From dev-return-209379-archive-asf-public=cust-asf.ponee.io@tomcat.apache.org Tue Jun 2 15:11:05 2020 Return-Path: X-Original-To: archive-asf-public@cust-asf.ponee.io Delivered-To: archive-asf-public@cust-asf.ponee.io Received: from mail.apache.org (hermes.apache.org [207.244.88.153]) by mx-eu-01.ponee.io (Postfix) with SMTP id E722518064C for ; Tue, 2 Jun 2020 17:11:04 +0200 (CEST) Received: (qmail 20261 invoked by uid 500); 2 Jun 2020 15:11:04 -0000 Mailing-List: contact dev-help@tomcat.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: "Tomcat Developers List" Delivered-To: mailing list dev@tomcat.apache.org Received: (qmail 20251 invoked by uid 99); 2 Jun 2020 15:11:03 -0000 Received: from mailrelay1-us-west.apache.org (HELO mailrelay1-us-west.apache.org) (209.188.14.139) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 02 Jun 2020 15:11:03 +0000 Received: from bz-he-de.apache.org (bz-he-de.apache.org [148.251.237.210]) by mailrelay1-us-west.apache.org (ASF Mail Server at mailrelay1-us-west.apache.org) with ESMTPS id 1BCBCE0EAA for ; Tue, 2 Jun 2020 15:11:03 +0000 (UTC) Received: by bz-he-de.apache.org (ASF Mail Server at bz-he-de.apache.org, from userid 33) id CFFBD6A0068; Tue, 2 Jun 2020 15:11:01 +0000 (UTC) From: bugzilla@apache.org To: dev@tomcat.apache.org Subject: [Bug 64488] EL API: AccessControlException -- Import Handler Date: Tue, 02 Jun 2020 15:11:01 +0000 X-Bugzilla-Reason: AssignedTo X-Bugzilla-Type: changed X-Bugzilla-Watch-Reason: None X-Bugzilla-Product: Tomcat 10 X-Bugzilla-Component: EL X-Bugzilla-Version: 10.0.0-M5 X-Bugzilla-Keywords: X-Bugzilla-Severity: normal X-Bugzilla-Who: knst.kolinko@gmail.com X-Bugzilla-Status: NEEDINFO X-Bugzilla-Resolution: X-Bugzilla-Priority: P2 X-Bugzilla-Assigned-To: dev@tomcat.apache.org X-Bugzilla-Target-Milestone: ------ X-Bugzilla-Flags: X-Bugzilla-Changed-Fields: Message-ID: In-Reply-To: References: Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable X-Bugzilla-URL: https://bz.apache.org/bugzilla/ Auto-Submitted: auto-generated MIME-Version: 1.0 https://bz.apache.org/bugzilla/show_bug.cgi?id=3D64488 --- Comment #2 from Konstantin Kolinko --- (In reply to volosied+apache from comment #0) > Permission:=20 > ("java.io.FilePermission" > "/Library/Java/JavaVirtualMachines/adoptopenjdk-8-openj9.jdk/Contents/Hom= e/ > jre/lib/rt.jar" "read") How does it happen that it does not have a read permission for "rt.jar"? In your case (looking at the proposed patch - attachment 37286) it is a getResource() call that is blocked by lacking permissions. Does it mean that not only loading of resources, but loading classes from rt.jar is blocked as well? Why? For what purpose? (*) Is it a real-world configuration? Why is it configured like that? (*) E.g. looking a 'loadClass(name)' call a few lines later just below the = code affected by the patch - at ImportHandler line 463. - Will it fail? (In reply to Mark Thomas from comment #1) > If you can provide the simplest possible JSP that triggers this issue on a > clean Tomcat 10 install we can take a look. +1 I would like to see steps and code that are sufficient to reproduce the behaviour. (From your stack trace I guess that you are running a JSP page, but not from within Apache Tomcat.) --=20 You are receiving this mail because: You are the assignee for the bug.= --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscribe@tomcat.apache.org For additional commands, e-mail: dev-help@tomcat.apache.org