Return-Path: Delivered-To: apmail-struts-user-archive@www.apache.org Received: (qmail 65061 invoked from network); 11 Jun 2007 19:50:49 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.2) by minotaur.apache.org with SMTP; 11 Jun 2007 19:50:49 -0000 Received: (qmail 94272 invoked by uid 500); 11 Jun 2007 19:50:35 -0000 Delivered-To: apmail-struts-user-archive@struts.apache.org Received: (qmail 94252 invoked by uid 500); 11 Jun 2007 19:50:35 -0000 Mailing-List: contact user-help@struts.apache.org; run by ezmlm Precedence: bulk List-Unsubscribe: List-Help: List-Post: List-Id: "Struts Users Mailing List" Reply-To: "Struts Users Mailing List" Delivered-To: mailing list user@struts.apache.org Received: (qmail 94227 invoked by uid 99); 11 Jun 2007 19:50:34 -0000 Received: from herse.apache.org (HELO herse.apache.org) (140.211.11.133) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 11 Jun 2007 12:50:34 -0700 X-ASF-Spam-Status: No, hits=-0.0 required=10.0 tests=SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (herse.apache.org: domain of niall.pemberton@gmail.com designates 66.249.92.170 as permitted sender) Received: from [66.249.92.170] (HELO ug-out-1314.google.com) (66.249.92.170) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 11 Jun 2007 12:50:30 -0700 Received: by ug-out-1314.google.com with SMTP id m2so1699225ugc for ; Mon, 11 Jun 2007 12:50:08 -0700 (PDT) DKIM-Signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=gzaeahllmMLQcXU/wzRnUepsAkwBLcFk9KwwnH0zEcGW7I2r8o0r/biYxnAhJoNrD2iHZ9cvX+U05gFJGQ4gjrMeJvIw8JH59ekWgvIawrvVbC6NOgZEDMiJDfJYHrKYkpIitfOKi5exe79nUGq+cI48Q8TmKIt57sSnalasO80= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=GAp0MSIDR6M6BlvNqn67b4saqg1RSDdUMngxCewSR0rIhBy3e2UnaCyUQwb3UvudSimPITP1XSORDHiv8jUZCdJvzi1uHuhXwsC8oOGJCL499BWHje0/NAgaVSFlDixQMsy9jWKk0q2Z2Taw5YFTRkBuR/uPVGHtOuxRQxuEMZA= Received: by 10.78.176.20 with SMTP id y20mr2397097hue.1181591407838; Mon, 11 Jun 2007 12:50:07 -0700 (PDT) Received: by 10.78.75.2 with HTTP; Mon, 11 Jun 2007 12:50:07 -0700 (PDT) Message-ID: <55afdc850706111250w7f609b1cs16325c2d2eb552df@mail.gmail.com> Date: Mon, 11 Jun 2007 20:50:07 +0100 From: "Niall Pemberton" To: "Struts Users Mailing List" Subject: Re: How can one servlet (ActionServlet) effect another servlet (AxisServlet)...? In-Reply-To: MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Content-Disposition: inline References: <21528.60354.qm@web56710.mail.re3.yahoo.com> X-Virus-Checked: Checked by ClamAV on apache.org On 6/11/07, Jeff Amiel wrote: > On 6/7/07, Jeff Amiel wrote: > > > Thanks much....will continue to investigate. > > I really appreciate the information and will post back if I get any > > concrete results.... > > > > Shortly thereafter, while pouring through the tomcat issues > repository, I stumbled across this: > > http://issues.apache.org/bugzilla/show_bug.cgi?id=41772 > > After reading, I became more convinced that re-used response objects > was at the heart of my issue. > I searched high-and low through my user code looking for anything that > might retain a handle to a response object....finding nothing obvious. > Of course, such a bug could exist in any number of libraries we were > using....DWR, DisplayTag, etc..... > > So.....I simply changed by startup config to run tomcat with a > -Djava.security.manager option (my policy file allowing everything to > everybody). > > And ...voila! No more issue!!!. (And yes...I m sure. During a > period of time where we would have had dozens of these events > normally, we now have zero) > > I am torn as to where to vent my displeasure (or even if I should have > any displeasure now that my production issue has 'gone away'. ) > > I notice that in Tomcat 6.0 that there is now an option for how the > Reponse and Request objects are recycled (not just when a Security > Manager is used). > http://mail-archives.apache.org/mod_mbox/tomcat-dev/200611.mbox/%3C20061103105626.622A11A9846@eris.apache.org%3E > > There must be a reason for this. While I'm sure there is some aspect > of my code (or the libraries that I am using) that is violating the > servlet specs by 'holding onto' the response and accessing it later, I > am distraught that Tomcat's default behavior is to permit this. I'm > sure very few web applications out there are simple or stand-alone > enough to not use a plethora of third party libraries (like jasper > reports, jfreechart, displaytag, dwr, etc)...all of which might > represent an underlying 'threat' to that recycled response object. > > I am still a bit concerned that I could not track my specific cause down..... > If it was something as innocuous as what was seen by the submitter of > the issue above, I would not be worried (garbage collection calling > flush on a un-closed stream)....but My issue could be > worse.....sending data intended for one response (that is long gone) > to a different one... > > Any advice or thoughts would be appreciated. I guess the question is whether using the security manager is acutally solving the problem or just masking it. If its the latter I would, like you, want to know the cause. I would start by asking on the Tomcat user list to try and understand why it shouldn't happen with re-cycled objects - or what must the application be doing for it to happen. Since it is happening when the Axis servlet is calling setBufferSize() - perhaps also a question to the Axis user list - to see if they can shed some light on it - or if anyone else has hit the same issue. Niall > Jeff --------------------------------------------------------------------- To unsubscribe, e-mail: user-unsubscribe@struts.apache.org For additional commands, e-mail: user-help@struts.apache.org