rmi java.security.AccessControlException
Question
I am new to RIM, and currently taking the tutorial at http://java.sun.com/docs/books/tutorial/rmi/overview.html
I am able to start server like:
C:\Documents and Settings\myHome>java -cp c:\home\ann\src;c:\home\ann\public_ html\classes\compute.jar -Djava.rmi.server.codebase=file:/c:/home/ann/public_htm l/classes/compute.jar -Djava.rmi.server.hostname=localhost -Djava.security.polic y=c:\home\ann\policy\server.policy engine.ComputeEngine ComputeEngine bound
However, when i try to run client i got exceptions
access: access allowed (java.lang.RuntimePermission createClassLoader)
access: access allowed (java.lang.reflect.ReflectPermission suppressAccessChecks
)
access: access allowed (java.lang.reflect.ReflectPermission suppressAccessChecks
)
access: access allowed (java.lang.reflect.ReflectPermission suppressAccessChecks
)
access: access allowed (java.lang.reflect.ReflectPermission suppressAccessChecks
)
ComputePi exception:
java.rmi.ServerException: RemoteException occurred in server thread; nested exce
ption is:
java.rmi.UnmarshalException: error unmarshalling arguments; nested excep
tion is:
java.lang.ClassNotFoundException: access to class loader denied
at sun.rmi.server.UnicastServerRef.dispatch(Unknown Source)
at sun.rmi.transport.Transport$1.run(Unknown Source)
at java.security.AccessController.doPrivileged(Native Method)
at sun.rmi.transport.Transport.serviceCall(Unknown Source)
at sun.rmi.transport.tcp.TCPTransport.handleMessages(Unknown Source)
at sun.rmi.transport.tcp.TCPTransport$ConnectionHandler.run0(Unknown Sou
rce)
at sun.rmi.transport.tcp.TCPTransport$ConnectionHandler.run(Unknown Sour
ce)
at java.util.concurrent.ThreadPoolExecutor$Worker.runTask(Unknown Source
)
at java.util.concurrent.ThreadPoolExecutor$Worker.run(Unknown Source)
at java.lang.Thread.run(Unknown Source)
at sun.rmi.transport.StreamRemoteCall.exceptionReceivedFromServer(Unknow
n Source)
at sun.rmi.transport.StreamRemoteCall.executeCall(Unknown Source)
at sun.rmi.server.UnicastRef.invoke(Unknown Source)
at java.rmi.server.RemoteObjectInvocationHandler.invokeRemoteMethod(Unkn
own Source)
at java.rmi.server.RemoteObjectInvocationHandler.invoke(Unknown Source)
at $Proxy0.executeTask(Unknown Source)
at client.ComputePi.main(ComputePi.java:27)
Caused by: java.rmi.UnmarshalException: error unmarshalling arguments; nested ex
ception is:
java.lang.ClassNotFoundException: access to class loader denied
at sun.rmi.server.UnicastServerRef.dispatch(Unknown Source)
at sun.rmi.transport.Transport$1.run(Unknown Source)
at java.security.AccessController.doPrivileged(Native Method)
at sun.rmi.transport.Transport.serviceCall(Unknown Source)
at sun.rmi.transport.tcp.TCPTransport.handleMessages(Unknown Source)
at sun.rmi.transport.tcp.TCPTransport$ConnectionHandler.run0(Unknown Sou
rce)
at sun.rmi.transport.tcp.TCPTransport$ConnectionHandler.run(Unknown Sour
ce)
at java.util.concurrent.ThreadPoolExecutor$Worker.runTask(Unknown Source
)
at java.util.concurrent.ThreadPoolExecutor$Worker.run(Unknown Source)
at java.lang.Thread.run(Unknown Source)
Caused by: java.lang.ClassNotFoundException: access to class loader denied
at sun.rmi.server.LoaderHandler.loadClass(Unknown Source)
at sun.rmi.server.LoaderHandler.loadClass(Unknown Source)
at java.rmi.server.RMIClassLoader$2.loadClass(Unknown Source)
at java.rmi.server.RMIClassLoader.loadClass(Unknown Source)
at sun.rmi.server.MarshalInputStream.resolveClass(Unknown Source)
at java.io.ObjectInputStream.readNonProxyDesc(Unknown Source)
at java.io.ObjectInputStream.readClassDesc(Unknown Source)
at java.io.ObjectInputStream.readOrdinaryObject(Unknown Source)
at java.io.ObjectInputStream.readObject0(Unknown Source)
at java.io.ObjectInputStream.readObject(Unknown Source)
at sun.rmi.server.UnicastRef.unmarshalValue(Unknown Source)
... 10 more
Caused by: java.security.AccessControlException: access denied (java.io.FilePerm
ission \c:\home\jones\public_html\classes\- read)
at java.security.AccessControlContext.checkPermission(Unknown Source)
at java.security.AccessController.checkPermission(Unknown Source)
at java.lang.SecurityManager.checkPermission(Unknown Source)
at sun.rmi.server.LoaderHandler$Loader.checkPermissions(Unknown Source)
at sun.rmi.server.LoaderHandler$Loader.access$000(Unknown Source)
... 21 more
i believe the problem is the client policy file for client (correct if i am wrong please), as we can see from stack trace
Caused by: java.security.AccessControlException: access denied (java.io.FilePerm ission \c:\home\jones\public_html\classes\- read)
However, my client.policy file looks like
grant codeBase "file:/c:/home/jones/public_html/classes/-" {
permission java.security.AllPermission;
};
grant{
permission java.net.SocketPermission "127.0.0.1:1024-65535", "connect,resolve";
};
There are AllPermission for codeBase "file:/c:/home/jones/public_html/classes/-".
So, did i set the codeBase permission wrong, so there are more permission client application needs?
Thanks!!!
Update: if i move the client.policy file to C:\\Program Files\\Java\\jre6\\lib\\security and i start the client with
ComputePi exception:
java.security.AccessControlException: access denied (java.net.SocketPermission 1
27.0.0.1:1099 connect,resolve)
at java.security.AccessControlContext.checkPermission(Unknown Source)
at java.security.AccessController.checkPermission(Unknown Source)
at java.lang.SecurityManager.checkPermission(Unknown Source)
at java.lang.SecurityManager.checkConnect(Unknown Source)
at java.net.Socket.connect(Unknown Source)
at java.net.Socket.connect(Unknown Source)
at java.net.Socket.(Unknown Source)
at java.net.Socket.(Unknown Source)
at sun.rmi.transport.proxy.RMIDirectSocketFactory.createSocket(Unknown S
ource)
at sun.rmi.transport.proxy.RMIMasterSocketFactory.createSocket(Unknown S
ource)
at sun.rmi.transport.tcp.TCPEndpoint.newSocket(Unknown Source)
at sun.rmi.transport.tcp.TCPChannel.createConnection(Unknown Source)
at sun.rmi.transport.tcp.TCPChannel.newConnection(Unknown Source)
at sun.rmi.server.UnicastRef.newCall(Unknown Source)
at sun.rmi.registry.RegistryImpl_Stub.lookup(Unknown Source)
at client.ComputePi.main(ComputePi.java:25)
i got exception
grant{
permission java.net.SocketPermission "127.0.0.1:1024-65535", "connect,resolve";
};
However, the client.policy file has specified
\ngrant{ \n permission java.net.SocketPermission "127.0.0.1:1024-65535", "connect,resolve"; \n}; \n
Update with full stack trace Here is the full stack trace,
access: access denied (java.net.SocketPermission myComputer resolve)
java.lang.Exception: Stack trace
at java.lang.Thread.dumpStack(Unknown Source)
at java.security.AccessControlContext.checkPermission(Unknown Source)
at java.security.AccessController.checkPermission(Unknown Source)
at java.lang.SecurityManager.checkPermission(Unknown Source)
at java.lang.SecurityManager.checkConnect(Unknown Source)
at java.net.InetAddress.getLocalHost(Unknown Source)
at sun.rmi.transport.tcp.TCPEndpoint.(Unknown Source)
at java.rmi.registry.LocateRegistry.getRegistry(Unknown Source)
at java.rmi.registry.LocateRegistry.getRegistry(Unknown Source)
at java.rmi.registry.LocateRegistry.getRegistry(Unknown Source)
at client.ComputePi.main(ComputePi.java:24)
At line 80:
\naccess: access allowed (java.net.SocketPermission myComputer resolve) \n
however afrom line 99 to 111
\naccess: access denied (java.net.SocketPermission myComputer resolve) \njava.lang.Exception: Stack trace \n at java.lang.Thread.dumpStack(Unknown Source) \n at java.security.AccessControlContext.checkPermission(Unknown Source) \n at java.security.AccessController.checkPermission(Unknown Source) \n at java.lang.SecurityManager.checkPermission(Unknown Source) \n at java.lang.SecurityManager.checkConnect(Unknown Source) \n at java.net.InetAddress.getLocalHost(Unknown Source) \n at sun.rmi.transport.tcp.TCPEndpoint.(Unknown Source) \n at java.rmi.registry.LocateRegistry.getRegistry(Unknown Source) \n at java.rmi.registry.LocateRegistry.getRegistry(Unknown Source) \n at java.rmi.registry.LocateRegistry.getRegistry(Unknown Source) \n at client.ComputePi.main(ComputePi.java:24) \n
Problem solved, see my another post
1 answers
solution1
1 2010-02-26 13:13:03
How do you start the client? Do you specify a policy file when starting the client?
Your command line to start the client should look like:
java -cp c:\home\jones\src;c:\home\jones\public_html\classes\compute.jar
-Djava.rmi.server.codebase=file:/c:/home/jones/public_html/classes/
-Djava.security.policy=client.policy
client.ComputePi zaphod.east.sun.com 45
Update : you wrote:
if i move the client.policy file to
C:\\Program Files\\Java\\jre6\\lib\\security
You need to change the paths you see in the examples ( c:\\home\\jones , etc.) to the actual ones you use on your machine (where your code base and security files are).
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.
Related Question
java.security.AccessControlException: access denied in Java RMI Telephone Directory
Java RMI java.security.AccessControlException: access denied
How do I sort the java.security.AccessControlException issue when running rmi programs?
Java applet java.security.AccessControlException
New java.security.AccessControlException in Java 8
Java RMI Client Server java.security.AccessControlException: access denied (“java.util.PropertyPermission” “java.security.policy” “write”)
Error: java.security.AccessControlException: Access denied
How to solve java.security.AccessControlException
java.security.AccessControlException: access denied Exception
java.security.AccessControlException in applet communicating with mysql
Related Tags