfigurationManager.java:1129)
> ~[?:?]
> at
> org.apache.felix.cm.impl.ConfigurationManager$ManagedServiceUpdate.run(ConfigurationManager.java:1085)
> ~[?:?]
> at org.apache.felix.cm.impl.UpdateThread$1.run(UpdateThread.java:110)
> ~[?:?]
> at org.apache.felix.cm.impl.UpdateThread$1.run(UpdateThread.java:107)
> ~[?:?]
> at java.security.AccessController.doPrivileged(Native Method) ~[?:?]
> at org.apache.felix.cm.impl.UpdateThread.run0(UpdateThread.java:106)
> ~[?:?]
> at org.apache.felix.cm.impl.UpdateThread.run(UpdateThread.java:84)
> ~[?:?]
> at java.lang.Thread.run(Thread.java:834) [?:?]
> {code}
--
This message was sent by Atlassian Jira
(v8.20.1#820001)
