[LOG4J2-1987] Log4J JUL Bridge and RMI Security Manager causes access

denied ("java.util.logging.LoggingPermission" "control")

log4j-jul/src/main/java/org/apache/logging/log4j/jul/ApiLogger.java

@@ -17,6 +17,8 @@
 
 package org.apache.logging.log4j.jul;
 
+import java.security.AccessController;
+import java.security.PrivilegedAction;
 import java.util.logging.Filter;
 import java.util.logging.Level;
 import java.util.logging.LogRecord;
@@ -47,7 +49,15 @@ public class ApiLogger extends Logger {
 
     ApiLogger(final ExtendedLogger logger) {
         super(logger.getName(), null);
-        super.setLevel(LevelTranslator.toJavaLevel(logger.getLevel()));
+        final Level javaLevel = LevelTranslator.toJavaLevel(logger.getLevel());
+        // "java.util.logging.LoggingPermission" "control"
+        AccessController.doPrivileged(new PrivilegedAction<Object>() {
+            @Override
+            public Object run() {
+                ApiLogger.super.setLevel(javaLevel);
+                return null;
+            }
+        });
         this.logger = new WrappedLogger(logger);
     }
 

src/changes/changes.xml

@@ -43,6 +43,9 @@
       <action issue="LOG4J2-1971" dev="rgoers" type="fix">
         Register log4j-core as an OSGi service. Skip tests for LOG4J2-1766 on MacOS. Use group "staff" for LOG4J2-1699 test on MacOS.
       </action>
+      <action issue="LOG4J2-1987" dev="ggregory" type="fix" due-to="Andreas Felder">
+        Log4J JUL Bridge and RMI Security Manager causes access denied ("java.util.logging.LoggingPermission" "control")
+      </action>
       <action issue="LOG4J2-1982" dev="ggregory" type="fix" due-to="Christoph Lembeck">
         Log4j-config.xsd only allows one AppenderRef element for each Logger element.
       </action>